Thomas the Tank Engine Ransomware Wants to See You Naked

Thomas, no! A new piece of purported ransomware features a foul-mouthed Thomas the Tank Engine demanding that you send him nude photos — and questioning your mother's sexual orientation.

Credit: HIT Entertainment

(Image credit: HIT Entertainment)

Since there's nothing we can possibly say to improve on that, we’ll add that the ransomware may be just a joke aimed to cause confusion and delay. There’s not really anything to worry about, unless you have treasured childhood memories of the affable and hard-working cartoon locomotive on the island of Sodor — in which case you may want to stop reading now.

MalwareHunterTeam, a ransomware-tracking site run by security researcher Michael Gillespie, posted about the unusual malware on Twitter page.

“Not sure about this…” Gillespie tweeted, and the accompanying image made it easy to see why.

MORE: Best Antivirus Software and Apps

The supposed malware calls itself “nRansom” and locks up your computer screen. An image of a friendly Thomas the Tank Engine shouting “F**K YOU!!!” belies the ugly content of the message, which instructs users to make a burner email address, then send an email to “1_kill_yourself_1@protonmail.com” (since suspended by Proton Mail). All the while, an MP3 file called “your-mom-gay” plays, which is actually the theme music from HBO's Curb Your Enthusiasm.

Then things get weird.

Rather than money, the ransomware distributors want “at least 10 nude pictures of you,” which they intend to sell “on the deep web.” How they intend to compete with the entire rest of the internet, which offers professional-grade nude photos for free practically everywhere, is anyone’s guess. (We're looking forward to salacious snaps of Sir Topham Hatt.)

Now, the good news is that the ransomware campaign is probably bogus, for reasons aside from the obvious ones. Motherboard attempted to infect a machine with the Thomas the Tank Engine malware, but that train couldn't leave the station.

The purported malware used — which is real, despite Motherboard's failed start — doesn’t encrypt files, but instead locks up the screen, which is fairly retro as ransomware goes. Even if the Thomas ransomware does turn out to be real, it will be bypassed if you reboot in Safe Mode.

Furthermore, locking the screen would prevent users from sending any photos, nude or otherwise, which leads us to think that the would-be criminals behind this might not be the most Really Useful Engines in the railyard.

Still, if you’re minding your own business online when a beloved children’s toy starts spouting profanities at you, you should probably restart your computer in Safe Mode and run a virus scan. There’s no reason why Thomas the Tank Engine should be able to see your caboose.

TOPICS
Marshall Honorof

Marshall Honorof is a senior editor for Tom's Guide, overseeing the site's coverage of gaming hardware and software. He comes from a science writing background, having studied paleomammalogy, biological anthropology, and the history of science and technology. After hours, you can find him practicing taekwondo or doing deep dives on classic sci-fi. 

Latest in Online Security
A woman using her laptop securely with a cup of coffee in hand
5 common mistakes people make when shopping for antivirus software
Windows
240 million Windows 10 users are vulnerable to six different hacker exploits — protect yourself now
Victims of Identity Theft
FTC says Americans lost $12 billion to scams last year and these were the worst ones — here's how to stay safe
Apple iPhone 16 Plus Review.
Apple just released an emergency security update for a flaw used in an ‘extremely sophisticated attack’ — update your devices right now
A person trying to set up a new Wi-Fi router
Thousands of TP-Link routers have been infected by a botnet to spread malware
An image of a CAPTCHA
Hackers are using reCAPTCHA to trick users into infecting their own PCs with malware — how to stay safe
Latest in News
NYTimes Connections
NYT Connections today hints and answers — Sunday, March 16 (#644)
Nintendo Switch 2
New Nintendo Switch 2 FCC filing suggests this beloved Nintendo controller could make a comeback
(From L to R) Rohan (Nik Dodani), Josh (Brandon Flynn), Dorothy (Edie Falco), John (Dean Norris), and Liddie (Lisa Kuthrow) in The Parenting
Max top 10 movies — here’s the 3 worth watching right now
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #378 (Sunday, March 16 2025)
Samsung Galaxy Tab S10 FE renders
Samsung Galaxy Tab S10 FE price leak is bad news for budget-conscious buyers
Google Assistant
Gemini to kill off Google Assistant on most Android phones — here's what you need to know