Endpoint Protection

 View Only

  • 1.  Ransom Cryptowall Virus

    Posted Feb 02, 2015 04:07 AM

    Hi ,

    Is there any official announcement from Symantec regarding Ransom Cryptowall , also what should be done to be protected from the same , is there any siganture released ?

    Thanks.



  • 2.  RE: Ransom Cryptowall Virus

    Posted Feb 02, 2015 04:09 AM

    See below blog


    Support Perspective: CTB-Locker and other forms of Crypto malware


    https://www-secure.symantec.com/connect/blogs/supp...

    Some of mick2009 good articles

    Recovering Ransomlocked Files Using Built-In Windows Tools

    https://www-secure.symantec.com/connect/articles/r...
    -
    Ransomcrypt: A Thriving Menace (aka Cryptolocker: A Thriving Menace)


    https://www-secure.symantec.com/connect/blogs/rans...
    -
    Cryptolocker Q&A: Menace of the Year
    https://www-secure.symantec.com/connect/blogs/cryp...

     

    See below some thread

    https://www-secure.symantec.com/connect/forums/new-virusmalware-attack-dnezmja

    https://www-secure.symantec.com/connect/forums/files-extension-changed



  • 3.  RE: Ransom Cryptowall Virus

    Broadcom Employee
    Posted Feb 02, 2015 04:17 AM

    it's detected as Crypto Defnce, refer Mick's thread

    https://www-secure.symantec.com/connect/forums/cryptowall-20

     

    Here are some posts about Cryptodefense/Cryptowall:

    CryptoDefense, the CryptoLocker Imitator, Makes Over $34,000 in One Month
    https://www-secure.symantec.com/connect/blogs/cryptodefense-cryptolocker-imitator-makes-over-34000-one-month

    Rig Exploit Kit Used in Recent Website Compromise
    https://www-secure.symantec.com/connect/blogs/rig-exploit-kit-used-recent-website-compromise

    Australians increasingly hit by global tide of cryptomalware
    https://www-secure.symantec.com/connect/blogs/australians-increasingly-hit-global-tide-cryptomalware



  • 4.  RE: Ransom Cryptowall Virus

    Posted Feb 02, 2015 05:45 AM

    Hi S_S,

    Ransomware / Cryptolockers have been a real menace for the past couple years.  The articles listed above and in other similar forum threads have much good advice on staying safe and recovering from theses always-changing threats.

    It is important to keep defintiions on all endpoints up-to-date (being out of date by a day or two leaves the computer open to sabotage by the most recent variants), use IPS, use a mail security product well, ensure that there is a known good backup of all important material.  Most importantly, though, is educating end users not to open suspicious attachments.

    Hope this helps!  Please do see the other resources shared and add any new questions to this thread, or mark it solved if you have found your answers.

    Mick



  • 5.  RE: Ransom Cryptowall Virus

    Posted Feb 02, 2015 06:48 AM

    There is plenty of documentation, as you can see above. Are you looking for something specific?



  • 6.  RE: Ransom Cryptowall Virus

    Posted Feb 11, 2015 01:55 AM

    Hi again,

    Just wondering if there were any additional questions?  This thread is still marked "needs solution."

    With thanks and best regards,

    Mick