Security researchers have discovered a novel ransomware scheme that uses Windows PowerShell to encrypt files on a victim’s computer. The attack, directed at Russian users, holds them hostage, demanding payment of a ransom to unlock the data. The code can be retrieved by using the application that encrypted the files with Windows 7. The ransomware is easy to crack for someone who knows their way around PowerShell, but it would be effective against most casual computer users. The technique is novel because it would not be immediately recognized by security analysts.”]
Source: https://www.csoonline.com/article/2133066/ransomware-targets-windows-powershell.html