New jCandy ransomware attacks reckless computer users

jCandy is a malicious program that stealthily infiltrates on the computer and encrypts an essential data. After the encryption, it drops a JCANDY_INSTRUCTIONS.txt file informing the victims about the ransomware attack. To recover the corrupted data with a .locked-jCandy extension, users are demanded to purchase Bitcoins[1] worth of $200 and transfer the ransom to a specific BTC address.
Since the developers of jCandy use sophisticated AES and RSA algorithms[2], they are sure that even IT professionals won’t be able to decrypt the files. Besides, they create an intimidating atmosphere by urging to make a payment in 48 hours, or the encrypted data will be deleted.
These methods have successfully helped to generate enormous amounts of illegal profits. However, we advise you not to motivate the cybercriminals to continue their attacks and refuse to pay a ransom. Be aware that there are no guarantees that they will keep their promises and give back the access to your data. Thus, you should concentrate on the jCandy removal instead.
Moreover, be prepared that there are hundreds of different so-called jCandy decryptors that you can purchase online. At this point, we want to assure you that unless the tools are verified, they are probably just a scam. Fraudsters try to benefit from gullible people by selling ineffective and high-priced programs.

Instead, remove jCandy virus with a professional security software and try to recover your files from the backup copies that are kept in the Cloud. Our top picks would be FortectIntego or MalwarebytesMalwarebytes since they are reliable and will help you to eliminate the malware from your system safely.
The most active ransomware distribution methods
It is not a secret that hackers spread the file-encrypting viruses in several different ways to increase the rate of successful infections. The most popular methods employed are the following:
- Spam e-mails holding an attachment of the ransomware’s executable file;
- Fake software update installers;
- File-bundles that contain a hidden malware.
Careless people often are not aware of the possible online threats. They can open a spam e-mail and trigger an automatic installation of the ransomware. Moreover, computer user’s might get deceived by the fake software updates that appear as pop-ups or download malware that is bundled with free applications.
If you want to protect your system from high-risk computer infections, follow one simple rule — monitor your online activity and never click on suspicious programs, ads, banners, offers or installers. It is important to be careful while surfing the web and use a reliable anti-malware software.
Employ an antivirus system to get rid of jCandy virus
We want to remind you once again not to trust the hackers and remove jCandy instead of paying a ransom. In most of the cases, ransomware is programmed to block the installation of the security software. Thus, you should reboot your computer to Safe Mode and circumvent the virus.
It is the best decision to use an automatic elimination method since regular computer users might not be able to get rid of all necessary files to clean their systems entirely. Thus, leading to even more damage.
Also, BedyNet.ru[3] experts have prepared instructions for those who want to perform a manual jCandy removal. However, it is necessary to follow the guidelines strictly.
Was this guide helpful?
Be the first to comment