Presenter Tyler Moffitt (right), the company's senior threat research analyst, detailed the threat from Locky that seeks the lowest ransom of one Bitcoin (about $850), and account for the most victims per day – 90,000.
Locky earns 2610 payouts each day which come to $1.3 million, all of which are made possible by innovative and broad phishing campaigns.
Also listed among the contenders were TeslaCrypt, Cerber, Crysis and CryptXXX, all of which have been in the news in recent times.
The threat from Android was made worse by the fact that Google Play was not as safe as made out, he said. During the height of the Pokémon Go craze, there were numerous malicious apps that rode on this wave and were able to make their home in this app store.
Moffitt also underlined the threat from the emerging Internet of Things, pointing out some interesting examples of threats which have come about due to the fact that every little gadget comes ready to connect to the Internet.
One case, from 2014, was that of a thermostat which an attacker had locked using ransomware and then threatened to set the temperature at 99 degrees unless the owner forked out US$300 in the next 24 hours.
For the most part, the webinar dealt with reported cases, with Moffitt pointing to the recent leak of the source code for the Mirai botnet as an indicator that DDoS threats would grow in the new year. Moffitt's presentation made it clear that a vast majority of the threats were to Windows users.
Webroot is a private company that provides Internet security for consumers and businesses. It was founded in Boulder, Colorado, in 1997, and is now headquartered in Broomfield in the same state.
It has operations in San Mateo and San Diego in the US, Australia, Austria, Germany, Ireland, Japan and the United Kingdom.