IT Technology Services New Orleans

New Orleans Technology Services

Menu
All Posts By

Happy Blogger

Jan 09
0

Cryptolocker Ransomware: What You Need To Know

By | IT Blog, Microsoft, news, Security | No Comments

Antivirus companies have discovered new ransomware known as Cryptolocker.

This ransomware is particularly nasty because infected users are in danger of losing their files forever.

cryptolocker

Spread through email attachments, this ransomware has been seen targeting companies through phishing attacks.

Cryptolocker will encrypt users’ files using asymmetric encryption, which requires both a public and private key.

The public key is used to encrypt and verify data, while private key is used for decryption, each the inverse of the other.

Below is an image from Microsoft depicting the process of asymmetric encryption.

assemcrypto

The bad news is decryption is impossible unless a user has the private key stored on the cybercriminals’ server.

Currently, infected users are instructed to pay $300 USD to receive this private key.

Infected users also have a time limit to send the payment. If this time elapses, the private key is destroyed, and your files may be lost forever.

Files targeted are those commonly found on most PCs today; a list of file extensions for targeted files include:
3fr, accdb, ai, arw, bay, cdr, cer, cr2, crt, crw, dbf, dcr, der, dng, doc, docm, docx, dwg, dxf, dxg, eps, erf, indd, jpe, jpg, kdc, mdb, mdf, mef, mrw, nef, nrw, odb, odm, odp, ods, odt, orf, p12, p7b, p7c, pdd, pef, pem, pfx, ppt, pptm, pptx, psd, pst, ptx, r3d, raf, raw, rtf, rw2, rwl, srf, srw, wb2, wpd, wps, xlk, xls, xlsb, xlsm, xlsx

In some cases, it may be possible to recover previous versions of the encrypted files using System Restore or other recovery software used to obtain “shadow copies” of files. The folks at BleepingComputer have some additional insight on this found here.

Removal:

Although CryptoLocker itself is readily removed, files remain encrypted in a way which researchers have considered infeasible to break.   Payment often, but not always, has been followed by files being decrypted.

Prevention:

New Orleans Technology Services has already installed a plug-in on each user workstation that will help prevent Crypto Locker from accessing user files once downloaded but we cannot guarantee the virus will not be successful.

The biggest defense may also be the easiest to apply.  If you get an email from somebody you do not know, especially if it’s got attachments, don’t open anything with it, just delete the email.  If you don’t know who is sending that email or if the subject is foreign to you, simply click delete.
Additionally, Google Mail, Google Apps for Business and Microsoft Hosted Exchange Services are currently blocking emails that contains the virus.  Unfortunately free services like Yahoo, AOL, and other free email hosting services included with Wed Site hosting like JustHost, BlueHost and HostGator are not.    If your organization uses or allows access to email not blocking the virus, you should consider this virus to be extremely high risk.

Dec 26
0

Apple’s 12 Days Of Gifts Begins Today

By | Apple | No Comments

Apple continues its “12 Days of Gifts” tradition this year. Free downloads may vary by geographical location, according to Mashable. The site’s Stan Schroeder received the game Real Steel for the iPad free. Apple Insider and others reported receiving free digital downloads of four Justin Timberlake songs as today’s gifts (depending on who you are, this may be a gift, or a lump of coal). He performed the songs live at Apple’s 2013 iTunes Festival, which was held in London this year.

apple 12 days of gifts

Apple’s 12 Days of Gifts App

The free downloads can only be accessed through the 12 Days of Gifts app, which is available in iTunes in some of the company’s many markets. Many iTunes users have taken advantage of Apple’s free downloads over the years, although in the past, the 12 Days of Gifts app was only available in Canada and some major countries in Europe.

This year, however, U.S. customers have access to the app for the first time. A user review on the app states that the app requires iOS 7, however, one person comment on a MacRumors post about this story that Apple users still running iOS 6 can download the Justin Timberlake songs directly from iTunes free without accessing it through the app. It does look like two of his songs from the festival are available free directly through iTunes, although there are reported to be four available through the app and we weren’t able to verify if the two freebies on iTunes are the same as two of the four which are free through the app.

Apple’s tradition of giving away downloads

In the past, Apple has given away e-books, apps, music, movies and other digital content through the promotion. Earlier this month, Apple offered the single “No Better” by Lorde as part of a preview promotion for the 12 Days of Gifts app. The company called it a “gift to get you started.”

The program runs from today through Jan. 6, and a new free download is offered each day for just 24 hours. Some of the free content offered by Apple  isn’t available in all of the markets where the 12 Gifts app is available.