100 likes | 886 Views
CryptoLocker Virus Awareness. 1. CryptoLocker Info. Ransomware Encrypt Files Using Public Key Encryption Decrypt Using Private Key Crawls Local Drives and Mapped Drives.
E N D
CryptoLocker Info • Ransomware • Encrypt Files Using Public Key Encryption • Decrypt Using Private Key • Crawls Local Drives and Mapped Drives *.odp, *.odm, *.odc, *.odb, *.doc, *.docx, *.docm, *.wps, *.xls, *.xlsx, *.xlsm, *.xlsb, *.xlk, *.pdf, *.ppt, *.pptx, *.pptm, *.mdb, *.accdb, *.pst, *.dwg, *.dxf, *.dxg, *.wpd, *.rtf, *.wb2, *.mdf, *.dbf, *.psd, *.pdd, *.eps, *.ai, *.indd, *.cdr, ????????.jpg, ????????.jpe, img_*.jpg, *.dng, *.3fr, *.arw, *.srf, *.sr2, *.bay, *.crw, *.cr2, *.dcr, *.kdc, *.erf, *.mef, *.mrw, *.nef, *.nrw, *.orf, *.raf, *.raw, *.rwl, *.rw2, *.r3d, *.ptx, *.pef, *.srw, *.x3f, *.der, *.cer, *.crt, *.pem, *.pfx, *.p12, *.p7b, *.p7c 2
CryptoLocker Prevention • User Education • File & Email AV Solution Current • Backup, Backup, Backup • User Education • CryptoLocker Prevention Kit, http://tinyurl.com/nf5pz3b • Group Policy, Disable .EXE in %AppData% Folders • Foolish IT Utility, http://www.foolishit.com/vb6-projects/cryptoprevent • User Education 3
CryptoLocker Recovery • Restore From Backup • Reformat / Reinstall • Pay Ransom? • Ethical Dilemma • Rewarding Criminals • No Guarantee 4