5
Nov
2013
By Calvin at 08:10 GMT, 12 years ago
Many thanks to Graham Houghton, a friend of this website, for bringing my attention to the following useful information about CryptoLocker.
A senior West Mercia detective is urging people to step up their computer security to prevent cyber criminals accessing their systems to block files before issuing a ransom demand for their release.
Detective Chief Inspector Paul Williamson, head of Warwickshire and West Mercia Police cyber crime unit, says extortionists using “ransomware” called CryptoLocker are targeting personal computers using a Microsoft Windows operating system to make damaging changes which usually only they can reverse of payment of several hundred pounds.
He said there is an increasing number of victims across the country since the scam was first spotted several months ago.
DCI Williamson urged victims not to pay-up as it would only encourage further attacks and has issued a number of tips to reduce the risk of being caught out.
The malicious CryptoLocker software is not a virus and gets into computers usually via an email attachment. Most victims lack up to date security and anti-virus protection on their computers.
After blocking all data on a computer, a message flashes up on screen saying your personal files have been encrypted with a deadline to pay around £200 to have them released.
DCI Williamson said: “It’s ill-advised to pay this ransom because there is no guarantee they’ll send you the key and if they do, they know you are susceptible to blackmail and they may strike again.
“Making payment will only encourage them to carry on. If no-one pays they will stop the practice.”
He urged people to take the following sensible precautions to reduce the risk of being hit:-
- Back up your files. If you use an external hard drive, don't leave it connected to your PC unless you are backing up. Alternatively, pay for an online back-up service – but bear in mind you may still be vulnerable if your backed-up files are mapped as a network drive. Check with your provider if you are unsure
- Create files in the Cloud and upload photos to online accounts like Flickr or Picasa
- Switch to a spam and virus-filtered email service
- Don't go to online porn sites, which are often the source of malware downloads. Take care when clicking on adverts; never open Twitter links and attachments from people you don't know or trust
- Make sure your operating system is up-to-date with the latest security
- Install the latest versions of your internet browsers and update add-ons such as Java and Adobe Flash
- Get reputable anti-virus software and ensure you update it frequently
- On Windows 7, double-check that you have set up System Restore points or, if you are using Windows 8, configure it to keep the "file history"
- Act quickly. If you do accidentally download a suspect attachment, bear in mind it is likely to take some time for the encryption to take place. If you immediately download and run an anti-virus programme, it could destroy the CryptoLocker before all your files have been encrypted. However, you will permanently lose affected files
- Encrypt the files you particularly want to keep private, such as documents containing your passwords or personal information, to prevent criminals reading them
