Goldeneye-Ransomware: a new extortion trojan makes the round.
CERT Confederation warns against Goldeneye
The BSI (Federal Office for Information Security) warns of a new blackmail Trojan called Goldeneye. This comes via spam e-mail and camouflage itself as an application for vacancies. In contrast to previous representatives of such Ransomware pests Goldeneye specifically attacks individual persons. Personnel departments are particularly concerned with this.
There are hardly any ways to expose the illusion. The Trojan comes with correct company data and names of the potential victim and even refers to actual vacancies in the targeted company. There are also reports that there is no flaw. The fake applications are in faultless German. This in combination with real information entails a huge risk of contaminating your company or your own computer with ransomware.
The Goldeneye Trojan is embedded in an Excel file, which the victim should give for proper viewing rights for editing. Instead of taking a look at the supposed application data, macro codes start to encrypt the data on their own computer. These are then unusable. It was not until the payment of a ransom sum that they released them. You can protect yourself by disabling macro codes in Microsoft Office. How you can do this, we explain in the following guide, which already saved you from an infection with the Trojan locky.
Lesetipp: Avoiding Locky infection - so it's
You should be very helpful when you receive appropriate application e-mails from a sender named Rolf Drescher. The engineer's office, Dipl.-Ing. Rolf B. Drescher VDI & Partner is responsible for a tool that restores infected computers with the Petya Trojan. Since Goldeneye has similarities with Petya, a revenge action can be assumed, as heise.de writes.
No comments:
Post a Comment