Comments on: Miscreants encrypt files, hold them for ransom

In a new type of attack, user files are encrypted remotely and attackers demand money for key to decode them.

Does this affect Macs?

... I didn't think so. Thanks.

[Andrew J Glina]

Hey Man

Buy a Dell Dude. Whooaoaoaoaoao geeee ahhhhhhh Dude!

[wazzledoozle]

Another reason NOT to use IE

This is the true drive by attack.

The obvious solution

It is odd that the article doesn't even mention the most obvious
solution to this problem: BACKUP ALL IMPORTANT FILES.
Preferrably to a removable media like CD-R or DVD-R. Then when
the file is hosed (by mistake or maliciously) you can just grab the
backup and laugh at the intruders.

Oh, and death penalty for Trojan/Virus writers may help curb some
of the little creeps as well.

[pcLoadLetter]

That is not a solution

It is a workaround.

Sure, you can get back your data easily if you do this( and everyone should, no matter what software they use), but it does not solve the problem.

A solution is to just don't use IE.

[Transaction7]

Miscreants_Encrypt_Files - Earlier Experience

I encountered such an encryption attack at my law office several years ago, in which different files on the same hard drives and floppy disks were encrypted with diferent programs. That time, we discovered that, on the same hard and floppy diesk, certain files had been converted from WordPerfect 5.1 (DOS) to WordStar 4, Navy DIF, and other programs for which we had no software. This did involve an old-fashioned burglary, though the local police insisted it had not and that this had resulted from a power surge!

We later learned who had done this, and recovered some paper files he had also stolen, after the statute of limitations had run. He had been recommended highly to us by lawyers, a judge, and a university department head, etc. His father found and returned some stolen hard copies of documents, as well as finding the newsletter addressed and mailed to the culprit by a national organization of child molesters. Two credible people have identified him as the perpetrator of sex crimes against them, but, in the local legal environment, wouldn't report it.. He has two college degrees and may now be practicing law somewhere but I have not found him on line yet. I will provide his name to anyone with a legitimate investigative need.

PETER S. CHAMBVERLAIN
1309 Hunt Street
Commerce, Texas 75428-2916
peterschamberlain@earthlink.net
(903)886-2323
CELL: (903)366-6926

HA HA

I laugh when something happens to someone's 'critical files', the first question I ask is: 'Did you have it backed up?'

99% of the time in a non-corprate enviornment the answer is: 'Back up?' 'How was I supposed to do that?'

90% of the people I ask in a corporate enviornment say 'No', even though they have mapped network drives to personal space on a server that is backed up nightly. On a side note those same users have absolutely nothing on thier network drives.... everything is saved under my documents.....LOL

I do not feel sorry for anyone that is affected by these sorts of attacks, because if you'd had anti-virus with updated definitions and used the microsoft firewall, you'd be protected.

And to all those of you who would say 'Microsoft sucks! I never get attacked':

Well Microsoft is the big guy on top of the hill and everyone wants to take him down so they can be 'king of the hill', what they fail to realise is that as soon as someone else takes over that spot, they will become the primary target for attack. Lots of people proudly walked around saying I don't have problems now because I use FireFox....I think a virus about a week later shut those people up. Every piece of software is going to have a vulnerability reguardless if it's open source or proprietary.

I'm more in love with Microsoft than my own wife! Microsoft has provided me with the tools and knowledge I need to be successfull in this crazy world we live in. My wife just nags about her allowance and other mindless drama that wives talk about while I'm out bringing home the bacon so to speak.

[aabcdefghij987654321]

Another "half-of-the-story" story

Which flaw in IE? Is there a patch for the flaw that the victim has failed to install?

These are questions that should be answered in the story but lazy reporters obviously don't care.

[TMB333]

There is a patch...

According to the article, it does mention that there is a patch for the IE flaw avaialble. It doesn't specifically say which one, but it was a critical one that should be installed.