Cryptolocker: chargeback on credit card payment?

Forums › IT Pro and developers › Cryptolocker: chargeback on credit card payment?

networkn

Networkn
32358 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#138506 7-Jan-2014 14:49

Hi There!

Anyone who has been infected by this, paid the ransom and then used the credit card chargeback to cancel the transaction? Anyone personally paid and got their files unencrypted? We have a fringe client infected who hasn't had a backup for a few days over xmas wondering if he should pay or restore.

1 | 2

808 posts

Ultimate Geek

#962476 7-Jan-2014 14:51

unless things have changed, they dont let you pay by credit card.

Do surveys for Beer money (referral link) - Octopus Group

Link for buying beer (not affiliated, just like beer) - Good George

richms

28193 posts

Uber Geek

Trusted

Lifetime subscriber

#962526 7-Jan-2014 15:38

The one I know of happening required the purchase of bitcoins and sending them to something the pop up displayed.

The person was not that concerned since they had nothing on their computer they cared about losing so were going to just keep using it till I suggested they might want to not keep using a known infected computer for their banking and other stuff.

I think they just ended up buying a new computer and will probably get infected again because they are idiots that believe every email they recieve is genuine because it has logos on it.

Richard rich.ms

networkn

Networkn
32358 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#962533 7-Jan-2014 15:42

What I can't understand why is oh why, the FBI, CIA, SAS, CoastGuard, Marines, and SpecOps aren't spending all day every day busting down doors finding who is responsible ? The financial impact of this virus is probably the most significant in recent memory.

nathan

5695 posts

Uber Geek
Inactive user

#962537 7-Jan-2014 15:50

Restore from backup,
Restore from a shadow copy or
Perform a system restore.

freitasm

BDFL - Memuneh
79310 posts

Uber Geek

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#962570 7-Jan-2014 16:34

networkn: What I can't understand why is oh why, the FBI, CIA, SAS, CoastGuard, Marines, and SpecOps aren't spending all day every day busting down doors finding who is responsible ? The financial impact of this virus is probably the most significant in recent memory.

Because the people behind those things probably aren't inside these agencies' jurisdiction...

networkn

Networkn
32358 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#963087 8-Jan-2014 10:20

freitasm:
networkn: What I can't understand why is oh why, the FBI, CIA, SAS, CoastGuard, Marines, and SpecOps aren't spending all day every day busting down doors finding who is responsible ? The financial impact of this virus is probably the most significant in recent memory.

Because the people behind those things probably aren't inside these agencies' jurisdiction...

Well to be fair I think if it was being taken seriously enough they would "find a way"

1101

3122 posts

Uber Geek

#966100 13-Jan-2014 12:38

Well to be fair I think if it was being taken seriously enough they would "find a way"

Really ??
Just how are the FBI, CIA going to investigate in corrupt countries, were no one will talk to them , where local investigators may have been 'paid off'
They cant break organized crime in the US so they wont be able to break organized crime in Russia, India, Pakistan, Nigeria etc etc

Sharesies

Trade NZ and US shares and funds with Sharesies (affiliate link).

networkn

Networkn
32358 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#966107 13-Jan-2014 12:45

1101:

Well to be fair I think if it was being taken seriously enough they would "find a way"

Really ??
Just how are the FBI, CIA going to investigate in corrupt countries, were no one will talk to them , where local investigators may have been 'paid off'
They cant break organized crime in the US so they wont be able to break organized crime in Russia, India, Pakistan, Nigeria etc etc

Oh ok, so the US never sends covert operatives in to perform specific targeted "investigations" ?

freitasm

BDFL - Memuneh
79310 posts

Uber Geek

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#966139 13-Jan-2014 13:46

This would be illegal and break the law in many countries. including the US. Unfortunately anything coming out of an unlawful investigation would be instantly discarded by any court.

wellygary

8338 posts

Uber Geek

#966146 13-Jan-2014 13:53

freitasm: This would be illegal and break the law in many countries. including the US. Unfortunately anything coming out of an unlawful investigation would be instantly discarded by any court.

Although that line of defence didn't work very well for Manuel Noriaga

freitasm

BDFL - Memuneh
79310 posts

Uber Geek

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#966153 13-Jan-2014 13:58

Noriega.

There's a huge difference between country intervention (right or wrong) and crime investigation. One needs approval from local authorities, the other is an act of politics.

Both actually are politics.

michaelmurfy

meow
13265 posts

Uber Geek

Moderator

ID Verified

Trusted

Lifetime subscriber

#966394 13-Jan-2014 18:56

I've had one client who paid, had no choice as she had no backup at all. Paid $400 in bitcoins which went up to nearly $2k worth in the next few weeks which was a shame. Prevention is key, ensure backups are done etc.

Once you've got the restore done install this to help prevent it from happening again: http://goo.gl/41tm6T (Had to shorten this, the link was to "Foolish IT" but put together you can see how the bad word blocker got angry with it)

Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

freitasm

BDFL - Memuneh
79310 posts

Uber Geek

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#966397 13-Jan-2014 19:02

Despite of what people are running as AV in their Windows machines, everyone should install EMET as well.

networkn

Networkn
32358 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#966398 13-Jan-2014 19:09

Our customers are running various types of GPO to stop it, the only infections which have got through is where customers won't agree to install and then don't run Symantec AV or who in 1 case had Sym AV and ignored TWO warnings and allowed it anyways.

In our lab we tested 7 AV solutions and the ONLY AV that caught our 3 samples was Sym AV.

freitasm

BDFL - Memuneh
79310 posts

Uber Geek

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#966411 13-Jan-2014 19:43

Can't blame anyone else for their stupidity, but themselves.

EMET is in addition to your AV software and won't conflict.

1 | 2