Topic 'Re: Ransomware a growing menace, says Symantec' in forum 'Security' - dslreports.com

Re: Ransomware a growing menace, says Symantec

Sun, 18 Nov 2012 15:34:44 EDT

Thaler posted : Yup. I'm just cursing that I'm in the exception boat of needing Java.

Re: Ransomware a growing menace, says Symantec

Sun, 18 Nov 2012 14:35:18 EDT

La Luna posted :

said by Thaler:

GFDit higher educational software. So many math modeling resources use Java apps. :mad:

That's why I said "most everything", not just everything.

Re: Ransomware a growing menace, says Symantec

Sun, 18 Nov 2012 11:47:18 EDT

Thaler posted : GFDit higher educational software. So many math modeling resources use Java apps. :mad:

Re: Ransomware a growing menace, says Symantec

Sat, 17 Nov 2012 22:16:14 EDT

La Luna posted :

said by ez2cy:

Ok...don't get any of this.

Can someone tell me (like talking to a 4 year old).

How do you get rid of this and how do you stop it.

I'm guessin I got it from updating Java. Do I need Java? No idea why it's on my computer.

thanks in advance

No, you didn't get it from UPdating Java, that's a good thing (usually). However, many people (myself included) keep Java disabled (or uninstalled completely). Most everything works fine without it.

You get ransomware in the usual ways: clicking on links in spam email, driveby downloads, downloading/installing sketchy programs from unknown sites. The usual.

Symantec is one place that has a tool on their site to fix it.

Here's a short little video that explains it simply:

»www.symantec.com/tv/products/det···85164001
--
The Alien in the White House

19,994 DEADLY TERROR ATTACKS SINCE 9/11

Re: Ransomware a growing menace, says Symantec

Sat, 17 Nov 2012 19:07:46 EDT

siljaline posted : Ransomware Part III: another drop of the Irish

Ransom malware gangs making huge profits, Symantec discovers

Inside the Ransomware Business: How to Make Nearly $400,000 in a Month

Ransomware crooks make millions from porn-shaming scams

Re: Ransomware a growing menace, says Symantec

Thu, 15 Nov 2012 08:21:06 EDT

ez2cy posted : Ok...don't get any of this.

Can someone tell me (like talking to a 4 year old).

How do you get rid of this and how do you stop it.

I'm guessin I got it from updating Java. Do I need Java? No idea why it's on my computer.

thanks in advance

Re: Ransomware a growing menace, says Symantec

Wed, 14 Nov 2012 20:54:04 EDT

Blackbird posted :

said by mmainprize:

How do they get the money and why can't the money trail be tracked to the crooks. ...

Electronic money sent to an overseas endpoint to a faked recipient or temporary account. Wire somebody a payment to Western Union or use countless other mediums of payment. The recipient identifies himself using fake ID (if any) or in the case of an account, taps out the pre-existing account (set up with false ID, if any) and simply evaporates into the countryside... or down the Intertubes. In many parts of the world, there's no way to trace who received what or where they went after such transactions.
--
“The American Republic will endure until the day Congress discovers that it can bribe the public with the public's money.” A. de Tocqueville

Re: Ransomware a growing menace, says Symantec

Wed, 14 Nov 2012 19:08:07 EDT

redwolfe_98 posted : here is a related article, "New Java Attack Introduced into Cool Exploit Kit":

»threatpost.com/en_us/blogs/new-j···t-111212

"'Cool Exploit Kit' is largely responsible for dropping the Reveton ransomware"

Re: Ransomware a growing menace, says Symantec

Wed, 14 Nov 2012 19:02:51 EDT

redwolfe_98 posted :

said by Postal:

I got the FBI/Moneypak virus yesterday.. how the hell did it happen?

your computer probably was infected with malware as a result of your having "java" installed and its not being up-to-date..

what more am I supposed to do to do keep it from happening again?

you could uninstall "java"..

i would also recommend that you use "firefox" with the "noscript" addon..

Re: Ransomware a growing menace, says Symantec

Wed, 14 Nov 2012 17:07:10 EDT

StuartMW posted :

said by SueS:

Where does one get the Microsoft Offline Defender?

»windows.microsoft.com/en-US/wind···-offline

Warning: If your computer cannot run Windows 8 (i.e. old CPU) getting WDO from the above link won't work for you. WDO used to be based on Win7 but with the last update they built it on Win8. If you get a Win8 blue screen trying to boot off a WDO USB/CD/DVD you're SOL unless you want to go make your own Win7 version.

»Microsoft Security Essentials (MSE) 4.1.0522.0 released

(Yes the thread is long but it'll tell you everything you need to know)

BTW I run WDO on multiple PC's on patch Tues. Did so yesterday.
--
Don't feed trolls--it only makes them grow!

Re: Ransomware a growing menace, says Symantec

Wed, 14 Nov 2012 16:46:02 EDT

SueS posted :

said by HarryH3:

A very NON-technical friend of mine was hit with that recently. I burned a copy of the Microsoft Offline Defender disk and mailed it to him. It didn't find anything on the quick scan, but a full scan found it and killed it. :-)

Where does one get the Microsoft Offline Defender? Is it a good idea for everyone to make a copy of this?

Re: Ransomware a growing menace, says Symantec

Wed, 14 Nov 2012 14:11:45 EDT

anon posted : Keep your security tool update would be a good move. Kaspersky IS is at version 2013. You are three years behind. If you have a valid license you should be able to upgrade, free of charge, to the latest version.

Re: Ransomware a growing menace, says Symantec

Wed, 14 Nov 2012 12:05:54 EDT

Postal posted : I got the FBI/Moneypak virus yesterday. Not sure how it happened.

I was on my system early in the morning before work checking the weather on weather.com and checking gmail. Didn't click on any odd links in any emails. Left the computer on, turned the monitor off and went to work.

When I got home around 5 pm I turned the monitor on and had the FBI/Moneypak lock-out screen. Booted into safe mode with networking, did some googling to find out what it was (I hadn't heard of this before), downloaded one of the removal tools and let it do it's thing.

Now, how the hell did it get on my system? Modem/router is a Motorola SBG6580 (TWC) with the firewall on. Windows firewall is on, and I also have Kaspersky Internet Security 2010 with both the firewall and anti-virus active and up to date.

So, what more am I supposed to do to do keep it from happening again? How did it get passed the security I'm currently using?
--
Next time you wave at me, use ALL your fingers.

Re: Ransomware a growing menace, says Symantec

Tue, 13 Nov 2012 23:12:20 EDT

mmainprize posted : How do they get the money and why can't the money trail be tracked to the crooks.
I mean when you have hundreds of people sending hundreds of dollars to some account there must be a trail when the crook coming in to cash out.

Re: Ransomware a growing menace, says Symantec

Tue, 13 Nov 2012 20:30:53 EDT

Blackbird posted :

said by Thaler:

Child porn is now just a fine of $200? Holy crap, times are tough for the justice department.

They make up for it on volume...
--
�The American Republic will endure until the day Congress discovers that it can bribe the public with the public's money.� A. de Tocqueville

Re: Ransomware a growing menace, says Symantec

Tue, 13 Nov 2012 20:11:06 EDT

Thaler posted : Child porn is now just a fine of $200? Holy crap, times are tough for the justice department.

Re: Ransomware a growing menace, says Symantec

Tue, 13 Nov 2012 10:19:37 EDT

Blackbird posted :

said by Gold :

I got this yesterday. Scan with Malwarebytes took it out but still was getting attempts at outgoing, blocked by Malwarebytes, using a file called FNLKPPKOGRIM.EXE. Had to go into safe mode to manually delete it.

Any idea how your infection may have occurred (eg: software security hole, drive-by, downloaded software, clicked on pop-up, eMail attachment or link, etc)?
--
�The American Republic will endure until the day Congress discovers that it can bribe the public with the public's money.� A. de Tocqueville

Re: Ransomware a growing menace, says Symantec

Tue, 13 Nov 2012 07:51:35 EDT

anon posted : I got this yesterday. Scan with Malwarebytes took it out but still was getting attempts at outgoing, blocked by Malwarebytes, using a file called FNLKPPKOGRIM.EXE. Had to go into safe mode to manually delete it.

Re: Ransomware a growing menace, says Symantec

Tue, 13 Nov 2012 06:42:58 EDT

antdude posted :

said by Dustyn:

said by jaykaykay:

If I saw something like that, I would know exactly what it was and not believe it came from the government. I am pretty sure that even though they're not particularly sensible, the government message would be one never to believe! ;)

You mean if Special Agent Mulder came to your door showing you his credentials you would choose not to believe!?? ;)

"Trust no one."
--
Ant @ AQFL.net and AntFarm.ma.cx. Please do not IM/e-mail me for technical support. Use this forum or better, »community.norton.com ! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer.

Re: Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 23:43:10 EDT

HarryH3 posted : A very NON-technical friend of mine was hit with that recently. I burned a copy of the Microsoft Offline Defender disk and mailed it to him. It didn't find anything on the quick scan, but a full scan found it and killed it. :-)

Re: Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 22:49:23 EDT

Oedipus posted : The FBI/moneypak thing that has been making the rounds lately is weak pudding. God help us if real ransomware like GPCode ever breaks into the masses.

Re: Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 19:18:31 EDT

StuartMW posted :

said by Blackbird:

...and they still don't bother to learn how to write or express English correctly?

No problem. Most won't know the difference anyway :hmm:
--
Don't feed trolls--it only makes them grow!

Re: Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 19:15:00 EDT

Juggernaut posted : Yea, and then they make me re-image my drive. Oh, the horrors. :D
--
I'm not anti-social, I just don't like stupid people.

Re: Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 19:09:54 EDT

Blackbird posted : They go to all that trouble, and they still don't bother to learn how to write or express English correctly? Sigh... :uhh: :huh: :p

Re: Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 18:35:15 EDT

StuartMW posted : This whole subject seems to be "hot" at the moment.

»Mushrooming growth of ransomware extorts $5 million a year

»New ransomware version locks your system .....
--
Don't feed trolls--it only makes them grow!

Re: Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 18:33:17 EDT

jaykaykay posted : If I saw something like that, I would know exactly what it was and not believe it came from the government. I am pretty sure that even though they're not particularly sensible, the government message would be one never to believe! ;)

Ransomware a growing menace, says Symantec

Mon, 12 Nov 2012 16:53:14 EDT

Dustyn posted :

This type of scamware has jumped over the past year, both in number and variety, according to the security vendor. Ransomware is a type of malware best described as an online extortion racket. Malware locks or disables your PC in some way and then demands payment in the form of a "fine" to render your PC usable again. Like most scams, the ransomware message claims to come from a legitimate organization, such as the government or a public corporation, to try to convince victims that they did something wrong to incur the fine.
»news.cnet.com/8301-1009_3-575483···ymantec/

--
Remember that cool hidden "Graffiti Wall" here on BBR? After the name change I became the "owner", so to speak as it became: Dustyn's Wall »[Serious] RIP

A typical ransomware message. (Credit: Symantec)