PHP Ransomware Project is a malicious software development venture which has been around for more than 2 years. Basically it an open source PHP project which can be accessed through Github and was developed by an Indonesian hacker who is also a member of two large hacking crews named Bug7sec and Indonesia Defacer Terasakiti.
Security experts from Cisco Talos confirm that the source code of this ransomware project is being used in more than 3 different ransomware developments targeting web servers. And what’s more astonishing about this project is that it is being hosted by hackers on renowned internet hosting service Github which offers a flexible platform to developers interested in source code development and management functionality.
EV Ransomware, Lalabitch, and JapanLocker have all been developed through the source code offered by PHP Ransomware Project. And the most common point amongst all these malicious software developments is that the three ransomware variants do not have a proper decryption key.
Thus, if any computer network is infected with this ransomware, Cybersecurity Insiders strongly recommends to them to better rely on a backup service instead of paying a ransom to the developers as they don’t have a proper key to decrypt files.
Finally, with web based ransomware on the prowl, it is said to create a lot of problems for website developers in future. And the only hope is to expect for better decryption mechanisms from software developers to tackle the issue.