CryptoWall Virus: Don’t Lose Everything

Remember that Cryptolocker virus that was affecting computers earlier this year? It was a type of ransomware that restricts access to the computer and demands a high-dollar ransom in order for the creators of the virus to remove the restriction. We hate to say it but this has gotten worse. With Cryptolocker it was possible to get your files back but with this new variation of the virus you pay ransom or lose everything.

CryptoWall Virus

cryptowall virusThe CryptoWall virus infects computers through email messages and illegitimate downloads. After the virus is on your computer it will encrypt all of the files stored on the hard drive making them impossible for you to access. In order for you to get the files back the creators are demanding a ransom of $500 to decrypt them. This virus is especially dangerous for Windows users with Windows XP, Windows Vista, Windows 7, and Windows 8 operating systems. Although it is relatively simple to remove the virus, it is impossible to decrypt the files without paying the ransom.

When someone encrypts your files it means that they have completely changed the structure of your data making it impossible to work with, see, or use. When files are encrypted you are basically losing them forever without the decryption code.

How to Protect Your Files

The team at Flex Technology Group has had to tell over 30 people in the last month that they have lost all of their data without hope of getting it back. Don’t let that happen to you. Take these tips to avoid infecting your computer with the CryptoWall virus.

  • Know how to identify suspicious emails in your inbox
  • Install anti-malware software
  • Don’t use unreliable video players
  • Only update Flash though Adobe

Contact the team at Flex Technology Group to get more information on the CryptoWall virus and get your questions answered about any suspicious activity on your computer. We can also help with providing and installing anti-malware software.

Security Alert: Phone Calls from “Microsoft Tech Support”

It may come as a surprise that cybercriminals aren’t just sending fake emails anymore. Recently, we’ve found they might also call your personal or work phone and say they are an employee at Microsoft. They will claim they are offering to help you with a computer issue or sell you a software license. Once you give them access to your computer, they can do the following:microsoft-telephone-security

  • Trick you into installing malicious software that could capture sensitive data, such as online banking user names and passwords. They might also then charge you to remove this software.
  • Convince you to visit legitimate websites (like www.ammyy.com) to download software that will allow them to take control of your computer remotely and adjust settings to leave your computer vulnerable.
  • Request credit card information so they can bill you for phony services.
  • Direct you to fraudulent websites and ask you to enter credit card and other personal or financial information there.

Microsoft does not make unsolicited phone calls (cold calls) to charge you for computer security or software fixes.

Tech Support Scams: Here’s what you should know

Cybercriminals will use any information they can find to earn your trust such as your name and your operating system. Once they’ve earned your trust, they might ask for your username and password or for you to download a free software that gives them remote access to your computer so they can “fix” it.

Here are some of the organizations that cybercriminals claim to be from:

  • Windows Helpdesk
  • Windows Service Center
  • Microsoft Tech Support
  • Microsoft Support
  • Windows Technical Department Support Group
  • Microsoft Research and Development Team (Microsoft R & D Team)

Report phone scams

Learn about how to report phone fraud in the United States. Outside the US, contact your local authorities.

See how to protect yourself from telephone support scams, what to do if you already gave your information to a tech support person, and other useful information at Microsoft’s Safety & Security Center.

Information in this article from: Microsoft

To get regular security updates, subscribe to our newsletter.

 


Ransomware: Protect your files or lose them forever

In October of 2013, Antivirus companies discovered a new ransomware known as Cryptolocker. Since then, after many attempts at blocking and killing the software attacks, a new version came out, and both are “seized” according to Deputy Attorney General James Cole. The leader, Evgeniy Bogachev, is even wanted by the FBI. Whenever one attack is stopped, there is almost always another that is stronger and less detectable than the last. Here is the low-down on ransomware.

What is Cryptolocker Ransomware?
Ransomware is a type of malware which restricts access to the computer system that it infects, and demands a ransom paid to the creator(s) of the malware in order for the restriction to be removed. Cryptolocker ransomware is particularly nasty because infected users are in danger of losing their files… forever.

cryptolocker

These messages have been targeted to businesses through phishing attacks. The only way to unlock your files is by using a private key stored on the cybercriminal’s server. Infected users must pay $300 USD to receive this private key. There is also a time limit placed on this, if you exceed it, you’re files could be lost forever.

Here is a list of file extensions that are targeted and encrypted so you can’t access them after attack:

3fr, accdb, ai, arw, bay, cdr, cer, cr2, crt, crw, dbf, dcr, der, dng, doc, docm, docx, dwg, dxf, dxg, eps, erf, indd, jpe, jpg, kdc, mdb, mdf, mef, mrw, nef, nrw, odb, odm, odp, ods, odt, orf, p12, p7b, p7c, pdd, pef, pem, pfx, ppt, pptm, pptx, psd, pst, ptx, r3d, raf, raw, rtf, rw2, rwl, srf, srw, wb2, wpd, wps, xlk, xls, xlsb, xlsm, xlsx

Here is further insight on Cryptolocker.

How do you protect yourself?

When you see the message like the one shown above, it’s actually too late. You need to prevent ransomware before it starts.

First off, be aware of how to identify malicious emails in your inbox.

Second, make sure you have a program on your computer that blocks these types of attacks. Losing access to all your files can be detrimental for your business. Protect yourself and your client’s information that is stored on your computer by investing in an anti-malware software. FlexTech offers programs that will both protect against ransomware, and help to recover files in the unfortunate event you are attacked.

Contact us to get more information or with questions you have regarding suspicious activity on your computer.

Source: Cryptolocker Ransomware: What You Need To Know