CryptoDrop: Είστε διατεθειμένος να θυσιάσετε μερικά από τα archives σας για να σώσετε τα υπόλοιπα πριν κρυπτογραφηθούν από κάποιο σύγχρονο ransomware;
The answer from most victims is probably "YES" in capitals. This is exactly the function of CryptoDrop.
It is a new anti-ransomware solution that apparently works perfectly with the various anti-viruses out there. It was created by a team of researchers from the University of Florida and Villanova University.
It works like an early warning system, and it sacrifices some files to be able to detect and stop the action of ransomware.
Detects typical ransomware actions such as: bulk modification, new types files, διαγραφή αρχείων, ανιχνεύει σημαντικές διαφορές μεταξύ των αρχείων, ξαφνική εμφάνιση ενός μεγάλου αριθμού αρχείων του ίδιου τύπου, κ.λπ.
Unfortunately the solution still exists simply as a prototype. The researchers they are looking for a financier to help them turn it into a commercial one product.
But no doubt the new security solution is quite effective.
See the presentation video (uploaded to the University Channel):
"We ran our crawler with several hundred samples of ransomware and detected 100% of them, as they had only encrypted 10 files," said Nolen Scaife, a PhD student at the University of Florida and one of CryptoDrop's researchers.
His colleague, Patrick Traynor, an associate professor at the Department of Computer Science and Computer Science at Florida University, reports that about one-tenth of 1% of the records were lost, but the tool gains the advantage and becomes much more flexible.