CracksNow Uploader Banned from Torrent Sites for Spreading GandCrab
NEWS

CracksNow Uploader Banned from Torrent Sites for Spreading GandCrab

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading...

There are multiple complaints from users of torrent sites that their downloaded files contained the GandCrab ransomware and other malware, TorrentFreak recently reported. More specifically, files shared by CracksNow, a popular uploader of software cracks and keygens, have been infected.




GandCrab, Malware Hidden in Torrents

According to the website:

Several torrent sites have banned the account of the popular software uploader CracksNow. The software and cracks were repeatedly flagged as malicious and some came with the GandCrab ransomware. While malicious torrents are nothing new, it’s rare for this to happen via a “trusted” uploader.

As a result of these infections, torrent sites The Pirate Bay, TorrentGalaxy, and 1337x banned the account of CracksNow. Of course, these cases are not surprising at all since torrents are one of the most popular ways to get infected by malicious software.

Torrent site moderators have to review a number of reported torrents on a daily basis, and malware is often found in them. An admin of the 1337x website has shared with TorrentFreak that “they have a system in place to ensure that things don’t get out of hand. This includes an approval process for uploaders”. As it can be expected, the system isn’t flawless.

Related:
Considering the already vulnerable state of security and the evolving scene of cybercrime, what should we expect in 2019?
New Hacking Methods to Look Out for in 2019

It is a daily battle to sort the scumbags from the legit uploaders and staff work very hard but it’s not foolproof. What I will say is staff are very quick to adapt to all the new ways people try to beat our systems,” the admin said.

The same admin also said it was rather rare for a trusted uploader like CrackNow to “go rogue”.

Last week, it was revealed that GandCrab ransomware has been distributed with the help of

CVE-2017-18362 affects the Kaseya plugin for the Connectwise Manage software, which is a professional service automation product for IT support.
a two-year-old security flaw (CVE-2017-18362) in a software package used by remote IT security companies. The vulnerability has been exploited to grant access to vulnerable networks and distribute the ransomware payload.

GandCrab 5 strains have also been

The GandCrab 5 ransomware strains that were recently released by different hacker collective as ransomware-as-a-service, read our article to learn more
distributed as ransomware-as-a-service. Last year, the operators behind the attacks were partnering with a malware crypting service called NTCrypt. This is a malicious tool that is used to enhance the malicious code and make it more difficult to remove, adding an extra layer of stealth protection.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum for 4 years. Enjoys ‘Mr. Robot’ and fears ‘1984’. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles!

More Posts

Leave a Comment

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.

Share on Facebook Share
Loading...
Share on Twitter Tweet
Loading...
Share on Google Plus Share
Loading...
Share on Linkedin Share
Loading...
Share on Digg Share
Share on Reddit Share
Loading...
Share on Stumbleupon Share
Loading...