CryptoLocker Malware Offers Victims 'Second Chance' to Pay Ransom

[Guest]

The CryptoLocker ransomware is granting victims an expensive 'second chance' to regain their encrypted files.

CryptoLocker Malware Offers Victims 'Second Chance' to Pay Ransom : Read more

 

[seshysama]

This has become an increasing problem for our IT office. I've spoken with Symantec on it, and they say that Cryptolocker WILL NOT SPREAD THROUGH A NETWORK. it will encrypt every file the infected computer has access to, which includes network drives, so it WILL mess up shared server files, but it can't spread. (as per Symantec)

 

[nevilence]

Wow I didnt even know this kind of malware existed, luckily I have always been anal about having antivirus on my PCs.

 

[glasssplinter]

With everything the NSA tracks and whatever why are things like this not stopped? You would think that they would have a credit card and could enter the information in and see who picks it up on the other end. Chances are though this is probably made by the NSA to pad their coffers. Pretty nasty infection though, wonder what it will be like to tell your customer that you can't recover any of their data.

 

[jimmysmitty]

This has become an increasing problem for our IT office. I've spoken with Symantec on it, and they say that Cryptolocker WILL NOT SPREAD THROUGH A NETWORK. it will encrypt every file the infected computer has access to, which includes network drives, so it WILL mess up shared server files, but it can't spread. (as per Symantec)

It will not spread but it is nasty. We have dealt with it for two customer, one of them twice.

Had to restore their entire public share server (50-150GB) twice.

The best way to stop it is to block .exe and .zip attachments as it normally sends as a .zip and will be form_xxx.pdf.exe in the .zip folder.

 

[heero yuy]

and why does stuff like this work? because windows lets anything run without asking the user
and an admin account has access to every file on the computer (and I think normal accounts do as well )
if all my games were on Linux I would be using that right now but unfortunately they are not (but steam os and stuff might change that )

 

[littleleo]

Why can't the feds track the payment info and bust the criminals? They are a growing problem for all countries perhaps Interpol can track and arrest these criminals.

 

[dimar]

User's just have to be extra careful. Think of using a computer just like driving a car. Basically, pay attention.

 

[koga73]

I have UAC in windows turned all the way up to prompt for credentials before allowing admin rights so I'm covered. No A/V just common sense and strong passwords.

 

[pcichico]

I run a small computer store and we do on average $8500/month in computer repair which is mostly virus removal. Last week a customer brought their machine in with crytolocker and I figured its just like all the other fake av programs claiming doom and gloom. Pretty suprised to see something that was actually doing what it said. In 13 years of running this business this is the first time I've seen a virus/malware that actually lead to data loss. The timer had already run out when the dude brought it in. Had a ton of word docs and pdfs all toast. Pretty slick too how most cloud backups are worthless against it. Since the files aren't erased but slightly altered the cloud service sees it as a change and replaces the files with the "updated" ones. Best defense is something like Acronis that has weeks worth of incremental backups to choose from. Made me rethink the cloud backup service we provide to our own customers. Should be called the walking dead virus. Files still there but nobodies home.

 

[virtualban]

And cops and lawyers go after file sharers and can't get real internet criminals? Like, really?!
What are they being paid for?
While lawyers are being paid by the interested party, the the rest law system is being paid by taxpayers, so, judges should throw senseless cases out, and take this kind of cases in. Same going for law enforcement.

 

[Vorador2]

We haven't got any infection here, but i've taken measures. Blocking the running of .exe in %appdata% and %appdata%\*\* is usually enough.

It spreads trough emails attachments, so if your anti-spam blocks them you should be fine.

 

[theLiminator]

Good thing I'm running Linux.

 

[techguy911]

While having an AV does help for older version the new version will bypass most AV's out there heard some people with kaspersky 2014 get infected but it catches it after it gets infected.
Also they use anon payment methods making it a nightmare to track them down.

The best protection would be CryptoPrevent by security consulting company Foolish IT it will also stop many other fake av and ransomware/scareware programs.
Also making backups is VERY important most people do not back up their pictures and important data even businesses fail to do any backups.

 

[demonhorde665]

the poeple doing this need to be dragged into the street and have their balls kicked in till they bleed to death from internal bleeding.

 

[The Empress]

It would a lot cheaper, more efficient and practical to hunt them all down and kill them.