Author Topic: Citadel Malware Delivers Reveton Ransomware in Attempts to Extort Money  (Read 23678 times)

0 Members and 1 Guest are viewing this topic.

June 03, 2012, 08:25:13 pm
Read 23678 times


  • Sr. Member

  • Offline
  • ****

  • 248
05/30/12óThe IC3 has been made aware of a new Citadel malware platform used to deliver ransomware, named Reveton. The ransomware lures the victim to a drive-by download website, at which time the ransomware is installed on the userís computer. Once installed, the computer freezes and a screen is displayed warning the user they have violated United States federal law. The message further declares the userís IP address was identified by the Computer Crime & Intellectual Property Section as visiting child pornography and other illegal content.

To unlock the computer, the user is instructed to pay a $100 fine to the U.S. Department of Justice using prepaid money card services. The geographic location of the userís IP address determines what payment services are offered. In addition to the ransomware, the Citadel malware continues to operate on the compromised computer and can be used to commit online banking and credit card fraud.

This is an attempt to extort money with the additional possibility of the victimís computer being used to participate in online bank fraud. If you have received this or something similar, do not follow payment instructions.

It is suggested that you:

    Contact your banking institutions.
    File a complaint at

June 03, 2012, 09:43:25 pm
Reply #1


  • Special Access
  • Full Member

  • Offline
  • *

  • 60
Our friends in Germany have been dealing with these on forums for weeks now.