Locky Ransomware

[Burnt]

My school was hit today with a virus (that from what I hear is somewhat new) called ransomware. The name speaks for itself and you'll realize that after the end of this thread. The virus most commonly is spread through email as an attachment (supposedly shows up as an invoice word document) which when opened prompts the user to enable macros. When the macros are enabled the file downloads from the server and begins encrypting files on your computer including your wallet.bit file if you have one. The decryption is a sketchy process; each system attacked receives a unique id which appears at the beginning of the encrypted file's names , with the .locky extension, followed by what I believe is each file id. The encryption can only be decrypted through their own personal decryption service which happens to cost 0.5 bitcoins (roughly 240 USD) hence the name ransomware. My school was hit with this virus today and it spread within minutes to every computer not only in my school but in the district. Just wanted to inform everyone, there was a hospital that suffered the attack but they were able to get by it with backups. Supposedly the FBI is looking into these incidents, stay safe.

 

https://nakedsecurity.sophos.com/2016/02/17/locky-ransomware-what-you-need-to-know/

[MaTt]

That's Bad

 

Moral of the story, don't open suspicous emails. And it/they really attacked a hospital.... that is fucked up.

[Short]

That's Bad

 

Moral of the story, don't open suspicous emails. And it/they really attacked a hospital.... that is fucked up.

 

Moral of the story don't download files from random emails, then enable something that pretty much allows said file to run potentially malicious code on your computer. If you can't avoid that then backup your data.