Security researchers at the CERT team at Socit Gnrale uncovered a new malware campaign spreading the CTB-Locker or Critroni crypto ransomware. The threat actor is spreading the ransomware through spam emails across several countries. CTB stands for Curve-Tor-Bitcoin, the three pillars of this new threat: elliptic curve cryptography to perform the encryption, Tor and Bitcoin to ensure anonymity for the payment. The common infection vector is via an email containing a fake invoice compressed in a zip or cab archive file.”]
Source: https://securityaffairs.co/wordpress/33076/cyber-crime/massive-ctb-locker-campaign.html