Security Alert: CryptoWall Ransomware Delivered Through Google Drive

Virus Icon2New Drive-by Campaign Delivers CryptoWall 3.0 Through Google Drive

In this latest cyber-attack, malicious scripts are directing Google Drive users to predefined URLs which in turn connects to infected websites using the RIG Exploit Kit.

RIG uses vulnerabilities in older versions of JavaJRE, Adobe Reader, Internet Explorer and Flash Player to start compromisng the victim’s computer, downloading CryptoWall 3.0.

Once downloaded onto your machine, CryptoWall encrypts data files on your local and network drives. The criminals then ask for a ransome in order to send you a key to unlock your files.

Antivirus detection rates are low making this a very nasty criminal campaign.

Protect yourself and your employees by:

  • Keeping all third-party products such as Adobe, Java, Flash, etc. up-to-date.
  • Making sure your antivirus and anti-malware programs are upddated and active.
  • Backing-up all data. Image backups (onsite and Cloud) will allow you to recover much quicker than data backups alone.
  • Not clicking any links or opening attachments received via email, especially if you do not know the sender.
  • Being mindful of the websites you visit. Never enter any financial or confidential information on a site that doesn’t display the the green padlock icon to the left of the URL.

For more information read Heimdal’s Security Alert.

Want to keep be up-to-date on the latest threats to your company’s security? Then Click here to follow XSolutions on LinkedIn.

 

XSolutions is a Managed Services Provider (MSP) and provides 24/7/365 remote monitoring, proactive workstation and server maintenance, Help Desk Services, Cloud & Hosted Services, Backup/Disaster Recovery, and Software Development. Call us at (845) 362-9675 and learn how we can help your company.