Announcement

**abecx** · 04-08-2016, 12:55 PM

I fear/loathe the day this happens to anything I'm apart of.

**Tx Redneck** · 04-08-2016, 12:57 PM

No doubt. This type of ransomware is the main reason I use adblocking to prevent drive-by dl's and have CrashPlan constantly running.

**Mach1** · 04-08-2016, 01:04 PM

**abecx** · 04-08-2016, 01:15 PM

I wonder how many ransomware applications dont encrypt. I find it hard to believe that many dont because its so easy and fast to encrypt files.

**Silverback** · 04-08-2016, 01:15 PM

I just got back from a customer site Monday that was hit majorly. Some of you may have heard about it on the news. They are still in the process of restoring

Not this specific version, but one of the other ransomware

**abecx** · 04-08-2016, 01:34 PM

The scary part to me is that a privileged user on my network can cause the whole shebang to go down if they connect to the VPN and mount a shared drive.

From what i hear most people just fucking pay the ransom.

**Ratt** · 04-08-2016, 01:58 PM

Originally posted by abecx View Post

The scary part to me is that a privileged user on my network can cause the whole shebang to go down if they connect to the VPN and mount a shared drive.

From what i hear most people just fucking pay the ransom.

Two of the clients we had at the MSP job I worked got hit by CryptoWall. They didn't have backups, either, so they had to pay. Both companies successfully recovered their files, and they both learned very valuable (expensive) lessons from the ordeal.

I'm curious to know how this one actually works. If it's an executable that's designed to run from the user temp folder like the majority of the others, it would be pretty easy to stop, but there's no 100% sure way to make sure you stop everything.

KEEP GOOD BACKUPS.

Announcement

Well ain't this a bish?

Well ain't this a bish?

Comment

Comment

Comment

Comment

Comment

Comment

Comment