Warning - New Types of Ransomware Found

Computer users are advised not to click on links or open attachments in uninvited or unexpected emails and be wary about the websites they visit as security researchers identify hazardous new versions of ransomware. They should keep regular backups of important files and store the backups in a location away from a network.

Ransomware is a type of malware that blocks access to computer files and forces the user to pay a ransom in order to release them. However, the FBI is reportedly investigating a particularly nasty version of ransomware known as Samas that attempts to encrypt files on computers across an entire network, rather than just individual computers.

As reported by Reuters, the FBI has warned businesses that the group behind Samas was utilising an automatic tool to find servers using an out of date version of popular software. They would then take advantage of a weakness in the software to install the ransomware remotely on computers connected to the network. The ransomware is also thought to delete backup files.

The most recent attack known as Petya is an email with a link to an infected file claiming to be a resume. Once downloaded and implemented, the malware crashes Windows and overwrites systems on the computer. A payment is demanded upon reboot.  The ransom amount is doubled if the user does not pay by the deadline set by the criminals.          

How to Stay Safe

If your computer has been infected by ransomware, you should update your system and restore the affected files from backup.  I would suggest seeking technical advice if you are unsure about the next steps.

I don’t recommend paying any ransom demanded to decrypt files. There is no guarantee the attackers will give you a working decryption tool, and you are also not protected against future attacks.

You should also change all of the passwords and usernames on all computers, choosing strong passwords.  Here is some advice on avoiding weak passwords.

About the Author

Geoff Stewart is a highly experienced and skilled IT Challenger at Surety IT. His knowledge is based on years of industry experience having created customised, stable, well performing systems both for multi-national companies in the UK and Australia and Surety IT customers.

Surety IT’s mission is to address and overcome the 4 biggest problems businesses have with their IT systems and support, which are: Poorly performing systems, unreliable systems, unresponsive IT support and poor IT related advice.

We’ve developed a proprietary process that allows us to do that by: thoroughly understanding your business requirements, gaining an in-depth knowledge of your IT systems, identifying mission critical technology issues vital to your business performance and ensuring our ‘Solution Path’ process is specifically designed and tailored for you with value based solutions and support.

Call us today at 1300 478 738, visit www.suretyit.com.au or email geoff@suretyit.com.au to find out more about how we go about achieving these outcomes.