New Mount Locker Ransomware Version Targeting TurboTax Files

A new version of the Mount Locker crypto-ransomware strain is specifically targeting victims’ TurboTax files.

As reported by Bleeping Computer, Advanced Intel’s Vitali Kremez came across a new Mount Locker sample that specifically sought out files used by the TurboTax tax preparation software.

In particular, Kremez observed the sample going after files bearing the “.tax,” “.tax2009,” “.tax2013” and “.tax2014” extensions.

Read more…
Source:  Tripwire