In the world of the internet, there's a concerning issue we need to talk about. It's called "ransomware," and it's been causing more trouble lately. In fact, in the last three months of 2023, there were 11% more ransomware attacks compared to the previous three months. When we look back a year, it's even worse – a whopping 95% more attacks!
Photo by kaspersky.com
What Is Ransomware?
Ransomware is like a digital kidnapper. It sneaks into your computer, locks up your files, and demands a ransom (money) for their release. Just like a thief who takes your belongings and asks for money to give them back.
Why It's a Big Deal
Ransomware attacks are a big deal because they can affect your personal files, pictures, and even important work documents. When these digital criminals strike, they can mess up your life and make you pay to get your stuff back.
When it comes to ransomware, there are two main types to be aware of. Each one works a little differently, and understanding them is key to protecting yourself.
The Cryptors The first type is called "cryptors." Think of them as digital locks. What cryptors do is they take your files and lock them up, like putting them in a secret digital vault. To unlock your files, you need a special key. And guess what? That's what the ransom money is for. It's like paying a digital locksmith to open the vault and give you back your stuff.
The Blockers The other type is called "blockers." Blockers are a bit less sneaky. Instead of locking up your files, they simply block your computer or device. It's like a roadblock on the digital highway, making your device useless. But here's the good part: if you get hit by blockers, you actually have a better chance of fixing things. It's like removing that roadblock and getting back on track, rather than dealing with locked-up files.
Which Is Better or Worse? In a way, blockers are a bit better than cryptors. While they can be frustrating, there's a better chance of unblocking your device and getting it back to normal. With cryptors, it's like solving a digital puzzle to get your files back, and there's no guarantee that you'll get them
What's the Price Tag?
The Cost of Ransom One of the most common questions about ransomware is, "How much do they usually ask for?" The truth is, there's no "usual" amount. Ransomware attackers are all over the map when it comes to demands. It's like asking how much different cars cost — you'll get a wide range of answers.
From Small to Big Some ransomware attackers are content with surprisingly low sums, like as little as $30. On the other end of the spectrum, there are those who demand tens of thousands of dollars. It's a bit like haggling for the price of a product at a flea market; it can vary a lot.
Enterprise-Sized Ransoms When it comes to big organizations, like companies and government agencies, the ransom demands tend to be on the higher side. They're the ones that usually get hit through a sneaky trick called "spear phishing." It's like asking for a higher price when you know the buyer has more to spend.
No Guarantees Here's the important part: even if you pay the ransom, it doesn't guarantee that you'll get your files back in good shape. It's a bit like buying something online and hoping it looks just like the picture when it arrives. Sometimes it works out, but other times, it doesn't.
Can I avoid infection if I stay away from rogue websites or suspicious attachments?
Unfortunately, even cautious users can get infected with ransomware. For example, it’s possible to infect your PC while reading news on a big, reputable news website.
Of course, the website itself won’t distribute malware to visitors — unless it’s hacked, which is another story. Instead, advertising networks compromised by cybercriminals serve as distributors, and simply having an unpatched vulnerability lets malware load. Here again, having up-to-date software and a fully patched operating system are key.
What kind of files are the most dangerous?
The most suspicious files are executables (like EXE or SCR), with Visual Basic scripts or JavaScript (.VBS and .JS extensions) not far behind. They are quite commonly packaged into ZIP or RAR archives to hide their malicious nature.
Another dangerous file category is MS Office files (DOC, DOCX, XLS, XLSX, PPT, and so forth). They may contain vulnerable macros; if you are prompted to enable macros in a Word document, think twice before you do it.
Be wary of shortcut files (.LNK extension) as well. Windows can depict them with any icon, which, paired with an innocent-looking file name, can lure you into trouble.
An important note: Windows opens files with known extensions without prompting the user, and by default it hides those extensions in Windows Explorer. So if you see a file named something like Important_info.txt, it could actually be Important_info.txt.exe, a malware installer. Set Windows to show extensions for greater security.
I have a Mac, so I don’t need to worry about ransomware, right?
Macs can be and have been infected with ransomware. For example, KeRanger ransomware, which infiltrated the popular Transmission torrent client, hit Mac users.
Our experts believe that the number of ransomware programs targeting Apple systems will gradually increase. And with Apple devices being relatively expensive, extortionists may find Mac owners a great target for higher ransom demands.
Some types of ransomware even target Linux. No systems are safe from this threat.
I use my phone to go online. Do I have to worry?
You should. For example, cryptors and blockers for Android devices exist, with the latter being more prevalent. Having antivirus on your smartphone is not paranoid.
So, even iPhones are at risk?
To date, there are no dedicated ransomware programs for iPhone and iPad. That statement refers to iPhones that are not jailbroken, by the way. Malware can infiltrate devices that aren’t bound by the security restrictions of iOS and Apple’s locked-down App Store.
iPhone ransomware might be just around the corner, however, and not requiring a jailbroken system. We might see the emergence of IoT ransomware as well. Cybercriminals might demand high ransoms after taking over a smart TV or fridge.
How will I know if my computer gets infected with ransomware?
Ransomware isn’t subtle. It will announce itself, like this:
Or this:
Or may be this...
Blockers look more like this:
What Can You Do?
Staying safe is crucial. Here are some simple tips:
Be careful with email attachments and links. If you don't know the sender, don't click!
Keep your computer and software up to date. Think of it like locking your doors to keep the bad guys out.
Backup your important files regularly. It's like making a copy of your favorite book, just in case.
Conclusion
Ransomware attacks are increasing, and they're a real pain. But by being cautious and following some basic rules, you can protect yourself and your digital life. Just remember, online safety is as important as locking your front door. Stay safe out there! Contact us for more!