The CryptoLocker and Gameover Zeus virus’s have made national news headlines this week.
Both of these virus’s have been around for some time now and I have dealt with computers in the repair shop that have been infected.
What seems unusual about this current threat is that two completely different virus’s are being linked together. Some reports suggest that the two are linked. Some suggest that when users are paying the ransom on one – the other (Zues) steals your money that you are sending.
Some brief info on Cryptolocker.
Cryptolocker – What Is It?
This virus is a real nasty piece of work. In the last few months we have seen quite a few cases of this malware infection.
This virus encrypts all the files on your computer. Documents, photos, everything. To decrypt your files you are told to pay a ransom using the bitcoin currency.
We have seen many similar virus’s in the past. What makes this one stand out is that the only way to get your documents back is to actually “pay the ransom”!
Repair Procedure
If your computer becomes infected with this virus, the only repair we can carry out for you in the shop is a full format (wipe the hard drive and install a clean copy of Windows).
There is no way of retrieving your files.
Customers have asked me to assist them and pay the ransom to retrieve their important data. I am unwilling to assist with this due to the ethics. This is funding organised crime.
On a private trade forum that I use to discuss these matters with other computer shop owners around the country, we all appear to agree that assisting customers who decide to pay the ransom is wrong and only encourages more copycat hackers to recreate similar bugs.
Losing your data to this type of thing is a tough lesson to learn for not backing up. But the moralities involved in actually paying these ransoms must be questioned.
How to tell if your computer is infected with Cryptolocker
You will know. The screenshot pictured will appear and if you try to open a document on your computer it will open but the information you see will just be gobbledegook.
Hackers Exploiting The Publicity
As always when these type of virus’s make it onto the national news, hackers and scammers exploit the publicity.
Cyber criminals are exploiting the fears about these virus by offering fake fixes which will in turn install other malware bugs on your system. Telephone scammers are the worst of this bunch. If you receive a telephone call relating to your computer then be on your guard.
Gameover Zeus Virus
The Zeus variants of virus are designed to exploit poor security on outdated computers and steal your passwords in order to steal your money. The Gameover version which has featured in the news over the last week is a clever version of the Zeus malware. It can work it’s way around firewalls and outdated virus protection software.
How to tell if your computer has been hit with Gameover Zeus
The FBI suggest that these are the things to look out for:
Your computer working very slowly
Your cursor moving erratically
Text-based chat windows appearing on your desktop unexpectedly
My advice
Watch out for any unauthorized bank transfers.
When using online banking once you have logged in get into the habit of glancing at the “last login” date and time which will be clearly stated on the bank’s page once you login. It should also list “last unsuccessful login” date if any.
Change your passwords regularly. As long as you remember your email password, all others can easily be retrieved if you forget them.
Why Do They Do It?
I am often asked why anyone would make a computer virus. The FBI and the NCA have estimated that over 1 million computers around the world (15,000 in the UK) have already been hit with the powerful Cryptolocker malware virus. £250 ransom x 1 million kind of answers that question.
Be safe online – happy computing.
Barry