Cyber criminals are constantly devising new types of malware to commit financial theft, fraud, identify theft other crimes against ordinary people. The latest threat has been widely reported on various news outlets as:-
Gameover Zeus, GOZeus, or P2Pzeus
The group that created Gameover Zeus are the same persons who created CryptoLocker malware which began infecting machines in Sept 2013
How computers get infected
You probably receive many emails claiming to be from your or another bank, a government body or other official source, urging you to check your account, claim a refund or other action. Many of these are phishing emails containing links to fake/bogus websites, or attachments which you are told to open, these contain malware which is then installed on your computer. Once installed various actions can be taken against your computer to either encrypt your working documents or even steal financial information if saved on your machine.
What should I do if my machine reports its infected with Cryptolocker
If you discover that a computer is infected with CryptoLocker, the first thing you should do is disconnect it from your wireless or wired network. This will prevent it from further encrypting any files. Then call Quintech support desk immediately on 01684 882702
Is it possible to decrypt files encrypted by CryptoLocker?
Unfortunately at this time there is no way to retrieve the private key that can be used to decrypt your files without paying the ransom. Brute forcing the decryption key is not realistic due to the length of time required to break the key. The only method you have of restoring your files is from a backup.
It is therefore imperative to have good reliable backups in order to restore your data. Any local data held on users machines will not be included in most backups so is most at risk.
The best way to protect yourselves against cryptolocker is to make sure anti-virus software and windows patches are up to date as well as warning users about opening email from unknown senders.
Customers with anti-spam systems will still be targeted by these types of attacks. One of the key areas of security weakness is users opening personal email from online sites on their work machines, this will bypass any anti-spam systems which are in place.
Please be extra vigilant, If you have any questions or would like to discuss this further please don’t hesitate to contact us on 01684 882702
Quintech Computer Systems Ltd