Beware: Malicious emails threaten to hold files hostage
Posted by Richard Watt on 28 October 2015 11:10 AM
UAB users have been hit in the past day with emails containing malicious attachments that could encrypt users' files, enabling attachers to hold the files for ransom.
The recent emails contain unzipped Word document attachments that pretend to be a job applicant's resume or CV. The image below is similar to what users have received:
When the user opens the attachment, a particularly nasty malware called CryptoLocker is released onto the user's computer.
CryptoLocker malware holds the user's machine hostage by encrypting all of the user's files, making them inaccessible without the required passkey.
The attacker offers the victim the passkey for a fee of a few hundred dollars, often paid by entering a prepaid credit card number the victim must purchase.
There is no way to simply remove the malware. The user must either pay the ransom (which does not always work) OR if they keep consistent backups, rebuild the machine and load the backup onto it.
Anyone who receives such an email is urged to report it to the DOM IT Help Desk.
Follow these tips to avoid phishing and other scam emails:
[via UAB IT]