According to information from ESET, since the appearance of this attack on March 20, it has spread to more than 50 countries.
If the user really wants to recover his files, because he does not have a backup or it is critical or confidential information, he must acquire the BitCoins and transfer them to cybercriminals . In order to pay the ransom, the victim must have access to the TOR network since the domain in which the panel is hosted to make the payment corresponds to an .onion domain.
According to information from ESET’s Early Warning systems, since the appearance of this attack on March 20, it has spread to more than 50 countries and affected more than 15,000 users . Among the countries where this threat has been seen are several from Latin America including Argentina, Brazil, Colombia and Mexico.