The topic of annoying Trojans keeps coming up. Again and again we have reported about new, nasty ransomware that spreads and causes a lot of damage. The new threat is called Rapid Ransomware.
If you are thinking It won’t affect me’ then you should read on. Rapid Ransomware is one to be very aware of. Read on to find out how it actually gets on to your computer and what distinguishes it from other Trojans.
We have reported time and again about Trojans and Ransomware. Have you heard of l WannaCry , Locky and Bad Rabbit? Or Loapi, Skygofree and DoubleLocker? The number of Trojans is huge and we regularly warn you about new variants. Now here is the new one Rapid Ransomware.
Rapid Ransomware – what makes it special?
The Trojan Rapid has only just been discovered. It was first detected in early January. By now it has attacked several hundred computers. But what the ransomware does on your computers, is really bad. Because it embeds itself on your computer.
While other Trojans destroy themselves after the encryption and ransom demands, this one does something different. It stays on your computer. As soon as you create new files, save pictures or documents, Rapid will come to life again. It immediately encrypts these new files. Then it assigns the file extension .rapid. It certainly lives up to its name because it works so fast.
Infected with Rapid Ransomware?
Have you found yourself infected with the Rapid Ransomware? Then you have to move fast. The Trojan settles in the Windows startup and encrypts all newly added files after each reboot of the computer. So you need to banish Rapid from the autostart. Under Windows 10 you can do this directly in the Task Manager via the Startup tab. However, it is difficult to identify the Trojan as it keeps changing its name.
Ransomware- what protection is there?
Hopefully you have a recent backup of your data under your belt. This is because a free decryption tool for the Trojan doesn’t exist yet. So far, it is also unclear how high the ransom demand is. And of course, as always, it is uncertain if the blackmailers will release your data after a ransom is paid. For this reason, experts still advise against entering into ransom demands.
How does Rapid get onto your computer?
But how do you get Rapid on your computer? Usually, malware is sent as an e-mail attachment or exploits vulnerabilities in the browser. How Rapid manages to get in, is so far not clear. You can, of course take precautions to help to not get infected by malware in the first place:
- Never open suspicious email attachments from senders you do not know.
- Delete emails from unknown senders – especially if they contain attachments.
- Protect your devices with the latest antivirus software.
- Update your devices regularly to fix security holes.
- Periodically create backups.
- Choose safe passwords – we have previously advised on how to pick the best passwords.
Could you be infected with Ransomware?
Do you have the suspicion that this trojan has landed on your computer and is trying to open the task manager? If the Trojan is active, you will see rapid.exe as an active process. Finish this process as fast as possible to prevent the malware from attacking your system and encrypting files. If you cannot open the Task Manager any more, switch off your computer immediately and do not restart it. If you do, the pest will immediately start encrypting data again. Then the damage gets bigger and bigger. The best thing to do now is to contact the experts for help.
If you think that Rapid Ransomware is on your computer, be sure to come to TrustATec partner . Our technicians use our security check and system check to detect data misuse and access by strangers. If you do not have a current backup of your data, our experienced professionals will help you with it. And so that your computer will not be affected by malware again, they also like to run a current virus protection on your devices.
You can find even more information about the new Rapid Ransomware at Bleepingcomputer .