Over the past few years an insidious malware has infected computers
around the world in a sophisticated manner that has managed to stay one
step ahead of most antivirus platforms. Cryptowall has been used mostly
against businesses along with end-user machines to block the information
that is stored until a ransom is paid.
This relatively simple
method of extortion is led by one of the most complex computer virus or
malware programs that have been developed in recent years. Cryptowall is
part of a family colloquially called ransomware in which the result
profits come from the extortion paid to the hackers by those whose
computers have been affected.
Origin & History
Cryptowall
4.0 is the latest variant of the feared Cryptowall malware which has
spread around the world attacking various computer systems where it
basically prevents access to the information until a ransom is paid. The
3.0 version of the malware has caused at least $325 million of damage
in the US alone.
The new 4.0 will actually alter the file names
for the now encrypted data so that it becomes virtually impossible to
tell what is affecting the program. Add to this that all system restore
points are deleted and this new threat is now even more dangerous.
It
is believed that Russian hackers are behind the Cryptowall because the
malware does not affect computers that use a Russian language. In
addition, the spam servers that generate the Cryptowall have been
located within the Russian border.
So far, the countries that have been affected by the Cryptowall malware include the following countries;
China
France
Germany
India
Italy
Kuwait
Philippines
South Africa
Spain
United States
Infection Techniques
In essence, the
program blocks access to the information stored on computers and servers
by encrypting it in a manner that makes it very difficult, if not
impossible to remove without the proper encryption key which only the
hackers know. Until the ransom is paid to the hackers, the block will
stay in place which may cripple the ability of businesses to do their
jobs.
In most cases, the hackers select a particular business or
corporation that may offer the promise of a great reward and then infect
the computer systems. The Cryptowall is quite efficient at sealing up
the information that is stored. Because it does not try to destroy, but
instead encrypt the information it can slip past most antivirus or
antimalware systems.
Our Tips about Removal Methods
There
are very few techniques that work against the Cryptowall 4.0 simply
because of its sophistication to slip by most antivirus and antimalware
programs and ability to encrypt information once inside.
Aucun commentaire:
Enregistrer un commentaire