Ransomware is a malicious software that infects your computer and takes your data hostage. It represents one of the main threats in cybersecurity today. But did you know that its history began in 1989 with a rudimentary program, nicknamed AIDS Trojan ?
A look back at an attack that marked a turning point in the digital world.
A floppy disk attack: the beginning of ransomware
In December 1989, thousands of people around the world attending an AIDS conference received a floppy disk in the mail. On the disk, software allegedly developed by the World Health Organization (WHO) promised to predict the risk of contracting AIDS. At the time, AIDS was a hot topic, stirring up both fear and interest. But behind the apparent good intentions lay a sneak attack.
Once inserted into the computer, the diskette appeared harmless. Nothing happened immediately, leading the user to believe that he was dealing with poorly designed or useless software. In reality, a countdown silent was launched. After 90 computer reboots, the malware would activate, blocking access to user data by hiding directories and encrypting file names on the C: drive.
At this point, a very unpleasant message appeared on the screen: To unlock your computer, it was necessary to pay a $189 ransom by check, to be sent to a PO box in Panama.
A rudimentary but pioneering malware
christened AIDS Trojan (or "AIDS Trojan"), this ransomware was far from sophisticated by today's standards. Security experts at the time, such as Eddy Willems, quickly figured out how to bypass the blockage without paying the ransom. Despite this, the attack had a strong psychological and media impact.
Around 20,000 people around the world were targeted. For most, it was the first time that a malware demanded financial compensation to restore access to their data. This extortion method laid the foundations for modern ransomware: a subtle blend of psychological blackmail and technology.
Joseph Popp: Creator of the first ransomware
The police investigation led to a suspect as strange as his program: Joseph Popp, an American biologist and Harvard graduate. Far from being a computer expert, Popp was best known for his research on AIDS.
After his arrest in the Netherlands, Popp claimed that his intention was noble: to use the money raised to fund AIDS research. However, his erratic behavior during the trial led the judges to declare him unfit to stand trial. He was sent back to the United States, leaving the case without any real judicial follow-up.
Popp died in 2006, taking with him the answers to many questions: Did he really have altruistic motives? Or was it just a clumsy attempt at profit?
A turning point in the history of cybersecurity
AIDS Trojan marked a before and after in the digital world. Before 1989, the very concept of ransomware did not exist. This attack, although rudimentary, was a real shock for users and security experts of the time.
Martin Lee, head of Cisco Talos' threat intelligence division, points out that this malware was an unprecedented creation, born of the author's imagination. The lack of models or previous examples shows how avant-garde this attack was.
Ransomware has evolved considerably since then. Gone are the days of floppy disks sent by post: today, they spread massively via the Internet, infecting thousands of computers in a matter of minutes. Ransom demands are now made in cryptocurrencies such as Bitcoin, making their authors almost impossible to trace.
The Legacy of the AIDS Trojan
Despite its limitations, AIDS Trojan remains a powerful symbol. It paved the way for a new form of cybercrime that has become a real industry. Today, ransomware generates billions of dollars each year for its creators, to the detriment of businesses, hospitals, and even critical infrastructure.
This first attack also serves as a reminder of an important lesson: even the most rudimentary digital threats can have a lasting impact. AIDS Trojan was just the beginning. Since then, cybersecurity has been trying to catch up with criminals in a never-ending race.
And if the story of Joseph Popp and his strange malware seems like something out of a movie, it's real. It shows that even a biologist can, in his own way, shape the history of technology... at his own peril.
