Russian cybercrooks have come up with a variant of ransomware scams, which works by displaying an invasive advert for online smut in users' browsers that victims are extorted to pay to remove. The Ransompage Trojan will display a persistent ad inline on every page that a surfer on an infected Windows machine visits. The ad for …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Monday 27th July 2009 15:13 GMT Anonymous Coward

Wow, free porn, you say?

I must immediately switch back to Windows!

0 0
Monday 27th July 2009 15:13 GMT Anonymous Coward

Nothing New

Ive had this happen on a few of my sites and sites that I go on... Not sure how it got there but got it fixed.

Took them a while to figure out it exists, didnt it?

0 0
Monday 27th July 2009 15:28 GMT Tom_

Differing service for different browsers

How come Opera users get a 'ruder' picture? How is that fair?

0 0
Monday 27th July 2009 16:10 GMT Anonymous Coward

Details?

I don't understand, is this exploiting holes in all these browsers to install itself, or is this a virus that needs to get onboard another way and then, once up and running, intercepts HTTP traffic to alter the web pages you view on these browsers?

0 0
Monday 27th July 2009 20:03 GMT John Dann

Reg - take note

'The ad for a pornographic website covers parts of the original webpage, making it even more annoying. '

This sounds just like the current Cisco ad that plasters itself across most Reg pages at present, thereby 'covering parts of the original webpage'. There must be a word in media circles for an ad that is actually counter-productive. Guess why I've taken the pledge not to buy any Cisco-branded parts for the foreseeable future.

0 0
Monday 27th July 2009 20:03 GMT Jaybirduk

Another Opera win!

Im still an Opera fan despite having to fall back to IE/Firefox to make some websites work - my persistance has paid off with better pr0n ads!

0 0
Monday 27th July 2009 20:03 GMT Anonymous Coward

Well, it's an improvement

Over the bloody Cisco ad that keep popping up covering content on El Reg.. At least you can pay to get rid of the ransomware.

0 0
Monday 27th July 2009 20:03 GMT Dex

Begs the question....

....If thier screenshot is to be believed and that Firefox shows "Informer" in the Extentions list (saying it's not compatible)...whats to stop the user removing it that way [via the extentions list] and not pay?

0 0
Monday 27th July 2009 20:46 GMT J 3

@Wow, free porn, you say?

No need to go back to Windows. You can easily find the pr0n, sans malware, on any platform...

0 0
Monday 27th July 2009 23:26 GMT Kev K

jumping on the Cisco ad bandwagon

I always make the effort to view El Reg in IE and have even clicked on a few adds that did interest me but that Cisco is getting right on my manboobs now.

0 0
Monday 27th July 2009 23:26 GMT Nordrick Framelhammer

Related to malware?

If it involves porn wouldn't a better name for it be something like todgerware or fapware?

0 0
Tuesday 28th July 2009 09:13 GMT Kevin Bailey

Where's this Cisco ad?

Can't even remember it.

Might be your Browser - but here on Ubuntu/FF all latest I can't even remember any Cisco ad.

0 0
This post has been deleted by its author
Tuesday 28th July 2009 12:12 GMT Tiny Iota

What website is that?

I like the way that Symantec fuzz out the URL of the websites displayed, but leave the massive "Google" logo

0 0
Friday 7th August 2009 21:45 GMT kissingthecarpet

Re:Cisco Adverts et al.

AdblockPlus/NoScript

That Is All.

0 0