ALERT: Ransomware Update
Ransomware is the fastest growing, most lucrative form of malware out there right now, and CyberCriminals are cashing in.
Here is a list of some of the latest versions out there. This list is ever-changing, and should not be taken as a complete list. If you have any questions, please call us at 1-204-800-3166, and we can go over some of the solutions available to help to prevent infection.
Zepto
A form of the popular “Locky” virus, this encrypts your files to “.zipto”. Usually spread through email containing a zip file. When clicked, a javascript file will begin unpacking itself, and start encrypting your files. Because this version is so new, some antivirus software may not detect it yet. There is currently no way to decrypt the files.
CryptXXX
This has been around for a while, but has recently made a comeback in June collecting approximately $50,000 in ransoms for the month. CryptXXX is spread through spam email. There is currently no way to decrypt CryptXXX.
Bart Ransomware
Usually spread through an email with a “photos” zip attachment. When the attachment is opened, it triggers a javascript filr called “Rocketloader” that zips up your files in a password-protected zip file. Bart is a little different, in that it doesn’t have to communicate with the “mothership” computer to encrypt your files. So it will continue to do so, even when disconnected from the network. Currently there is no way to decrypt Bart-encrypted files.
Cerber Ransomware
This has been attakcing Office 365 users, and usually comes in the form of an emailed Office document. Currently there is no way to decrypt Cerber-encrypted files.
With no way to decrypt the files, and no choice but to pay the ransom, companies are seeking ways to avoid getting infected in the first place.
Leave a Reply