Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Cryptolocker ransomware has ´infected about 250,000 PCs´
BBC News ^ | 12/25/13 | Leo Kelion

Posted on 12/25/2013 6:51:56 PM PST by Nachum

A virulent form of ransomware has now infected about quarter of a million Windows computers, according to a report by security researchers. Cryptolocker scrambles users´ data and then demands a fee to unencrypt it alongside a countdown clock. Dell Secureworks said that the US and UK had been worst affected. It added that the cyber-criminals responsible were now targeting home internet users after initially focusing on professionals. The firm has provided a list of net domains that it suspects have been used to spread the code, but warned that more are being generated every day. Ransomware has existed since at least 1989,

(Excerpt) Read more at bbc.co.uk ...


TOPICS: News/Current Events
KEYWORDS: criminalconspiracy; cryptolocker; dsj02; hackers; infected; pcs; ransom; ransomware
Navigation: use the links below to view more comments.
first 1-5051-100101-134 next last

1 posted on 12/25/2013 6:51:57 PM PST by Nachum
[ Post Reply | Private Reply | View Replies]

To: Nachum

Cyber-criminals all need a 9mm to the back of the head.


2 posted on 12/25/2013 6:56:00 PM PST by Farmer Dean (stop worrying about what they want to do to you,start thinking about what you want to do to them)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum

Clever little bastards.


3 posted on 12/25/2013 6:57:22 PM PST by ETL (ALL (most?) of the Obama-commie connections at my FR Home page: http://www.freerepublic.com/~etl/)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum

http://www.bleepingcomputer.com/virus-removal/cryptolocker-ransomware-information#prevent

See “17.How to prevent your computer from becoming infected by CryptoLocker” There’s a free prgram to prevent it.


4 posted on 12/25/2013 7:00:45 PM PST by mrsmith (Dumb sluts: Lifeblood of the Media, Backbone of the Democrat Party!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum

Cyber-criminals all need Massive, repetitive, concentrated exposure to military grade vomiting agent (an arseicalagent)


5 posted on 12/25/2013 7:01:24 PM PST by SandRat (Duty - Honor - Country! What else needs said?)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum
I got this a few times but because my virus software caught it it only locked up a single window of my IE till I killed the process:


6 posted on 12/25/2013 7:02:09 PM PST by sickoflibs (Obama : 'If you like your Doctor you can keep him, PERIOD! Don't believe the GOPs warnings')
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum

I found that Norton sucks, McAfee does a much better job than it did.


7 posted on 12/25/2013 7:04:09 PM PST by sickoflibs (Obama : 'If you like your Doctor you can keep him, PERIOD! Don't believe the GOPs warnings')
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum
Crikey! I'll have to closely watch this computer for infestations, no doubt!

Why, the malware might think this is a "Windows" computer somehow and attempt to subtly run an ".exe" or ".com" file here, and THEN where would I be? (Psst! What's a "Windows" computer? "Windows" makes computers?)

Especially since neither of those types of files will run on this computer or any other I have connected to the web, and all personal and critical data is stored on powered-down backup drives and totally inaccessible to any device until I both power them on and then power on the hub to connect them to any computer. Never done when anything is online, and usually with a complete power-off and then restart first while in the meantime making certain that all internet connections are inactive or unpowered.

Next I expect them to set off a "Mac" executable against these machines!

(Please excuse while I go off into a corner and laugh hysterically for awhile...)

8 posted on 12/25/2013 7:04:41 PM PST by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the mooslimbs trying to kill them-)
[ Post Reply | Private Reply | To 1 | View Replies]

To: mrsmith

That’s quite interesting. Do you recommend it?

Thanks.


9 posted on 12/25/2013 7:05:23 PM PST by nascarnation (Wish everyone see a "Gay Kwanzaa")
[ Post Reply | Private Reply | To 4 | View Replies]

To: sickoflibs
Stone the crows! Thanks for the pic, really, and saved for an upcoming April Fool's day gag or several!

And THEN AGAIN on April the First as well as on November the Eighth (Pres Elec Day, I believe, in USA) as well! *grin*

10 posted on 12/25/2013 7:08:43 PM PST by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the mooslimbs trying to kill them-)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Nachum

Too bad we can’t ask the NSA to redirect it’s attention for a day or two and locate these scum. They can go back to spying on us after that.


11 posted on 12/25/2013 7:10:01 PM PST by Cementjungle
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

This malware requires use user action to install. They use social engineering to get people to open the attachment.

Now please explain why those non-windows machine are safe if a user approves an action while using an account with admin access?


12 posted on 12/25/2013 7:11:50 PM PST by driftdiver (I could eat it raw, but why do that when I have a fire.)
[ Post Reply | Private Reply | To 8 | View Replies]

To: sickoflibs
How did you get it off? I got it a couple of months ago at work, but the IT people took care of it. Now I have it at home. I wasn't that worried about fixing it because my computer is 6 years old and not really worth fixing; I was thinking about replacing it anyway. I don't do online banking, have backups of the pictures I had stored there. So no real great loss if I can't fix and just get something new.
13 posted on 12/25/2013 7:12:27 PM PST by Spirit of Liberty (Time to go Galt!)
[ Post Reply | Private Reply | To 6 | View Replies]

To: nascarnation
That’s quite interesting. Do you recommend it?

I can't speak for that person, but I put it on every machine I touch. I've had 3 cryptolocker machines brought to me in the past few months. It's harder than most malware to remove, still easy enough, just a pain.

14 posted on 12/25/2013 7:12:32 PM PST by Malsua
[ Post Reply | Private Reply | To 9 | View Replies]

To: Farmer Dean

I wouldn’t waste a 9 on these bastards. .22LR is good enough for the mob and sure as hell is good enough for them.


15 posted on 12/25/2013 7:12:39 PM PST by Dick Bachert (Ignorance is NOT BLISS. It is the ROAD TO SERFDOM! We're on a ROAD TRIP!!)
[ Post Reply | Private Reply | To 2 | View Replies]

To: Nachum

The few I have seen aren’t actually locking the files, but are adding MSConfig and a switch to the startup menu, effectively blocking that user from changing anything.

If there is an Admin account that you can access, you can go find and remove the MSConfig entry from the affected user account it will fix it.


16 posted on 12/25/2013 7:12:53 PM PST by PeaceBeWithYou (De Oppresso Liber! (50 million and counting in Afghanistan and Iraq))
[ Post Reply | Private Reply | To 1 | View Replies]

To: Farmer Dean

I wouldn’t waste a 9 on these bastards. .22LR is good enough for the mob and sure as hell is good enough for them.


17 posted on 12/25/2013 7:14:00 PM PST by Dick Bachert (Ignorance is NOT BLISS. It is the ROAD TO SERFDOM! We're on a ROAD TRIP!!)
[ Post Reply | Private Reply | To 2 | View Replies]

To: Utilizer
RE Stone the crows! Thanks for the pic, really, and saved for an upcoming April Fool's day gag or several!
And THEN AGAIN on April the First as well as on November the Eighth (Pres Elec Day, I believe, in USA) as well! *grin*

Who ever created that locks up that window of the browser into full screen so you cant close it without killing the browser process. I recall being able to minimize it though.

But I read that it can really be bad if infected.

How can we use it as a joke?

18 posted on 12/25/2013 7:14:59 PM PST by sickoflibs (Obama : 'If you like your Doctor you can keep him, PERIOD! Don't believe the GOPs warnings')
[ Post Reply | Private Reply | To 10 | View Replies]

To: Farmer Dean
Cyber-criminals all need a 9mm to the back of the head.

Nah. Ammunition is too expensive. Rope is cheap, reusable, and recycleable.

19 posted on 12/25/2013 7:17:25 PM PST by Standing Wolf (No tyrant should ever be allowed to die of natural causes.)
[ Post Reply | Private Reply | To 2 | View Replies]

To: Nachum
I had one of these 7 or 8 years ago.

Was a wake up call... everything I have that is important is on a puter that has never been on-line. I know the trend is to put more and more stuff out there on the cloud but I wont do it..

20 posted on 12/25/2013 7:18:07 PM PST by montanajoe
[ Post Reply | Private Reply | To 1 | View Replies]

To: SandRat

>>Cyber-criminals all need Massive, repetitive, concentrated exposure to military grade vomiting agent (an arseicalagent)<<

THEN a 38 caliber facial enema.


21 posted on 12/25/2013 7:19:00 PM PST by freedumb2003 (Fight Tapinophobia in all its forms! Do not submit to arduus privilege.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Spirit of Liberty
RE :”How did you get it off? I got it a couple of months ago at work, but the IT people took care of it. Now I have it at home. I wasn't that worried about fixing it because my computer is 6 years old and not really worth fixing; I was thinking about replacing it anyway. I don't do online banking, have backups of the pictures I had stored there. So no real great loss if I can't fix and just get something new.”

McAfee protected my computer from it so it only locked a single window of IE, so I just went to ‘processes’ window and killed the IE session which closed all those windows.

This happened a few times but never resulted in a problem.

So far McAfee has done its job.

Are you saying that some problem shows up when you boot up your computer?

22 posted on 12/25/2013 7:20:25 PM PST by sickoflibs (Obama : 'If you like your Doctor you can keep him, PERIOD! Don't believe the GOPs warnings')
[ Post Reply | Private Reply | To 13 | View Replies]

To: Dick Bachert
Make sure it's a revolver, you know, no spent casings lying around.
23 posted on 12/25/2013 7:22:26 PM PST by jmacusa ("Chasing God out of the classroom didn't usher in The Age of Reason''.)
[ Post Reply | Private Reply | To 15 | View Replies]

To: sickoflibs

My dauhter got this on her laptop. I restarted and opened up in SAFEMODE, went to backup and restore and put the laptop to an earlier date. It worked.


24 posted on 12/25/2013 7:22:58 PM PST by o-n-money
[ Post Reply | Private Reply | To 6 | View Replies]

To: nascarnation

“bleeping computer” is a reputable site if i needed to open many attachments I would install the program. But I don’t so I haven’t.
I guess that’s sort of a recommendation, I’m no ‘expert’ anyway though.


25 posted on 12/25/2013 7:24:32 PM PST by mrsmith (Dumb sluts: Lifeblood of the Media, Backbone of the Democrat Party!)
[ Post Reply | Private Reply | To 9 | View Replies]

To: freedumb2003
NO, then an 8 Ga., Buck shot Rectal Enema
26 posted on 12/25/2013 7:24:53 PM PST by SandRat (Duty - Honor - Country! What else needs said?)
[ Post Reply | Private Reply | To 21 | View Replies]

To: Farmer Dean

“Cyber-criminals all need a 9mm to the back of the head.”

Nope. Too easy. Burned at the stake live on the Washington Mall with MSM cameras rolling. After a fair trial and conviction of course.

I figure after the third one, the rest would get the message and hang up their cyber spurs. The world would be a much finer place after that, and some firewood and kerosene would be such a small price to pay.


27 posted on 12/25/2013 7:26:40 PM PST by catnipman (Cat Nipman: Vote Republican in 2012 and only be called racist one more time!)
[ Post Reply | Private Reply | To 2 | View Replies]

To: ETL

> Clever little bastards.

Not really if you’ve ever tinkered with virus and trojan manufacturing programs that are so simple that kids can use them. With just a little knowledge about how specific antivirus programs work (many simply scan specific locations on your computers for known malware files that are updated in virus deinition databases that you have to download to update; If the filenames aren’t listed in the database it won’t detect the virus) The ransomware guys usually pack their virus files into a lot of “downloader” programs that you use to download freeware files or games online. The downloader will install hidden files on your computer then unpack and install the virus / trojan in the background without alerting the target.

It doesn’t take a genius to do this; just a sociopath without a conscience hellbent on making a lot of money. I agree with others on heres; jail time isn’t sufficient. Being fed to sharks one bodypart at a time may not be sufficient.


28 posted on 12/25/2013 7:27:16 PM PST by jsanders2001
[ Post Reply | Private Reply | To 3 | View Replies]

To: Nachum

Did anyone stop and think that if you were screwing around on the internet going places you shouldn’t like child porn sites or whatever and the FBI were on to you, do you think they’re going to tip you off by telling you they got your number? And moreover, for what amounts to an out an out bribe they’ll fix everything for you right over the net? The next thing you know you can rob a bank or access someone’s account and drain but hey, if you just send us a “Pay Pal’’ payment all is forgiven’’. Honestly. Use your head.


29 posted on 12/25/2013 7:27:20 PM PST by jmacusa ("Chasing God out of the classroom didn't usher in The Age of Reason''.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: driftdiver
Now please explain why those non-windows machine are safe if a user approves an action while using an account with admin access?

Glad to! An ".exe" or ".com" or the equivalent MicroShiite executable can not run on a 'nix environment. The Operating System is totally different and the calls to various libraries, drivers, video prompts, or 'doze-specific files will go exactly nowhere.

Like attempting to run an OS/2 proggie on any different system, it simply is not possible.

30 posted on 12/25/2013 7:27:35 PM PST by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the mooslimbs trying to kill them-)
[ Post Reply | Private Reply | To 12 | View Replies]

To: Utilizer

I’m sure he knows that. The point is that if they targeted macs it would end up with the same results. The reason they don’t bother is because of the tiny userbase compared to Windows.


31 posted on 12/25/2013 7:29:40 PM PST by Monty22002
[ Post Reply | Private Reply | To 30 | View Replies]

To: Farmer Dean

Disembowelment on a picnic table with a dull steak knife.


32 posted on 12/25/2013 7:31:38 PM PST by SpaceBar
[ Post Reply | Private Reply | To 2 | View Replies]

To: SpaceBar

Something tells me you’ve been the victim of these scum.


33 posted on 12/25/2013 7:32:55 PM PST by Farmer Dean (stop worrying about what they want to do to you,start thinking about what you want to do to them)
[ Post Reply | Private Reply | To 32 | View Replies]

To: sickoflibs
How can we use it as a joke?

Send the jpeg image in a zipped file with the instructions to open it immediately. The default unzipping program will run, then unzip to the default directory, and then The User will need to open it -which the system will detect as a plain vanilla picture file and launch the system Graphics program to display it (Gimp, Inkscape, CorelDraw, whatever). Especially if the last displayed file was set to fullscreen mode, the warning graphic will have the desired result. *grin*

34 posted on 12/25/2013 7:32:56 PM PST by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the mooslimbs trying to kill them-)
[ Post Reply | Private Reply | To 18 | View Replies]

To: Monty22002
Thanks so much for the tip mate, but really the userbase for 'nix computers is hardly miniscule.

The Atari 2600, perhaps. *grin*

Or even smaller, Macs! (gasp!)

35 posted on 12/25/2013 7:36:52 PM PST by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the mooslimbs trying to kill them-)
[ Post Reply | Private Reply | To 31 | View Replies]

To: driftdiver

You are badly mistaken. We’ve been under a virtual siege with the attacks hammering the firewalls. Ten of our computers have been hijacked by the FBI Ransomware and one by Cryptolocker.

Cryptolocker partially encrypted an external hard drive containing the current data. Most of that data is lost and cannot be recovered. The backup has almost everything lost on the targeted drive, but a few things recently used have been lost for good. The method of access is not known with any certainty, but reports indicate the most likely route in our situation was Adobe Flash player through Youtube. Most of the hijackings appear to have occurred while playing music. I’m particularly suspicious of the Alice’s REstaurant link.

Microsoft Essentials, Microsoft Defender, Malwarebytes, and a laundry list of other products have ultimately all been defeated by these malware attacks. After using malwarebytes to remove the rootkit infections and so forth, the malware found a means to diable malwarebytes and lockdown the computer to the point where not even the BIOS could be accessed any longer. That computer is still waiting for me to repair it.

Another computer had been repaired multiple times and kept off of the Internet and no contact with media or networks of any sort with other computers. It was totally standalone when recovered. nonetheless, the malware reinstalled itself after the hard drive had a high level format and reinstallation of Windows XP. It took the replacement of the hard drive and reinstallation of Windows XP to get it operating again, only to be hijacked again within a few weeks once it went back onto the Internet. This computer is also now waiting another rebuild.

Suffice it to note, despite all of the claims you see from the anti-malware software people, their products are being defeated by this new wave of ransomware. This stuff is getting into the client computers through the PDF, Flash, and other files. We do not use e-mail onthese systems, so there is no way possible for email or email attachments to have been the source of this malware. some of the client computers were used only for one or two financial applications that have no possibility of accessing any URL that could be remotely risky. So, the attacks must be targeted at least in part at the firewalls and not music files, Websites, or other activities that could be considered a risk.

So, be cautious. There is a lot more to these ransomware attacks than what you are seeing in the reports from the anti-malware outfits.


36 posted on 12/25/2013 7:46:30 PM PST by WhiskeyX ( provides a system for registering complaints about unfair broadcasters and the ability to request a)
[ Post Reply | Private Reply | To 12 | View Replies]

To: mrsmith

Here’s another & a video at link:

http://pctuneup.org/cryptolocker-virus-removal/?gclid=CLjL3Oj_zLsCFWJo7AodtxgAgg


37 posted on 12/25/2013 8:02:32 PM PST by carriage_hill (Peace is that brief glorious moment in history, when everybody stands around reloading.)
[ Post Reply | Private Reply | To 4 | View Replies]

To: Nachum

If they find the ones responsible for this, they should be buried somewhere in the desert, quietly in the night.


38 posted on 12/25/2013 8:02:49 PM PST by GeronL (Extra Large Cheesy Over-Stuffed Hobbit)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ShadowAce

bump


39 posted on 12/25/2013 8:04:31 PM PST by GeronL (Extra Large Cheesy Over-Stuffed Hobbit)
[ Post Reply | Private Reply | To 8 | View Replies]

To: All

Another one to watch out for is MalWare that redirects your browser to a site that looks just like PayPal, eBay and other common web sites.

It will change your Windows “hosts” file (C:\WINDOWS\system32\drivers\etc\hosts) so when you log into what looks like PayPal, for example, it will steal your username/password and drain your account.

The bogus “hosts” file will contain hundreds of URL’s - banking web sites included.

Easy to fix, but can be hard to detect for many people.

And yeah, kids/teens are the worst. They download all kinds of crap then they wonder why their PC takes so long to boot up and runs so slow. Then you look at all the icons in their SysTray and all of the Toolbars on their browser(s)

I have a password on my PC and no one uses it but myself.

I also backup all of my pics and other important docs and burn them to DVD on a regular basis so in a worst case scenario, I wipe my HD and reinstall my O/S and apps.

I also run AVG Internet Security and Malwarebytes Anti-Malware and schedule them to run scans on a weekly basis.


40 posted on 12/25/2013 8:10:40 PM PST by Rodney Dangerfield ("Close the Voter ID Loophole! ID & Background checks for all voters!")
[ Post Reply | Private Reply | To 35 | View Replies]

To: Spirit of Liberty

Avast has a free removal tool. And free protection.


41 posted on 12/25/2013 8:11:19 PM PST by gitmo (If your theology doesn't become your biography, what good is it?)
[ Post Reply | Private Reply | To 13 | View Replies]

To: WhiskeyX

Have you tried the link in Post #37, for removal? Was it defeated, too?


42 posted on 12/25/2013 8:11:47 PM PST by carriage_hill (Peace is that brief glorious moment in history, when everybody stands around reloading.)
[ Post Reply | Private Reply | To 36 | View Replies]

To: WhiskeyX

Sounds serious!

Does that program linked to earlier defeat cryptolocker?


43 posted on 12/25/2013 8:13:52 PM PST by GeronL (Extra Large Cheesy Over-Stuffed Hobbit)
[ Post Reply | Private Reply | To 36 | View Replies]

To: Nachum

Oh just great. I just got a new computer (Dell) for Christmas!


44 posted on 12/25/2013 8:15:36 PM PST by sneakers ( Quinn: "Liberty is the solution to the human condition.")
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum

bfl


45 posted on 12/25/2013 8:34:16 PM PST by BerryDingle (I know how to deal with communists, I still wear their scars on my back from Hollywood-Ronald Reagan)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum

While we are on the subject, what is a good antivirus software to run on Mint with Cinnamon? I use Avast on my M$ machines, but Mint doesn’t like it. I want an antivirus so I don’t pass anything along.


46 posted on 12/25/2013 8:34:26 PM PST by Jeff Chandler (Obamacare: You can't make an omelette without breaking a few eggs.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: sickoflibs

“Advanced System Care” coupled with “Malware Bytes” and “Microsoft Security Essentials” works pretty well for me.


47 posted on 12/25/2013 8:36:02 PM PST by fella ("As it was before Noah so shall it be again,")
[ Post Reply | Private Reply | To 7 | View Replies]

To: Nachum

malware bump for later.....


48 posted on 12/25/2013 8:38:41 PM PST by indthkr
[ Post Reply | Private Reply | To 1 | View Replies]

To: sneakers

For a moderate degree of safety from infections wrap your new computer in aluminum foil (grounded) and don’t connect it to the power line, TV, wireless devices or internet. .

For a high degree of safety nuke it from orbit.
It’s the only way to be sure.


49 posted on 12/25/2013 8:42:21 PM PST by mrsmith (Dumb sluts: Lifeblood of the Media, Backbone of the Democrat Party!)
[ Post Reply | Private Reply | To 44 | View Replies]

To: WhiskeyX

Stop giving your user’s local admin access. We restrict it on the domain and malware like this can’t install.
Disguising malicious code by adding a *.PDF or *.JPG to the end has been around forever.


50 posted on 12/25/2013 8:45:37 PM PST by miliantnutcase
[ Post Reply | Private Reply | To 36 | View Replies]


Navigation: use the links below to view more comments.
first 1-5051-100101-134 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson