TeslaCrypt 4.0 Debuts

PBCrichton-Malware-Hazard-Symbol-RedCriminals launched a new and improved brand of ransomware called TeslaCrypt 4.0. As the name implies, it is the fourth iteration that includes new improvements making it a great cash-cow for criminals and a giant headache to the rest of us.

Here’s a few of the “improvements” that criminals have made:

  • TeslaDecoder no longer works to decrypt TeslaCrypt-encrypted files
  • The ransomware now includes “RSA 4096” encryption, making encrypted data virtually impossible to recover
  • TeslaCrypt now encrypts files over 4 GB without permanently damaging them (a customer improvement by criminal standards)

According to Heimdal Security, a top-notch cyber-security firm, only two options remain if you should get infected: restore data from a secure backup or pay the ransom.

TeslaCrypt harvests more data than previous versions from the infected host, creating a unique key while adding the targeted PC to a central botnet. it is being spread via Drive-by Download attacks using the Angler Exploit Kit. Heimdal reports that the daily average of blocked sites serving up the Angler Exploit has now topped 1,200 domains (and rising).

This file-encrypting ransomware targets companies and individuals alike—so, no one is safe. To avoid this devastating virus: visit only legitimate sites that you’re sure are not infected (easier said than done) and never click on any links or open attachments in emails sent from people you do not know.

The best defense against TeslaCrypt and other ransomware infections is an image-based Hybrid-cloud Business Continuity Solution that features instant failover to an onsite device and to the cloud plus saving your data to two geographically dispersed data centers for added security.

This is one time when data backup is simply not enough if your business cannot tolerate extended downtime. Don’t be a statistic. Be prepared.


Joseph Imperato Sr. is the Managing Partner for XSolutions Consulting Services, a Managed Services Provider (MSP) delivering Computer Support, Business Continuity, Cloud Services, and IT Consulting to New York, New Jersey, and Connecticut businesses. Call us at (845) 362-9675 and see how we can help your company.