We have seen another flare up of a dangerous and quickly spreading malware known as Cryptolocker. This malware has many variants and there is no guarantee that it will be blocked, even with the combination of antivirus/malware scanners and spam filtering.
The Malware is spread through email messages designed to get a user to click on an infected attachment or link. The email may appear to be sent from an account claiming to be customer support for a shipping carrier (UPS, FedEx), or Admin@yourdomainname, fax, or someone sending you a past due invoice, or a variety of other senders. These email messages are designed to look real, but have an infected payload attached. It is very important that you do not click on any links or open any attachments in any suspicious email messages.
Cryptolocker email may appear to be from a sender you know and trust. Any email containing an attachment that you're not expecting to receive should be considered suspect, especially .zip attachments. Links in emails from a company that don't go to that company's website should also be considered suspect. Some of the most recent attacks have been disguised as a resume.
If you are questioning an email message, chances are it’s not legitimate.
Cryptolocker has been infecting PCs around the world and effectively holding the files on the PC and network server for ransom. The files are encrypted and completely unusable. The users who have their files encrypted are requested to pay $1000+ in order to receive a key to unlock them. Paying the ransom does not guarantee that the bad guys will provide the key. If files are encrypted, the best course of action is to restore from a backup.
This is a world-wide problem and it has been very difficult for law enforcement organizations to identify and shut down all of the Cryptolocker command and control center servers. This is a very malicious and destructive virus and could potentially cause considerable downtime. The best way to stay safe is to delete any suspicious looking emails. Please share this information with your staff.
Mobius Works will help with any computer security concerns including:
Security Awareness Training to teach your employees how to recognize/avoid these types of threats.
Security Audits to find the weaknesses in your defenses and help you protect yourself.
Cloud backup to protect your files in case you do get infected.
If you have any questions or experience any issues, please contact Dale Rhodes, Vice President of Sales and Marketing at 413-564-6942 ext 127. Drhodes@mobiusworks.com