TrapX launches ransomware deception tool, CryptoTrap
TrapX, a cybersecurity company, has launched CryptoTrap: a community ransomware decryption tool designed to help healthcare organizations and others bolster their security measures.
CryptoTrap uses deception technology to trick potential hackers and lure them away from valuable assets. In doing so, organizations can detect and resolve ransomware threats before data is corrupted and a network is compromised.
So far, TrapX researchers have found CryptoTrap, which is free to TrapX customers and to the public for a 30-day trial, is effective at deceiving attacks against network drives and some variants for the C drive for three major ransomware families: TeslaCrypt, Locky and 7ev3n, a new malware strain. The researchers analyzed over 700 samples to identify specific ransomware behavior.
"Ransomware is a threat that is clearly becoming more pervasive, and as we have seen from numerous successful attacks in 2016, attackers are continuing to walk away with large sums of money and wreak havoc on organizations by holding their valuable assets hostage," said Greg Enriquez, CEO of TrapX.
"The challenge now is that cybercriminals are evolving their cryptographic ransomware techniques as they realize just how lucrative this attack method is," he added.
The tool deceives ransomware into encrypting decoy data, while CryptoTrap holds the virus hostage and protects critical data from encryption, according to the statement. Its DeceptionTokens, or lures, deflect network-based ransomware attacks into TrapX specialized ransomware traps that isolate the virus.
The software also immediately notifies the organization's security team, while the source of the attack is disconnected from the network, according to the release. When used in conjunction with TrapX's DeceptionGrid Advanced IR module, users can also use deep forensics to analyze the potential threat and better protect its system.