Here we go again. Social engineering at it’s finest. This time it’s a Word document, and like the early versions of CryptoLocker, it needs more interaction by the user then just opening it. Early CryptoLocker needed a password entered to open the ZIP file. Locky needs Macro’s to be enabled in Word. And will prompt the user! Unless they are already enabled and set to trust all.
If I were to write another warning for end users. And I may have to. It might be a little more aggressive and a little less polite:
- You are going to receive a virus in your email
- The email containing the virus will be designed to trick you
- It has the potential to encrypt all of your companies data
- The spam filter will not catch it
- The antivirus will not catch it
- The firewall will not catch it
- Don’t assume that all your data is backed up
- Make sure it is, your desktop too
http://www.bizjournals.com/sanantonio/news/2016/03/24/ransomware-virus-that-hit-a-kentucky-hospital.htmlhttp://www.bizjournals.com/sanantonio/news/2016/03/24/ransomware-virus-that-hit-a-kentucky-hospital.html
Tech for Thought 