Cryptolocker [DANGER]
-
thanks!
@unknownuser said:
The most widespread variants of the Cryptolocker malware are detected by Kaspersky products with the following verdicts:
Trojan-Ransom.Win32.Blocker.cfkz, Trojan-Ransom.Win32.Blocker.cmkv, Trojan-Ransom.Win32.Blocker.cggx, Trojan-Ransom.Win32.Blocker.cfow, Trojan-Ransom.Win32.Blocker.cjzj, Trojan-Ransom.Win32.Blocker.cgmz, Trojan-Ransom.Win32.Blocker.cguo, Trojan-Ransom.Win32.Blocker.cfwh, Trojan-Ransom.Win32.Blocker.cllo, Trojan-Ransom.Win32.Blocker.coew."
To manually prevent the infection:
You need to prevent the execution of files from:
%appdata%
%localappdata%
%temp%
%UserProfile%
compressed archiveYou can set software restriction policies:
http://technet.microsoft.com/en-us/library...1(v=ws.10.aspx
http://support.microsoft.com/kb/310791http://forum.kaspersky.com/index.php?s=504e39a300584efabfc98b4350acfa30&showtopic=277400
-
Thanks Bob, made the post a sticky.
-
Fortunately virus-writers rarely 'support' the MAC OS
-
Yep
-
The Physics department at Oxford is taking this threat really seriously. Apart from implementing various measures, they also recommending that people consult this guide:
http://www.bleepingcomputer.com/virus-removal/cryptolocker-ransomware-information
Hope this helps everyone to understand the threat, and how to avoid being caught out.
The key advice seems to be 'back up all your files', and preferably on removable storage.
Kind regards,
Bob -
-
It happened yesterday to one of the businesses in my building.
He appears to have an inadequate backup system and uses a free version of Antivirus software.
He is now paying the ultimate penalty as he appears to have lost about 80% of his files (and still counting)
-
Wow! That's pretty crazy.
-
yeh it certainly is Rich
The guy is a Civil Engineer, in his early to mid 30's....a fit and healthy looking bloke, until now.
He is devastated, and looks quite ill.
-
More info here:
http://krebsonsecurity.com/2013/11/how-to-avoid-cryptolocker-ransomware/
http://krebsonsecurity.com/2013/11/cryptolocker-crew-ratchets-up-the-ransom/As always - remote backups are absolutely critical if you are running a business. Not using Windows can also be helpful
-
@unknownuser said:
Not using Windows can also be helpful
I'm guessing once Apple becomes a real contender with a fair amount of users it will be a target also, right now they do not have enough users to warrant the effort.
-
Our offices and staff have used windows to defend windows (seems simple doesn't it?) for the past 8 years. Since we kicked out the third parties (security experts..lol) there have been no issues at all. There are two groups of people having issues with windows security, people who don't use windows, and people who use it and insist on using products other than those developed by windows to maintain it.
-
"http://www.bleepingcomputer.com/"
I went there and I would recommend that you stay away from the site. Like many stories of virus devastation this one is really riddled with bull. The site has some focused obsession with malware. If you run into a room full of people trading "torrents" and talking about security it is best to back out of the room.
-
This forum post is going on three years old now...that's pretty hot... I guess modeling has become a business for very serious people. No time for frivolity.
-
@roland joseph said:
This forum post is going on three years old now...that's pretty hot... I guess modeling has become a business for very serious people. No time for frivolity.
wait, what's wrong with frivolity? Are you trying to encourage it by posting in an old thread?
Advertisement