Security Now 430: Your Questions, Steve's Answers #178 ...

How to Protect Yourself from CryptoLocker

I posted this on our blog last week but since this community is very proactive about trying out new opportunities I thought people should be aware of CryptoLocker and the danger it could cause. I know it is not the normal type of post that goes here but you can never be too careful.

If you read only one article today read the one linked below…and then forward it to anybody you care about. This is one of the worst possible malwares you can get and if you get it at work it could affect everyone as it encrypts any shared drive’s files you have access to. Yes, network drives are all in play with this malware.
Here is the article from Ars Technica: http://arstechnica.com/security/2013/10/youre-infected-if-you-want-to-see-your-data-again-pay-us-300-in-bitcoins/
Here is the two paragraphs from the article I want to make sure you read carefully:
It started when an end user in the client’s accounting department received an e-mail purporting to come from Intuit. Yes, the attached archived zip file with an executable inside should have been a dead giveaway that this message was malicious and was in no way affiliated with Intuit. But accounting employees are used to receiving e-mails from financial companies. When the receiver clicked on it, he saw a white box flash briefly on his screen but didn’t notice anything else out of the ordinary. He then locked his computer and attended several meetings.
Within a few hours, the company’s IT department received word of a corrupt file stored on a network drive that was available to multiple employees, including the one who received the malicious e-mail. A quick investigation soon uncovered other corrupted files, most or all of which had been accessed by the accounting employee. By the time CryptoLocker had run its course, hundreds of gigabytes worth of company data was no longer available.
If you want to listen to security expert Steve Gibson explain what it does and why it is so nasty you can listen to Security Now 427 here: http://twit.tv/show/security-now/427
How can you protect yourself from this?

UPDATE: Per jordanhansen13 in the comments here is a great thread covering CryptoLocker in /sysadmin: http://www.reddit.com/sysadmin/comments/1p32lx/cryptolocker_recap_a_new_guide_to_the_bleepingest/
submitted by globecode to beermoney [link] [comments]

Security Now 384: Back in Time Security Now 643: The Story of Bitcoin Security Now 477: Payment Tokenization Security Now 302: Your Questions, Steve's Answers #118 DeepFakes - Security Now 731

Security Now 430: Your Questions, Steve's Answers #178 Movies Preview TOM MERRITT: This is Security Now!, with Steve Gibson, Episode 287, recorded February 9, 2011: BitCoin CryptoCurrency. It's time for Security Now!, the show you need to listen to if you want to be safe on the Internet. And joining us to help us figure out all of the confusing things that could happen to you to threaten your security is the man ... This week's Security Now! podcast is titled "Windows 7 - R.I.P.," not because there's much that we haven't already said about the fact, but that it happens TODAY; and that, given the still massive install base of Windows 7, it's significant that all of those machines will now be going without any clearly needed security updates. So the big news for this week WAS to be the event of the first ... Hosts: Steve Gibson with Leo Laporte Certificate authorities compromised, BT to block Newzbin, Mac OSX Bitcoin mining malware, "Bytes in Flight", and more. Download or subscribe to this show at twit.tv/sn.We invite you to read, add to, and amend our show notes.For 16Kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance ... Security Now 287: BitCoin CryptoCurrency Security Updates. 5:08-19:35 Microsoft's patch Tuesday 22 flaws patched, 5 rated critical, including the recent MHTML zero day flaw.

[index] [22300] [3354] [38975] [41200] [27201] [50717] [9352] [18475] [14804] [2848]

Security Now 384: Back in Time

In this special rebroadcast of Security Now from February 9, 2011, Steve Gibson explains, in detail, exactly how Bitcoin works. Download or subscribe to this... Hosts: Steve Gibson with Leo Laporte Take a trip back to 1990 with Steve as he details a familiar topic: Hard drive failure. Download or subscribe to this show at twit.tv/sn. We invite you to read ... Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in ... Hosts: Steve Gibson with Leo Laporte A new Windows 0-day exploit, rumor of a pending SSLv3 flaw and Steve analyzes the next evolution in online payment technology which replaces traditional credit ... Hosts:Steve Gibson with Leo Laporte DigiNotar mega-update, DNS hack of NetNames, TCP demystified, and more. Download or subscribe to this show at twit.tv/sn. We invite you to read, add to, and ...

#