Kaspersky Labs Unearths Yet Another State-linked Malware
Cybercriminals abuse the benign Hidden Tear ransomware project once again. This educational code becomes a basis for another real-world crypto malware. The fresh offshoot is dubbed TrOwX. It appends the .locked extension to encoded files and drops a ransom note named READ_AND_CRY.txt. Besides English speaking victims it targets users in China.