National Security Bureau is a ransomware that also features screen lock function. This feature of locking the computer screen is found in VIRLOCK variants of ransomware families. The crypt-o-virus once inside the PC encrypts system files and appends the file name with .exe extension without changing the original file name. The new files will be regarded as PEs – portable executables. This renders the files inoperable. The victim is informed about the encryption via a ransom note displayed on the locked window screen.
The note demands “0.661 BTC” ($250) ransom from the victim to allegedly restore the infected files. The subsequent pages of the note educate victim about BitCoin and ways to obtain it.
Users however are advised not to panic and should not agree to pay the ransom under any circumstances as once the ransom is paid victims are ignored. Also agreeing to the terms and conditions of cyber miscreants encourages them to commit other cyber-criminal activities again in the future.
The files targeted by cyber criminals include:
Cyber criminals use various online distribution techniques to spread National Security Bureau Ransomware in the system. The infectious payload is dropped inside a file that is password protected.
This file is then distributed via freeware programs that may appear useful to the users, however its download and installation executes a malicious script that infects the system.
The infectious payload may also be distributed via spam email attachments. Downloading the attachments without going through the email specs may make your system vulnerable to this crypt-o-virus.
Browsing suspicious site and clicking on malevolent links, fake update pop-ups are other distribution techniques to spread National Security Bureau ransomware.
Name: NATIONAL SECURITY BUREAU
Targeted Operating System: Windows
Symptoms: User’s files are encrypted. Names of all the locked files are appended with “.exe” extension after the encryption and hence cannot be accessed by the user.
Subscribe to our newsletter today to receive updates on the Latest News and Threats.
The researchers at Virus Removal Guidelines are dedicated to track down the latest vulnerabilities which may infringe your system security. Our team of expert performs a detailed research about every malware infection before educating our users about the same.
Want to stay informed about the latest threats & malware? Sign up for our newsletter & learn how to get rid of all types of threats from your computer.