Ransomware’s latest threats: What to do about CryptoWall, Chimera, etc

In a PCWorld Article they report what most technology professionals have probably already heard about…

Ransomware thieves have come up with creative new schemes in the past month and are targeting people heavily this holiday season.

Current ransomware typically encrypts victims’ data and then threatens to delete the key if payment is not made. The latest variant of the prolific CryptoWall malware, however, now scrambles the filenames on infected computers, making it even more difficult for victims to recover without buying the key from the attackers.

Potentially worse, another ransomware operation, known as Chimera, has threatened to publish the data of any non-cooperative victim—whether business or consumer—to the Internet. The operation, which currently aims at German targets, demands the payment of almost 2.5 bitcoins, or more than US $800, according to German cybersecurity site Botfrei, which reported the initial attack.

“To frighten the user even more, the message indicates the threat to publish personal data and pictures somewhere on the internet – if user doesn’t pay the bribe,” states Botfrei’s analysis of the attack.

An empty threat that may still signal a trend

Subsequent analysis has found that the program does not actually steal data. While this makes its threat largely toothless, it also raises questions about whether such tactics are a possible escalation in ransomware.

It would be a logical move in the cat-and-mouse game between data-encrypting criminals and security experts. In the past, online blackmail schemes have taken one of two paths. In the oldest type of schemes, criminals hack computers or use malware to steal—or create—sensitive or embarrassing information and then demand a payment for not publicizing the information. More recent schemes involved denial of service—the criminals use encryption to deny access to data, or use packet floods to overwhelm Web sites.

“Ransomware has always been a two-pronged attack,” says Adam Kujawa, head of malware intelligence for Malwarebytes Labs. “One being against the technology of the system and the other against the psychology of the user.”

The claimed abilities of Chimera combines these two attacks, denying access to data but promising to embarrass any victims that do not pay.

Chimera ransomware screenshot by BotfreiCourtesy of Botfrei
The Chimera ransomware claims it will leak your data, if you don’t pay.

Ransomware has become a significant threat to both businesses and consumers online over the past three years. The malicious software targets Windows and Macs, and even Linux servers and systems are not immune to attack. In August, Dell Secureworks researchers estimated that more than 600,000 computers had been infected by one type of ransomware, CryptoWall, in the first six months of 2015, and at least 0.27 percent of victims paid the ransom, garnering more than $1 million for the operators.

Security experts have also identified two fundamental hurdles to any ransomware schemes that threaten to publish data.

Currently, ransomware operators only encrypt data and then store the key to that data. Uploading copies of all of a victim’s data, or even a subset, is most resource-intensive and will make the ransomware more noticeable, says Chester Wisniewski, senior security advisor with security firm Sophos.

“There is nothing stopping them from saying they are going to go through your files, but are they really going to spend all that time for a few hundred dollars?”

Finally, publishing some or all of a person’s data to the Internet undermines the other part of the ransomware threat—losing access to the data. A victim could just not pay and then download their data from the information posted online, says Malwarebytes Kujawa.

Yet, future ransomware could turn the threat into a real tactic.

So what’s the latest advice? Security experts have a few recommendations.

1. Attend to your systems’ security

The first line of defense is to not get infected by ransomware. Users should avoid clicking on links or opening attachments in suspicious email messages and beware of dodgy Web sites, but also harden their systems. Update your software regularly, especially the ubiquitous code often targeted by attackers, such as Adobe’s Flash, Oracle’s Java and Microsoft’s Office formats.

In addition, users should maximize their chances of detecting malware, which is changed frequently to try to avoid security software. “There is a lot of money on the line, so these guys are working hard to keep their malware dynamic,” Sophos’s Wisniewski says.

Users should make sure to turn on the advanced settings in their security software, he says.

2. Back up your data

Historically, security firms have recommended that that businesses and consumers restore their files from backup, but not all businesses—not to mention consumers—back up their files regularly, leaving payment as the only option. In addition, it is often cheaper for a company to restore files using the encryption key rather than from backups.

“We always tell people to have backups and we tell people to never pay, but that is not always realistic,” says Chester Wisniewski, senior security advisor with security firm Sophos.

The FBI recently gave a nod to this reality. Joseph Bonavolonta, assistant special agent in charge of the Cyber and Counterintelligence Program in the FBI’s Boston office, told a recent conference, “To be honest, we often advise people just to pay the ransom.”

3. Encrypt data even on your own hard drive

Even security experts have had their files and email stolen by hackers and posted to the Internet. Increasingly, businesses are encrypting their most sensitive data and any sensitive email discussions. While encryption will not necessarily protect the content of messages, if the computer itself is compromised

This step is not foolproof, but it does add another hurdle for the data thieves.

Source: PCWorld

Benefits of Hiring IT Support Professionals for Your Business

tmd-networkingIn modern business almost everything is run on some sort of digital system. While the technology revolution has allowed many small businesses to compete, it has also opened a large demand for talented IT professionals that know how to manage your business network smartly. This is why hiring IT support professionals can be so crucial to your business. An IT professional will be your best resource to ensure that your systems are protected and working smoothly and efficiently. Plus, an IT professional will be able to troubleshoot, update and protect your servers and desktops from malware and other data intrusions.

Here are 5 benefits of hiring IT support professionals for your business.

  1. Keep your servers updated. There is a good chance that your business runs on a central server network. This network connects all of your company’s devices that your employees rely on to do their jobs. An IT support professional will ensure your servers are patched and up-to-date so you and your staff have the most secure and trouble free experience possible.
  2. Protect your business against malware and hacks. Potential consequences of not installing security updates are damaged software, loss of data, or identity theft. Every year, malware causes millions of dollars of damage worldwide. An IT support professional will come in and evaluate your system and develop a plan to remove any existing viruses and malware as well as make your systems less susceptible to attacks, so that your business doesn’t lose its data giving you and your customers piece of mind.
  3. Bring your business up to speed. An IT support professional will be able to bring your computer systems up to speed keeping you competitive. An IT professional will do this by introducing your business to new systems that will improve your old systems and processes. Perhaps you just want better collaboration and easier remote access from anywhere or you want to distribute your risk of downtime by sending certain services such as email to the cloud. TMD Technology Services can help get you to the modern work-space.
  4. Make your employees more productive. By making your systems less susceptible to attacks and bringing portions of your business to the cloud, you can make your staff more productive and limit downtime. With less downtime and crashes your employees will be able to work more efficiently and productively giving you a better return. Moreover, if your systems are updated regularly, you won’t need to worry about your workforce having trouble with obsolete hardware that slow them down.
  5. Proactively monitor and address small computer issues before they become big issues. It critical to monitor and maintain your equipment to prevent potential issues from becoming problems and costing you and your business downtime. A dedicated Managed IT Service will monitor and resolve small issues before they turn into problems that will slow down your workers. We all know the old atage time is money and that has never been more true that it is now.

Leave your IT troubles to TMD Technology Services so you can get back to doing what you do best.

Call us today (561) 404-9251.

3 Tips to Help Acclimate to Windows 10

windows-10-logoHere are 3 Quick Tips to help navigate Windows 10, without losing productivity:

1. The Start Menu

For you Windows 7 users, rest easy, because this is here to stay. For the Windows 8 users, the start menu is back with its full functionality – and then some. The aesthetics of the new start menu combine the basics of the start menu from Windows 7 with the sleek tiles that were a part of Windows 8. The customization of this helps you to access what you need much faster and boosts productivity. Open the Start Menu, click on Settings, Personalization, and then Start. Make the Start Menu work for you.

2. Microsoft Edge

Although this is the new web browser, do not worry – Internet Explorer 11 will be available by default in your upgrade. It is worth noting that many business applications remain untested with Microsoft Edge. If you find that Microsoft Edge is popping up as your default browser, this article will help you with that. Remember that super awesome Start Menu we spoke about above? Click in the search bar right next to it, and type “Default Programs.” Open that up, find Internet Explorer on the left, and click on it. There will now be an option to click that states “Set this program as default.”

3. Search Enhancements

Find anything on your PC. No, really. On the bottom left, to the right of the Start Menu, type a term in that search box. If it doesn’t automatically populate, click on the “My Stuff” icon on the bottom of that pop-up window. Your machine will be scanned for files, applications, pictures – just about anything – containing any or all of that search term within that file name. Don’t catch yourself drilling down through menus trying to find something. Don’t waste your time digging and trying to find that one file you thought you’d never need again. Use this search function to help save time.

www.TMDTechnology.com

How to remove an Android default app setting

So you’re using your Android phone (Not while driving down the road of course) and you tap on a link in an email or download an attachment and the phone pops up a dialog box asking you which app you’d like to use to complete the action. If you select the wrong app and hit the Always button in that dialog box, you will probably be stuck opening all of your PDFs or word docs in the wrong viewer indefinitely. It’s pretty easy to change the default app for launching different types of URLs and files.

When you first launch a file or link, that’s when you will either be prompted to choose an app or taken directly to the app it’s already associated with. Different types of URLs and file attachments can be assigned to different apps, so tapping on a PDF file can launch the Amazon app instead of Adobe or any other slew of viewers. If you’ve accidentally selected the wrong default app for something, you can remove that setting so Android prompts you to make a choice again the next time you launch that file/link.

How to remove an Android default app setting

1. Navigate to Settings on your Droid. You can launch Settings by tapping its shortcut in the apps menu or pulling down the notification drawer and tapping on the Settings icon (Usually a gear).

How to change the default app in Android

2. Enter the Apps menu. On some phones it will be called Application Manager or something along those lines.
How to change the default app in Android
3. Select the App you want to work with (You may need to swipe over to the All apps list).
How to change the default app in Android
4. Select the app you want to remove as default. In this scenario we don’t want Amazon opening our PDf files
How to change the default app in Android
5. Tap Clear Defaults. (Note if it’s grey then it is not set as a default app)
How to change the default app in Android
After clearing defaults the next time you launch the link/file type that apps was associated with, you will be prompted to choose a default app again.

Another Option to see and clear default apps on android is to use a third party tool.

How to see a list of current default apps

Android doesn’t provide a complete list of file and link types but a third-party app called Default App Manager provides a list of current defaults and helps you set defaults for many of the apps.

The app has two tabs: Category and All Defaults.

The Category Wise tab shows general categories such as Browser, Calendar, Camera and email along with the name of whatever app is currently set as default for them. If a file type has no associated app, Default App Manager will list it as having no default.

 

To set or change a default app in Default App Manager:

1. Tap a category (example: Email).

how to change Default android app

2. Tap Clear Default to remove the current app, if there is one. You will then be transported to Android’s built-in app menu, where you have to tap Clear Defaults for that app and then hit the back button to return to Default App Manager.

3. Tap Set Default. A dialog box will appear asking you to complete the action.

4. Select the app you want and tap Always.

The categories don’t include granular links such as URLs, which could potentially launch their own apps (ex: Amazon).

The All Defaults tab in Default App Manager shows all default apps, no matter which category the app is associated with giving you more granular control. You can use this option to change an app’s defaults by tapping the Clear button.  This will take you to that app’s info screen where you can hit the Clear Defaults button.

Default android app

www.TMDTechnology.com

Here are five reasons you might want to hold off a Windows 10 upgrade

Windows-10-LogoWindows 10 is just about here and many users are ready to ditch windows 7 or 8 and upgrade.  Here are five reasons you might want to hold off a Windows 10 upgrade.

  1. Your system hardware doesn’t support it

This is pretty obvious, but you need to really consider your SPECs. In order to run Windows 10, you need a PC or tablet with a 1GHz processor or faster, 1GB of RAM for 32-bit machines or 2GB for 64-bit machines, 16GB hard disk space for 32-bit machines or 20GB hard disk space for 64-bit machines, a DirectX 9 or later graphics card with a WDDM 1.0 driver and an 800 x 600 display or better. If your system doesn’t meet the SPEC then you’re going to have to upgrade your hardware before you upgrade your operating system. If this is the case it is probably more economical to just buy a new computer with Windows 10 already installed.

  1. You’re using Windows 7

Windows 10 corrects many of the issues in Windows 8, an operating system that was built more for touch devices than Desktop PCs. Two of Windows 10’s big improvements over Windows 8 are the addition of a Windows 7-style Start menu and the ability to work entirely on the desktop and ignore the touch-focused (Metro) Start screen.  If you currently use Windows 7 then you have a Start menu and work only on the desktop. If you’re happy with the way Windows 7 works, we would probably tell you to stay with it.

  1. Security updates for Windows 7 and Windows 8 are still available

Microsoft has a habit of pushing people to its latest operating system by ending support for its old operating systems, halting security updates and leaving users potentially open to security threats. If you have Windows 7 or Windows 8, you’ve got years before that happens. Microsoft will keep issuing security patches for Windows 7 until January 2020 and for Windows 8 until January 2023. So there is no need to rush if security updates are your concern.

  1. You have old printers or other peripherals

Many new operating systems are not designed to work with older peripherals, such as printers and scanners. Microsoft doesn’t always make sure that drivers for older devices work with their newest operating system. It simply takes too many development resources to try to ensure all devices work. As a result, some of these peripherals won’t work with Windows 10.

  1. Live on the cutting edge not the bleeding edge.

Beta testing a new operating system never uncovers all the bugs and gotchas that people are going to encounter. A new operating system hasn’t been tested on every possible piece of hardware, with every piece of software, and with every hardware/software combination. People who upgrade immediately are the guinea pigs and often the ones that get burned.  We suggest you wait another six months before you upgrade.

Don’t worry about missed opportunity….Qualified Windows 7 and 8 users get a free upgrade to Windows 10 and you have a full year from release (July 29, 2015.) so you can upgrade at your convenience.

Call today to discuss how windows 10 may fit your organization.

www.TMDTechnology.com