A new version of the RAA ransomware was found recently by security researchers at Kaspersky Lab. This one, written completely in Jscript, seems to be targeting business users exclusively, the researchers claim. It comes as they all do: through an email with the malicious attachment. This one, however, comes in a password-protected zip file. This method does two things: Makes it harder for anti-virus software to recognize the malware Makes it seem more legitimate to the victims The email usually says something about "overdue payment order from a supplier", to trick the victim into opening the attachment. The second biggest change… [Continue Reading]