Ransomware – The no. 1 threat for 2013 [Emsisoft]

Status
Not open for further replies.
NathanF1

NathanF1

Level 2
Thread author
Verified
Jul 9, 2011
597
Massive increase in Ransomware threatens Internet users

Emsisoft said:
The last months have shown a massive increase in ransomware infections with new variants, droppers and infection methods each day. We have previously discussed ransomware in 2011 - The Renaissance of Ransomware, but because the risk of catching such an infection has increased so much we want to afford it extra attention to make computer users aware and point out preventive measures.

There are two main categories of ransomware, the so-called screenlockers and crypto ransomware. Screenlockers are wide-spread; they use exploit kits, infected sites and downloads and target home users as well as corporate computer users. Crypto ransomware often (but not exclusively) spreads through dedicated server hacks and home users will not be affected as much by this category of ransomware.
Click to expand...


Knowledge Base Article
 
Littlebits

Littlebits

Retired Staff
May 3, 2011
3,893
Nice article although the purpose is to increase sales of Emsisoft products.

Things that you need that are important, all cases of ransonware infections that I have seen involve fake alert websites that prompt users to download and run infected files. So the ransomware has to be manually downloaded and installed by the user, it doesn't use vulnerabilities or any advanced methods to infect your system. Watch what you download and install and you should be safe from ransomware. There is no need to add several security products for protection, since most will fail to stop the infections if you manually download and run the infected files. Just don't download files from unknown sources.

Thanks.:D
 
D

Deleted member 178

Littlebits said:
Nice article although the purpose is to increase sales of Emsisoft products.
Click to expand...

Most of the time, they introduce their products at the end of the article, but still informative.
 
3link9

3link9

Level 5
Verified
Oct 22, 2011
860
Littlebits said:
Nice article although the purpose is to increase sales of Emsisoft products.

Things that you need that are important, all cases of ransonware infections that I have seen involve fake alert websites that prompt users to download and run infected files. So the ransomware has to be manually downloaded and installed by the user, it doesn't use vulnerabilities or any advanced methods to infect your system. Watch what you download and install and you should be safe from ransomware. There is no need to add several security products for protection, since most will fail to stop the infections if you manually download and run the infected files. Just don't download files from unknown sources.

Thanks.:D
Click to expand...
Emsisoft does make a good point though. Ransomware infections have increased and a lot of users will not watch what they download.
For example, Casual PC users around the holidays will start buying things online and check their email to see a notification from some company such as ups or fedex claiming something about something the user ordered, So the regular user would open the attachment without knowing the danger.
I did notice but very rarely that ransoms can travel through exploits and drive by downloads waiting to be executed by a remote hacker.
 
McLovin

McLovin

Level 76
Verified
Honorary Member
Malware Hunter
Apr 17, 2011
9,224
The year has only just begun. There will be a lot more worse cases during the year.
 
F

Fabian Wosar

Littlebits said:
Things that you need that are important, all cases of ransonware infections that I have seen involve fake alert websites that prompt users to download and run infected files.
Click to expand...
Then you haven't looked very closely. The recent Java exploits for example have been used to spread Reveton by a lot of the exploit drop sites.
 
Littlebits

Littlebits

Retired Staff
May 3, 2011
3,893
Fabian Wosar said:
Littlebits said:
Things that you need that are important, all cases of ransonware infections that I have seen involve fake alert websites that prompt users to download and run infected files.
Click to expand...
Then you haven't looked very closely. The recent Java exploits for example have been used to spread Reveton by a lot of the exploit drop sites.
Click to expand...

In that case which I do believe is very rare, users should disabled Java from their web browsers because no solution not even Emsisoft will be able to detect all of the Java exploits.

I do use Java for some of my programs but I do have it disabled in my web browsers. Having Java enabled in your web browsers is like asking for an infection no matter what type of security products you use.

Thanks.:D
 
Status
Not open for further replies.

Similar threads

BigWrench
    • Like
On Sale! ESET Internet Security 2024 - 3 Devices / 1 Year - Download $24.99 (with promo code: SWCP46)
Replies
0
Views
349
Discounts and Deals
BigWrench
BigWrench
vtqhtr413
    • Like
    • Wow
    • +Reputation
New ransomware fakes Windows Update to trick home users
Replies
5
Views
1,636
News Archive
upnorth
upnorth
BigWrench
    • Like
    • +Reputation
On Sale! ESET Internet Security 2024 - 2 Devices / 1 Year - Download $16 off w/ promo code 2BFCY7374, limited offer $19.99
Replies
3
Views
849
Discounts and Deals
BigWrench
BigWrench

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top