Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

Free Tool May Unlock Encrypted Ransomware Files

1492
Moderator
Moderator

โ€ŽApr-17-2015 12:41 PM

Many are already familiar with CryptoLocker, the insidious malware which encrypts one's personal files, then demands a ransom in Bitcoins for the key password that unlocks them. Failure to do so in a timely manner results in the ransom escalating substantially, or the unlock key being destroyed. Of course, paying the ransom was no guarantee of getting the unlock key anyway. Who would you complain to if you didn't receive it?

CryptoLocker snagged not only individual PC users, but corporations and even local Sheriff/Police departments forced to pay up to unlock their evidence files. Fortunately, the FBI/Interpol took down the CryptoLocker servers back in June 2014. But, sure enough, variants popped up almost immediately. And still a threat. Not surprisingly due to the estimated tens of millions of dollars the hackers gain from their ransomware.

Notwithstanding, most up to date AV software detects this types of ransomware. Another argument for having a real-time security package installed since several are available for free. Along with routine backups of personal data should provide adequate protection.

However, users still fall prey to this type of encryption ransomware. Many being mislead into installing the malware and allowing it to run. Among the most visible being the CoinVault ransomware.

Luckily, Kaspersky just release a tool that may be able to decrypt files infected with CoinVault codenamed NoRansom. You can find it here at noransom.kaspersky.com.

Commonsense can go a long way in preventing these types of malware from invading one's systems. Keeping system, browser, and AV software updated, along with a backup plan can also ensure that you're not contributing to these fraudsters bank account.
0 Likes
18 REPLIES 18

Y-Guy
Moderator
Moderator

โ€ŽApr-17-2015 03:55 PM

Thanks for passing this along!

One of my staff got hit with this a year or so ago. Of course the one staff person that doesn't know much about computers and oped that .zip attachment and ran it (argh!) thankfully it didn't hit the network and she just lost the files she had worked on that were not on the network drives. She learned a few valuable lessons, and I learned more about this stuff then I ever wanted to know.

Two Wire Fox Terriers; Sarge & Sully

2007 Winnebago Sightseer 35J

2020 Jeep Gladiator Rubicon
0 Likes

rwbradley
Explorer
Explorer

โ€ŽApr-17-2015 01:34 PM

1492 wrote:
Many are already familiar with CryptoLocker, the insidious malware which encrypts one's personal files, then demands a ransom in Bitcoins for the key password that unlocks them. Failure to do so in a timely manner results in the ransom escalating substantially, or the unlock key being destroyed. Of course, paying the ransom was no guarantee of getting the unlock key anyway. Who would you complain to if you didn't receive it?

CryptoLocker snagged not only individual PC users, but corporations and even local Sheriff/Police departments forced to pay up to unlock their evidence files. Fortunately, the FBI/Interpol took down the CryptoLocker servers back in June 2014. But, sure enough, variants popped up almost immediately. And still a threat. Not surprisingly due to the estimated tens of millions of dollars the hackers gain from their ransomware.

Notwithstanding, most up to date AV software detects this types of ransomware. Another argument for having a real-time security package installed since several are available for free. Along with routine backups of personal data should provide adequate protection.

However, users still fall prey to this type of encryption ransomware. Many being mislead into installing the malware and allowing it to run. Among the most visible being the CoinVault ransomware.

Luckily, Kaspersky just release a tool that may be able to decrypt files infected with CoinVault codenamed NoRansom. You can find it here at noransom.kaspersky.com.

Commonsense can go a long way in preventing these types of malware from invading one's systems. Keeping system, browser, and AV software updated, along with a backup plan can also ensure that you're not contributing to these fraudsters bank account.


Excellent information, but one very important thing to remember with Backups is, for them to also not get hit by the Ransomware, it must be offline backup as most variants of the Ransomware will also hit attached network devices. If for example you have a WD My Cloud drive on your network and you setup all your computers to automatically backup across the network to it on a regular basis ie weekly, it is also vulnerable if one of your computers gets hit. A good backup plan involves two backup copies and one offline in a secure fireproof safe (or even better offsite or using a third party service like Carbonite).

With personal files, if you have a disaster like Ransomware there is a saying, "Two copies = one and one copy = none".
Rob
rvtechwithrvrob.com
0 Likes

pconroy328
Explorer
Explorer

โ€ŽApr-17-2015 01:12 PM

my brother got hit by ransomware once. not pretty
0 Likes

MrWizard
Moderator
Moderator

โ€ŽApr-17-2015 12:56 PM

Thank you, I'm going to check that out
I have few friends that I maintain..always seem to get some problem every couple of months, so far nothing this bad
I can explain it to you.
But I Can Not understand it for you !
....

Connected using T-Mobile Home internet and Visible Phone service
1997 F53 Bounder 36s
0 Likes
  • Facebook
  • Twitter
  • YouTube
  • Instagram
  • Pinterest