IT Support Services | Data Backup | Security | Ransomware Removal | Reviews | Careers | Videos (973) 882-4644 Contact Us Remote Support

Alert: Cryptowall 2.0 Ransomware is Causing Major Problems

Search a domain

www.
Alert: Cryptowall 2.0 Ransomware is Causing Major Problems

The latest cyber threats will put your business plan and your company at risk. It has become imperative to protect yourself from them. This new threat designated Cryptowall 2.0, has the potential to do plenty of serious damage to your business’s network. Do not give it the opportunity.

New threats are evolving all of the time. The latest is spear-phishing. It targets email and these attacks are some of the most dangerous out there. Cryptowall, which also goes by the name of Cryptolocker, targets those who do not screen the emails they receive. The virus is found within zipped folders and PDF files sent via email disguised as invoices, purchase orders, bills, complaints, or other business-related messages. Cryptowall 2.0 is an enhanced version of the original Cryptowallransomware, which had the power to encrypt files on your network and local data.

In the past, it was fairly simple for network administrators to recover their files. Now, the malware developers have created a new form that makes it difficult for users to recover their files without paying the fee. Some of the changes made to this enhanced version of Cryptowall include:

  • Unique wallet IDs are used to send ransom payments. The original Cryptowallransomware didn’t use unique payment addresses for each victim, which allowed other victims to potentially take the payments made by others and apply them to their own PC. While this act itself seems like a slap in the face to other victims, it did allow users to recover their files without paying the fee.
  • Cryptowall can now securely delete your original data files. Previously, Cryptowall wouldn’t delete the original files, making it easy to use data recovery tools to recover them. This option is no longer possible, meaning that your choices are limited to data backup solutions or paying the ransom.
  • Cryptowall 2.0 uses its own TOR gateways, allowing malware developers to collect the ransom without being detected. Previously, these payment servers could be blacklisted and unreachable; but now that Cryptowall hosts its own TOR gateways, they cannot be blacklisted, and are a much greater threat.

This threat is extremely dangerous and your company should be prepared to deal with it. In order to prevent this ransomware from infecting your computer, you must be constantly on your guard. Try some of these tips to avoid getting locked down:

  • Do not open files sent by unfamiliar email addresses. This is the biggest thing you can do to keep yourself safe. This malware attempts to circumvent your antivirus and firewall by disguising itself as something else. The best way to keep your network and systems safe is to only open files you can trust.
  • Do not click on links in suspicious emails. By doing this you’re inviting the contents of the malicious website to infect your system. It’s best to treat every unfamiliar link with suspicion, especially until this new threat has been dealt with.

When disaster strikes, you can count on Quikteks to be there for you. We will provide you with all of the information you need to protect your business from the latest threats. For security consulting, or if you think you’ve been compromised, contact Quikteks at (973) 882-4644.