There is a new type of malware named ‘CryptoDonkey’, this ransom ware locks various files on the computer and then asks ransom to unlock those files again. This malware encrypts the files and then demands that a ransom of 500 dollar needs to be paid before the files can be unlocked. If the amount of money is not paid on time the locker will delete the key and the files will be locked forever.
Here are five “top tips” for keeping safe against malware in general, and cyberblackmailers in particular:
Keep regular backups of your important files. If you can, store your backups offline, for example in a safe-deposit box, where they can’t be affected in the event of an attack on your active files. Your backups will be rendered useless if they are scrambled by CryptoLocker along with the primary copies of the files.
Use an anti-virus, and keep it up to date. As far as we can see, many of the current victims of CryptoLocker were already infected with malware that they could have removed some time ago, thus preventing not only the CryptoLocker attack, but also any of the damage done by that earlier malware.
Keep your operating system and software up to date with patches.This lessens the chance of malware sneaking onto your computer unnoticed through security holes. The CryptoLocker authors didn’t need to use fancy intrusion techniques in their malware because they used other malware, that had already broken in, to open the door for them.
Review the access control settings on any network shares you have, whether at home or at work. Don’t grant yourself or anyone else write access to files that you only need to read. Don’t grant yourself any access at all to files that you don’t need to see – that stops malware seeing and stealing them, too.
Don’t give administrative privileges to your user accounts.Privileged accounts can “reach out” much further and more destructively both on your own hard disk and across the network. Malware that runs as administrator can do much more damage, and be much harder to get rid of, than malware running as a regular user.