CryptoWall is back on the list with a fresh attack. The original CryptoWall arrived in 2013 and made 27 Million dollars in ransom by encrypting files of end-users by covering its malicious code in an innocent attachment.
So the latest CryptoWall attack is hitting end-users with phishing emails containing malicious attachments that infect networks. This is the latest and most sophisticated file-encrypting ransomware of CryptoWall and it is using a fake email in their own domain with the subject line “incoming fax report”.
Once an unsuspecting user opens the attachment, it encrypts the files of all mapped drives and demands a monetary ransom to be paid in Bitcoin. In late February 2015, it has been discovered that the current attack uses a help file attachments with .CHM extension. Cyber criminals and hackers have resorted to a highly effective trick that automatically executes malware and encrypt its contents.
How do you protect yourself from CryptoWall “CHM” attacks?
It is recommended to add “.chm” files to your spam filters if it is not in there already. In addition, you should train your end-users so they do not fall for social engineering attacks like this.
365 iT SOLUTIONS is a leading managed services provider (MSP) in Toronto delivering a wide variety of industry leading IT consulting services including Managed IT Services, IT Support Services, IT Outsourcing Services, Tech Support Services and Cloud Services.