Hollywood Presbyterian Medical Center is aware of this bitcoin conversion because that is what they said they paid to hackers to get the encryption key to unlock their data. The linked article provides more details, but to prevent this from happening to you personally or to your organization, do two things:
- Educate employees/family members about the phishing emails that download the ransomware/cryptolocker on the network.
- Maintain offline backups of all essential computer files.
No person or business should ever have to pay ransom to get their files back. All cases like this do is encourage the hackers and more attempts to victimize us.
The security from Imperva reports that over a three-month period in 2015, a single cybercrime gang managed to earn at least $330,000 in bitcoins thanks to an estimated 670 victims paying attackers’ ransom demand to decrypt their ransomware-infected systems.
On this point, I recently received a phone call from a small business owner who was a victim of ransomware. All his computer files were encrypted and the ransom demanded was $ 500. Unfortunately, he had not backed up his files. If he had a recent backup, he could simply restore from that and not have to pay any ransom. Prepared to pay the ransom, he asked me if the hackers will provide him with the encryption key if he paid up. There is no way to be sure, as I tell my audiences, but the hackers have a reputation to protect. What’s next, customer satisfaction surveys from hackers? “How was your hacking experience with us? Refer a victim and get $ 50 off your next ransom payment.”
Remember to keep your files backed up on an external device. To prevent the malware that encrypts your files in the first place, avoid clicking on links or attachments in emails from unknown senders.
The Wall Street Journal had a great article this past weekend on identity theft tax refund fraud. I have been talking about this crime in my presentations and ways to stay protected so you don’t become a victim. Here is some additional advice from the article:
“Probe your preparer. If you use a tax preparer, ask about the firm’s data protection. Experts say that respected old-line, stand-alone tax and accounting firms are currently rich targets for thieves looking to harvest large amounts of data to use in preparing credible returns that will slip by fraud filters.
Change your passwords. This is one of the most important tips for self-preparers. Make passwords strong and don’t use the same one for different portals.
Also practice good security hygiene: resist giving out your Social Security number and other personal information; shred paper records before disposing of them; and use antivirus protection in your computer.”
I don’ t mean co-conspirator in a legal sense or with criminal culpability. But it is true that our actions online can contribute to the success rate of the cyber criminals.
Over the years, law enforcement has fought crime epidemics involving hoodlums, mobsters and drug traffickers. In those cases, the battle was between law enforcement and the bad guys. Today the epidemic is cybercrime and all of us are part of the fight. With their actions in cyber space, uninformed and undisciplined computer users will make the epidemic worse. The educated and alert, however, will help minimize the problem and reduce the threat of cybercrime in general and its effect on all of us. Please see my presentation handouts for information on how to stay safe and help reduce the threat of cybercrime.