Yesterday, May 11, 2017 a new type of ransomware was released called “Jaff”. This is spread via the Necurs Botnet using Email as the transmission media. Considering last weeks exploits of Google Gmail accounts, I suspect this will eventually migrate to appear as Emails from legitimate friends.
Beware of any emails with the subject lines of “PDF, Scan, File, Copy or Document” with an underscore or simply “Receipt to print“.
The following link is an overview provided by ZDNet:
The original discovery from Forcepoint and related technical information can be found here:
https://blogs.forcepoint.com/security-labs/jaff-enters-ransomware-scene-locky-style