Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
Buying anything on Amazon? Please use the Geekzone Amazon aff link.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 

gzt

4840 posts

Uber Geek
+1 received by user: 296

Subscriber

  Reply # 966837 14-Jan-2014 14:28 Send private message

freitasm: Despite of what people are running as AV in their Windows machines, everyone should install EMET as well.

Seen any issues with normal operation after installing EMET?

BDFL
50766 posts

Uber Geek
+1 received by user: 5135

Administrator
Trusted
Geekzone
Subscriber

  Reply # 966853 14-Jan-2014 14:52 Send private message

Not in its default configuration.




893 posts

Ultimate Geek
+1 received by user: 22


  Reply # 966868 14-Jan-2014 15:14 Send private message

networkn: Hi There!

Anyone who has been infected by this, paid the ransom and then used the credit card chargeback to cancel the transaction? Anyone personally paid and got their files unencrypted? We have a fringe client infected who hasn't had a backup for a few days over xmas wondering if he should pay or restore. 



Having dealt with this virus several times already, i can also confirm that there is no "cancel-able" way to pay the ransom.

You either pay the ransom and hope to recover your files, or restore from backup (unless you dont have a backup then you are buggered)

Quite a neat virus to be honest, but lacking in so many areas.  It could have a  mechanism in it to scan for and encrypt UNC shares along with the network drives!

Reports i have read that over 250,000 machines have been hit with this, and the creators have made an estimated $30Million. not a bad effort!



7740 posts

Uber Geek
+1 received by user: 1083

Trusted
Subscriber

  Reply # 966928 14-Jan-2014 16:00 Send private message

jaymz:
networkn: Hi There!

Anyone who has been infected by this, paid the ransom and then used the credit card chargeback to cancel the transaction? Anyone personally paid and got their files unencrypted? We have a fringe client infected who hasn't had a backup for a few days over xmas wondering if he should pay or restore. 



Having dealt with this virus several times already, i can also confirm that there is no "cancel-able" way to pay the ransom.

You either pay the ransom and hope to recover your files, or restore from backup (unless you dont have a backup then you are buggered)

Quite a neat virus to be honest, but lacking in so many areas.  It could have a  mechanism in it to scan for and encrypt UNC shares along with the network drives!

Reports i have read that over 250,000 machines have been hit with this, and the creators have made an estimated $30Million. not a bad effort!


It would be such a nightmare if it accessed UNC paths. 

gzt

4840 posts

Uber Geek
+1 received by user: 296

Subscriber

  Reply # 966991 14-Jan-2014 17:32 Send private message

Sensible move from the scammers there. You would have to figure out which machine encrypted it and it could possibly be encrypted by multiple machines sequentially. That would be a mess. The last thing they want is unhappy customers. Reports so far indicate it is pretty damn reliable ; ).

1377 posts

Uber Geek
+1 received by user: 95

Trusted

  Reply # 967000 14-Jan-2014 17:49 Send private message

freitasm: Despite of what people are running as AV in their Windows machines, everyone should install EMET as well.


Trying to load the link but it's taking forever! In fact the support.microsoft.com site is taking an age!




3023 posts

Uber Geek
+1 received by user: 555

Trusted
Microsoft NZ

  Reply # 967221 15-Jan-2014 01:19 Send private message

Get a new ISP?

http://support.microsoft.com/kb/2458544

3023 posts

Uber Geek
+1 received by user: 555

Trusted
Microsoft NZ

  Reply # 967222 15-Jan-2014 01:23 Send private message

networkn:
jaymz:
networkn: Hi There!

Anyone who has been infected by this, paid the ransom and then used the credit card chargeback to cancel the transaction? Anyone personally paid and got their files unencrypted? We have a fringe client infected who hasn't had a backup for a few days over xmas wondering if he should pay or restore. 



Having dealt with this virus several times already, i can also confirm that there is no "cancel-able" way to pay the ransom.

You either pay the ransom and hope to recover your files, or restore from backup (unless you dont have a backup then you are buggered)

Quite a neat virus to be honest, but lacking in so many areas.  It could have a  mechanism in it to scan for and encrypt UNC shares along with the network drives!

Reports i have read that over 250,000 machines have been hit with this, and the creators have made an estimated $30Million. not a bad effort!


It would be such a nightmare if it accessed UNC paths. 


hopefully plebs silly enough to execute the malicious code don't have W access to those shares that don't have a backup

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





Trending now »

Hot discussions in our forums right now:

Bad lower back.
Created by TimA, last reply by KiwiNZ on 27-Jan-2015 16:19 (28 replies)
Pages... 2


Police Speed Campaign - Summer 2014/2015
Created by nzkiwiman, last reply by DravidDavid on 27-Jan-2015 15:26 (92 replies)
Pages... 5 6 7


Windows 10 News - 22 Jan
Created by Regs, last reply by tdgeek on 27-Jan-2015 06:43 (111 replies)
Pages... 6 7 8


How (not) to run a hotel
Created by MikeAqua, last reply by BTR on 26-Jan-2015 16:06 (68 replies)
Pages... 3 4 5


Spark customers get Lightbox free for 12 months
Created by freitasm, last reply by loceff13 on 27-Jan-2015 16:18 (135 replies)
Pages... 7 8 9


AdBlockers on Geekzone
Created by freitasm, last reply by DarthKermit on 27-Jan-2015 15:06 (33 replies)
Pages... 2 3


Police above the law ?
Created by heylinb4nz, last reply by MikeAqua on 26-Jan-2015 14:27 (116 replies)
Pages... 6 7 8


Is Windows 10 the next great Mac OS?
Created by gehenna, last reply by KiwiNZ on 26-Jan-2015 16:54 (43 replies)
Pages... 2 3



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.