The "Freeola Customer Forum" forum, which includes Retro Game Reviews, has been archived and is now read-only. You cannot post here or create a new thread or review on this forum.
I've just had a call from a client saying they stupidly opened an email that appeared to have been sent from themselves...
(See other forum threads for mentions of this.)
It contained a ZIP file attachment which they also opened (!) and before you know it they found they had been infected with LOCKY ransomware! :¬(
Reading about LOCKY it looks pretty serious and people are often caught out via an email that looks as if it has been sent from their own email account.
I saw a number of these spoofed dodgy emails myself yesterday but it's not only Freeola accounts being targeted it could be any provider.
I'm off to investigate later.
[s]Hmmm...[/s]
After investigation the spoofed email (from his own domain) arrived yesterday morning with the subject 'Doc575' with an attached ZIP file.
A few minutes after opening the attachment good old Microsoft Defender was on the case. It looks like 544 files were zapped in that few minutes.
Luckily my client has a Syncback backup solution in place so it's looking as if they may have got away with things!
NOTE: If LOCKY was allowed to run then there's a good chance that it would have gone on to mess with external drives and networked kit. I can see that causing all sorts of damage.
I don't leave my external backup drive permanently switched on - this saves me from a storm taking everything out (another client got hit with that last year!) and would also stop LOCKY reaching it.
[s]Hmmm...[/s]
What intrigues me about this 'ransomware' is that payment for the decrypter is 0.5 Bitcoins! But how much is a Bitcoin? Well, on today's Market, 1 Bitcoin = £308.22!!!! An expensive mistake! However, if the infection is of the new variety, AutoLocky, then a free decyption tool is available as detailed in the 3rd link.
I've just had a call from a client saying they stupidly opened an email that appeared to have been sent from themselves...
(See other forum threads for mentions of this.)
It contained a ZIP file attachment which they also opened (!) and before you know it they found they had been infected with LOCKY ransomware! :¬(
Reading about LOCKY it looks pretty serious and people are often caught out via an email that looks as if it has been sent from their own email account.
I saw a number of these spoofed dodgy emails myself yesterday but it's not only Freeola accounts being targeted it could be any provider.
I'm off to investigate later.
[s]Hmmm...[/s]