Monthly Archives: August 2015

This is the worst virus EVER!

I consider the Cryptovirus to be the most malicious virus I have ever seen.

Over the past five months, five of Teky’s clients have encountered it.

Let me briefly tell you a bit about the virus, and tell you how to avoid it.

Cryptovirus comes in as an attachment to an email. The subject of the email is typically some variation on “Here is your invoice” or “Here is my resume”.

The email has an attachment: either a .js file or a .zip file containing a .js file. A .js file is a JavaScript. If you open this one, it runs and encrypts all* of your data using the Tor encryption tool. It then places notices all over your computer suggesting you send the attackers a ransom to get the key to decrypt your data.

The encryption is secure, silent, and thorough. It may not get your email or accounting data, but it will get most of it. This virus is on it’s third version, and it’s getting more effective at taking your data from you.

If you get this virus (or, more accurately, ransomeware), the only thing that you (or a Teky) can do is delete (or set aside) the encrypted data, restore any backups, and move on. Your files cannot be decrypted, undeleted, or repaired.

The way to avoid this virus (and other viruses) is to NOT open attachments, or click on links, that are suspicious or come in suspicious emails.

Most email tools have a setting “Do not open attachments that can potentially be a virus”; if you (or those using your computer) are NOT diligent in avoiding suspicious email attachments, you should consider turning this setting on.

The way to avoid losing your data, in general, is to BACK IT UP. There are countless tools and methods to do this very simply. (That sounds like the topic of another Teky article.)

Until next time. Safe computing!