Already the world's most consistently dangerous ransomware, CryptoWall 3.0 has undergone a facelift. CryptoWall 4.0 includes the same anti-virus detection tools that made version 3.0 such a menace but adds a modified protocol that enables it to sidestep possible detection by advanced enterprise firewall solutions. Detection rates for CryptoWall 4.0 are significantly lower than its predecessor. Security experts claim to have tracked the initiators of the virus to Russia.
CryptoWall 4.0 now encrypts both data and file name. This is done to encourage the user to settle with the criminals by paying the ransom in a timely fashion. The cybercrooks realize that seeing the files as they were created increases hope of recovery, with that visual taken away the victims are more likely to concede defeat sooner.
For what is already a multi-million dollar piece of software, the possible effects of CryptoWall 4.0 could be devastating. CryptoWall 3.0 has netted its creators in excess of $325 million in just 12 months. The malware is often distributed in the form of a phishing email and hidden within infected attachments or links that lead to malicious websites. The unfortunate victims of CryptoWall are left feeling bereft of options besides paying the ransom or losing their files. The ransom is typically a fee of between $200 and $10,000, to be paid in bitcoin. There is currently no known third-party crack or decryption software for the virus.
To avoid becoming a victim readers are advised to use strong, reputable anti-virus and firewall software. Avoid opening emails from unknown sources, make use of the spam filter. Make a back-up copy of all important files. Lastly, all software should be kept up to date, good software distributors try to do their part by patching their code when they become aware of a possible security weakness.
0 comments:
Post a Comment