New Ransomware Demands Discord Gift Codes Instead of Crypto

New Ransomware Demands Discord Gift Codes Instead of Crypto

Ransomware is an unfortunate reality of the modern digital age, and you may think you’ve seen it all after major malware attacks like NotPetya and Maze. However, NitroRansomware has a new trick up its sleeve. Rather than asking victims to pay the ransom with cryptocurrency, it asks for a Discord gift card.

You might be thinking that Discord is a free chat platform, and you’re right. Casual Discord users might not even know that there is a paid version of the service. For $9.99 per month, you can get Discord Nitro, which includes perks such as HD video streaming, more emoji, and larger file uploads. When buying Nitro, you can choose to apply it to your account or get a gift link. That’s what the latest ransomware is after.

The malware reportedly makes its way onto systems by pretending to be a tool that allows the user to generate free Nitro gift codes, according to BleepingComputer. So, anyone who installs it will get very much the opposite of what they wanted. As with all other forms of ransomware, NitroRansomware sets up shop and encrypts the documents folder, appending a .givemenitro extension to the scrambled files. It also changes the user’s wallpaper to an angry Discord logo (above) before popping up the demand for payment.

Victims of the ransomware are given three hours in which to buy a Nitro code and enter it in the box. When a valid code is added, the malware decrypts the files with an embedded key. That key is stored inside the EXE, making it possible to salvage your files without paying the price — it’s not the most sophisticated malware in the world. However, it does try to steal your data because why not?

New Ransomware Demands Discord Gift Codes Instead of Crypto

Upon installation, NitroRansomware searches for the user’s Discord installation directory and copies the login tokens. This could allow the malware maker to log into the service as that user, potentially using that to infect more people. It also pokes around in Google Chrome, Brave Browser, and Yandex Browser directories for anything juicy. Anyone who believes they’ve been hit by NitroRansomware should change their Discord login and any other accounts that might have been compromised via the browser hack.

Continue reading

Scientists Can Finally Study Einsteinium 69 Years After Its Discovery
Scientists Can Finally Study Einsteinium 69 Years After Its Discovery

In the remnants of atomic explosions, scientists found never-before-seen elements like einsteinium. Now, almost 70 years after its discovery, scientists have collected enough einsteinium to conduct some basic analysis.

The Milky Way Might Have a Core of Dark Matter Instead of a Black Hole
The Milky Way Might Have a Core of Dark Matter Instead of a Black Hole

The object, known as Sagittarius A*, may actually be a blob of dark matter, based on the properties of several objects spotted zipping around it. If true, this would have major implications for our understanding of the universe.

Android Antivirus Apps Are Useless — Here’s What to Do Instead
Android Antivirus Apps Are Useless — Here’s What to Do Instead

It's still on you to be aware of threats to stay safe, but Android is by its very nature more secure than a desktop computer. Still, you've probably already got what you need.

Hubble Spots Stunning ‘Einstein Ring’ Formation
Hubble Spots Stunning ‘Einstein Ring’ Formation

You might think there are six celestial objects here: four points of light and a ring-like structure orbiting one large glowing blob. But you'd be wrong. There are only three objects in this picture, and the rest is an illusion perpetrated by gravity.