Latest news
The great majority of cybercriminals is in it for the money. Some choose to steal it indirectly by using information-stealing malware to gain access to users' online banking accounts or to get their credit card information. Others use malware that blocks access to the computer and then ask the users to pay for having that privilege returned.
This latter attack is executed with ransomware and there are quite a few different pieces of that particular type of malware being currently used, warns Symantec.
Some ransomware locks the computer's desktop and asks of the user to send an SMS to to a premium rate number in order to receive back a code that will restore access to the system.
Other ransomware adds to that a change of the desktop background image, which contains the request for money, instructions on how and where to send it, and an embarrassing pornographic image that makes the user less willing to ask for technical help.
Ransomware disguised as an adult game uses a similar approach. It asks the user to enter their personal information in order to play, and it records the adult-themed Internet pages the user visits. After a time, the list - headed by the personal information - is presented to the user, and he is told that this information will become public if he doesn't pay up.
There is also ransomware that encrypts user files and holds them ransom. Sometimes the encryption key is stored on the computer and the user can decrypt the files if he knows where to look for it, but other times the files are lost for good because there is no guarantee that the criminals will send the key to decrypt them even if the victim sends the money.
Some ransomware doesn't even allow the operating system to boot:
But this particular threat can be bypassed because part of the message is a lie: the hard drive is not encrypted, so it can be accessed offline. And even the overwritten master boot record (MBR) which led to this predicament can be restored.
Of course, the best way to avoid ransomware is to keep your antivirus solution up to date and be constantly alert for attacks that may result in downloaded malware - of any kind.
If, despite all precautions, you pick up ransomware along the way, it's best to search the Internet for clues and possible solutions to the problem. And remember to always backup.
Spotlight
IT security jobs: What's in demand and how to meet it
Posted on 15 May 2013. | Let's say you want a career in information security, where do you start? What credentials do you need? What are employers looking for? Read on to find some answers.
Is Microsoft is reading your Skype communications?
Posted on 15 May 2013. | The question of whether Skype allows U.S. intelligence and law enforcement agencies to access the communications exchanged by its users has still not been adequately answered by Microsoft.
Internet Explorer best at blocking malware
Posted on 14 May 2013. | While Chrome’s malware download protection improved significantly, Internet Explorer 10 continues to outperform the other browsers with a block rate of 99.96%.
Researcher refuses to help Saudi telco to spy on people
Posted on 14 May 2013. | You would think that a Saudi Arabian telecom firm interested in monitoring its users' mobile communications would not be asking a well-known pro-privacy researcher for help, but you would be wrong.
Malicious browser extensions are hijacking Facebook accounts
Posted on 13 May 2013. | Facebook users - especially those in Brazil - are being targeted with malicious browser extensions trying to hijack Facebook profiles, warns Microsoft.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
