Last year we warned of a nasty virus that encrypted all your files and then charged you to decrypt the files. We haven’t seen this for a while but unfortunately it’s back in a slightly different form and is referred to by the anti-virus community as Torrentlocker – although it still calls itself Cryptolocker.
It may just be possible for us to recover your files and clean off the virus, depending on which version of the virus you have. Please turn the computer off and bring the machine into us if you see any message like the one above.
But the best thing is not to get infected in the first place! Make sure your anti-virus software is up to date and for added security consider Malwarebytes Pro.
This customer’s laptop we had in yesterday got infected from an email link which I captured below:
The link is purporting to be from Royal Mail and alerts you to a parcel delivery you missed. All looks very genuine.
If you click on the link, you get the message below:
Do not open the email or click on the “view information” link – delete the email immediately.
For your benefit and our curiosity we did follow this link in a safe, sandboxed environment. You can see what transpires in the video I’ve quickly put together below (easier to see full screen):
No comments:
Post a Comment