These tools are taking a new approach to the problem, which is to constantly monitor for encrypted files and stop the relevant processes, thus often limiting the loss to the first few files. Some have proved far more efficient than any standard antivirus as of now:<p>Linux, Windows:
https://github.com/unixist/cryptostalker<p>OSX:
https://objective-see.com/products/ransomwhere.html<p>more theoretical information on Cryptodrop's paper:<p>http://www.cise.ufl.edu/~traynor/papers/scaife-icdcs16.pdf
all the links in a clickable fashion:<p>Linux/Windows: <a href="https://github.com/unixist/cryptostalker" rel="nofollow">https://github.com/unixist/cryptostalker</a><p>OS X: <a href="https://objective-see.com/products/ransomwhere.html" rel="nofollow">https://objective-see.com/products/ransomwhere.html</a><p>Paper: <a href="http://www.cise.ufl.edu/~traynor/papers/scaife-icdcs16.pdf" rel="nofollow">http://www.cise.ufl.edu/~traynor/papers/scaife-icdcs16.pdf</a>