Massive ransomware attack

A massive ransomware attack spread across the globe today, locking up thousands of hospital, telecommunications, etc. in nearly 70 countries. The attack used data from the NSA to exploit vulnerabilities in Microsoft Windows and deliver the WanaCrypt0r ransomware. The demand for recover your data is for $300 per PC.

Backup, backup, backup… as this is always the best way to keep the peace of mind!!!

While the ransomware was first detected wreaking havoc in emergency rooms and doctors’ offices here in the UK, the infection quickly spread worldwide, including to the US,Germany, Spain…

We’re alerting you to reassure you that if you’re currently using the premium version of an antivirus with real-time protection turned on, you are protected from this threat.  Internet shield usually blocks the ransomware before it can encrypt your files.

The free version of an antivirus, however, does not protect you against it.

If you’re not currently using the paid / full version of an antivirus, we recommend that you update your Microsoft Windows software immediately. Microsoft released a patch for this vulnerability in March, but many users haven’t updated, leaving their computers open to this attack.

Don’t pay hackers, pay for antivirus software, backups, antispam and all the security but avoid to pay ransoms.  Chose your IT support company carefully, and make sure they do all required updates and give you best advice.

Here at Backup Data, we pledge to keep you protected. Your peace of mind is our number one priority. Contact us now 01223 240088.

Advertisements

Spammers using Facebook Messenger to Spread Ransomware

If you came across any Facebook Message with an image file send by any of your Facebook friends, just avoid clicking it.

An ongoing Facebook spam campaign is spreading malware downloader among Facebook users by taking advantage of innocent-looking image file to infect computers.

If clicked, the file would eventually infect your PC with the nasty Ransomware, a family of malware that has quickly become one of the favorite tools among criminals due to its infecting capabilities.

Like a typical way to deliver malware infection, the site would push a popup, asking you to download and install a certain codec extension in Google Chrome in order to view the video. The malicious extension used two names, Ubo and One.

Ransomware is malware that locks your computer or encrypts your files. You can’t get the data back unless you pay a ransom, and even if you do, there’s no guarantee that you’ll get your data back.

After this sort of infection the only way to roll back in time is to restore your backups.

Article of Swati Khandelwal at http://thehackernews.com/2016/11/locky-ransomware-facebook.html

More about in Locky: the encryptor taking the world by storm – https://securelist.com/blog/research/74398/locky-the-encryptor-taking-the-world-by-storm/

 

FSB: How to prepare for new EU General Data Protection Regulation

The EU General Data Protection Regulation (GDPR) comes into force in July 2018. The new rules are designed to protect consumer rights and clarify laws for businesses right across the European Union (EU) but, vitally, also those that trade with it. Your business needs to protect itself by fully adhering to these changes in the law.

The GDPR protects all personal data (such as name, identification number etc) and, interestingly, there is no distinction between private, public or work roles. Despite the Brexit, all the indications are that the UK will toe the line on the rules, to ensure trading with the EU. Organisations outside the EU are also still subject to the jurisdiction of GDPR just by collecting data on EU citizens.

Read full article here: http://www.fsb.org.uk/first-voice/how-to-prepare-for-new-eu-general-data-protection-regulation

K7 Total Security Earns The VB100 Award On Windows 7 SP1 From The Virus Bulletin

K7 Computing, one of the world’s leading data security and threat management companies, announced on 19th February 2015 that that its flagship product K7 Total Security has received the VB100 award on Microsoft Windows 7 SP1 systems from The Virus Bulletin.

K7 Total Security is an award-winning next-generation security suite. The product steps ahead of traditional security software by combining malware protection, active web filtering, runtime behavior monitoring, intrusion protection, smart firewall and parental controls into an easily managed system. With its proactive and reactive defenses, K7 Total Security significantly outperforms traditional anti-malware products and other desktop security solutions.

The Virus Bulletin, a leader in testing and certifying anti-malware applications and organizations, is highly regarded in the anti-malware industry. It only awards the right to display the VB100 logo to anti-malware products that can detect all ”In-the-wild” malware during both on-demand and on-access scanning, and generate no false positives when scanning a set of known clean files using just the application’s default settings.

The Virus Bulletin testing team noted that, “Under the covers, a good level of configuration options is provided. Stability was once again flawless, with no problems noted. Scanning speeds were pretty good, overheads not bad at first and barely perceptible in the warm runs.”

This award for anti-malware excellence on Microsoft Windows 7 SP1 systems joins the VB100 awards K7 products had already earned since 2007 for Microsoft Windows 7, XP operating systems, and for Windows 2008 Server.

Jayaraman Kesavardhanan, CEO of K7 Computing, commented, “We believe that protecting our customers from cyber threats is our sole mission. We are driven by the belief that everyone in the world should be able to use the Internet safely, and without fear that criminals will steal their money or identity. That we did so well on The Virus Bulletin’s very strict certification tests shows again that K7’s engineering teams and specialists have built remarkable cyber protection products that anyone can rely on.”

 

Passwords – Hashes to Ashes (by K7)

This is the fourth part of the blog series on cyber security, continuing from its third part on Scareware, RogueAV and Ransomware, focussing on the dangers of choosing weak passwords and the consequences of recycling the same password across different online accounts, and a few tips on how to determine a suitably strong password.

In today’s digital age, people’s lives seem to revolve around passwords.  Passwords to online portals play an important role in securing access to a user’s online information, whether financial, professional or personal. Hence, users are perennially advised to always secure their accounts with strong passwords.

Many online portals alert users about inadequate password strength when setting up the login credentials for a user account.  Some online portals may even enforce strong password before the account is set up. Users must consider password depth while deciding on an account’s password to avoid their passwords being hacked easily.

From a security perspective, using the same password for a user’s multiple accounts is dangerous, both for personal accounts as well as in a professional environment.  In this case a hacker need hack only one account to have the credentials to have access to the victim’s other accounts and the sensitive information held therein.

password1.jpg

Read rest of this important and interesting article at: http://blog.k7computing.com/2016/02/passwords-hashes-to-ashes-2/

Everyone has experienced this at least once in their life…

Your password is 30 days old. Please enter new password:
– rose

Password too short.
– red rose

Password has to have at least one numeric character.
– 1 red rose

Password cannot contain spaces.
– 1redrose

Password has to contain at least 10 different characters.
– 1shittyredrose

Password has to contain at least one capital letter.
– 1SHITTYredrose

Password cannot contain successive capital letters.
– 1Shittyredrose

Password has to have more than 20 characters
-IwillShove1ShittyRedRoseUpYourAssIfYouDontLetMeSignIn

Password has already been used.

K7 Computing’s Security Introduced Generic Anti-Ransomware Prototype at VB Conference 2015

We have many questions about Cryptolocker, Cryptowall, CTB Locker …

Security experts from K7 Computing, showcased a generic anti-ransomware framework at last year’s Virus Bulletin International Conference. It garnered quite an excited bunch of fellow security enthusiasts at Prague, Czech Republic, where the conference was held, to listen to the duo talk about this prototype.

This presentation addressed majorly on file encrypting ransomware variants. A demo followed to display the capability of this generic anti-ransomware prototype in defending ransomware through samples obtained from valid sources.

K7 Computing is extremely proud of the team behind the idea to develop a simple solution to thwart complex ransomware menace. This generic framework is on the process of being incorporated into our products, and we are super excited.

This was at VB Conference 2015