Security Now 430: Your Questions, Steve's Answers #178 ...

How to Protect Yourself from CryptoLocker

I posted this on our blog last week but since this community is very proactive about trying out new opportunities I thought people should be aware of CryptoLocker and the danger it could cause. I know it is not the normal type of post that goes here but you can never be too careful.

If you read only one article today read the one linked below…and then forward it to anybody you care about. This is one of the worst possible malwares you can get and if you get it at work it could affect everyone as it encrypts any shared drive’s files you have access to. Yes, network drives are all in play with this malware.
Here is the article from Ars Technica:
Here is the two paragraphs from the article I want to make sure you read carefully:
It started when an end user in the client’s accounting department received an e-mail purporting to come from Intuit. Yes, the attached archived zip file with an executable inside should have been a dead giveaway that this message was malicious and was in no way affiliated with Intuit. But accounting employees are used to receiving e-mails from financial companies. When the receiver clicked on it, he saw a white box flash briefly on his screen but didn’t notice anything else out of the ordinary. He then locked his computer and attended several meetings.
Within a few hours, the company’s IT department received word of a corrupt file stored on a network drive that was available to multiple employees, including the one who received the malicious e-mail. A quick investigation soon uncovered other corrupted files, most or all of which had been accessed by the accounting employee. By the time CryptoLocker had run its course, hundreds of gigabytes worth of company data was no longer available.
If you want to listen to security expert Steve Gibson explain what it does and why it is so nasty you can listen to Security Now 427 here:
How can you protect yourself from this?

UPDATE: Per jordanhansen13 in the comments here is a great thread covering CryptoLocker in /sysadmin:
submitted by globecode to beermoney [link] [comments]

Security Now 504: Great Firewalls & Cannons DeepFakes - Security Now 731 Security Now 477: Payment Tokenization Security Now 317: TCP Part 1 Security Now 384: Back in Time

Links and episodes. Dauer der Episode von/bis. search Security Now 287 BitCoin CryptoCurrency. Hosted by Steve Gibson, Tom Merritt. Firefox adds "Do Not Track", Verizon alters web content, McAfee on Mobile Malware, BitCoin, and more. Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC. Category: News. Firefox adds "Do Not Track", Verizon alters web content, McAfee on Mobile Malware, BitCoin, and more. Download or subscribe ... Search Metadata Search text contents Search TV news captions Search archived websites Advanced Search. Sign up for free; Log in; Security Now 287: BitCoin CryptoCurrency Movies Preview remove-circle Share or Embed This Item ... This week's Security Now! podcast is titled "Windows 7 - R.I.P.," not because there's much that we haven't already said about the fact, but that it happens TODAY; and that, given the still massive install base of Windows 7, it's significant that all of those machines will now be going without any clearly needed security updates. So the big news for this week WAS to be the event of the first ... Hosts: Steve Gibson with Leo Laporte Certificate authorities compromised, BT to block Newzbin, Mac OSX Bitcoin mining malware, "Bytes in Flight", and more. Download or subscribe to this show at invite you to read, add to, and amend our show notes.For 16Kbps versions, transcripts, and notes (including fixes), visit Steve's site:, also the home of the best disk maintenance ...

[index] [3111] [29643] [7821] [23309] [10824] [14558] [48802] [45092] [8323] [42500]

Security Now 504: Great Firewalls & Cannons

Hosts:Steve Gibson with Leo Laporte DigiNotar mega-update, DNS hack of NetNames, TCP demystified, and more. Download or subscribe to this show at We invite you to read, add to, and ... Hosts: Steve Gibson with Leo Laporte A new Windows 0-day exploit, rumor of a pending SSLv3 flaw and Steve analyzes the next evolution in online payment technology which replaces traditional credit ... Steve Gibson's guide to using multiple routers for a secure network. Java is finally leaving the browser, Google's February Nexus Android update, the ongoing... Hosts: Steve Gibson with Leo Laporte Take a trip back to 1990 with Steve as he details a familiar topic: Hard drive failure. Download or subscribe to this show at We invite you to read ... Every week we produce over 30 hours of content on a variety of programs including Tech News Weekly, MacBreak Weekly, This Week in Google, Windows Weekly, Security Now, All About Android, and more ...