Don't  Be  a  Victim  of  Ransomware

Don’t be a victim of Ransomware

Ransomware viruses like CryptoLocker, CryptoWall, TeslaCrypt and WannaCry have hit millions of victims across the globe. Reported infections and ransoms are up by 250% more than they were just 2 years ago! It is up to YOU to protect your computer and files from these malicious threats. Here are some FAQ’s about ransomware and tips on how to best protect your computer and most precious data.

Click on the question or the "+" symbol to show the answer. Click on the question again or the "–" symbol to hide the answer. If you have any other questions or require service, please Contact Us.

Q.   What is ransomware?

A. Ransomware is a type of malicious virus that gets installed on your computer, encrypts all your files and then demands payment in order to decrypt and unlock your files. The reason why ransomware is so dangerous is once cybercriminals infect all your documents and files with the virus, no security software or system restore can return them to you. Unless you pay the ransom or have a back up – they’re gone! Even if you do pay the ransom, there’s no guarantee you will get those files back.

Q.   What is encryption?

A. Encryption is a type of security measure that scrambles computer files so they cannot be opened or read unless the person using the computer shows they have the proper security credentials to unscramble or "decrypt" the files. With ransomware, ONLY the hackers hold the key to decrypt your files and want you to pay them royally to get your files back.

Q.   How does my computer get infected with ransomware?

A. Your computer can get infected with ransomware in a couple of different ways. The most common way is by opening an infected email attachment disguised as a resume, bank statement or invoice. The emails with look completely legitimate and you won't know that the attachment is infected until it is too late. One way to recognize a possible infected email is to notice the recipient of the email. If the email TO: field is blank or says "UNDISCLOSED-RECIPIENTS," it may be best to DELETE the email immediately. Another way to get infected is by visiting websites that may have been infected with the ransomware virus. Again, these can be completely legitimate websites that don’t know their websites have been hijacked and infecting computers with ransomware.

Q.   How do I know if my computer is infected with ransomware?

A. The fact is you won’t know your computer has been infected with the virus until it’s too late. After the virus is done encrypting all your data, a message will pop up on your computer screen (a ransom note) with all the instructions on how to pay the ransom, how much the ransom costs and how much time you have to pay the ransom. If the ransom is not paid in the time allowed by the hijacker, all your files will be lost. So time is of the essence.

Q.   How much money does the ransom cost?

A. You are given a time limit to pay the ransom, 72 hours in some cases but this varies greatly as does the cost of the ransom. During the first time limit the ransom demand is often relatively low, sometimes in the range of $500 to $800. If the ransom is not paid in that time frame it increases dramatically, possibly $2,000 to over $10,000 if the hackers hit a major corporation with important or secure data. If the ransom is not paid before the second time limit expires, the hackers DELETE your decryption key and your data is lost FOREVER. There are no known programs available that will decrypt your data without the decryption key held by the attackers. Usually, it is required to pay the ransom in BITCOINS.

Q.   What are Bitcoins?

A. Bitcoin is a new form of online payment know as Cryptocurrency that keeps the identity of the payment recipient completely and totally ANONYMOUS. This makes tracking the attackers virtually impossible for law enforcement. You must purchase the amount Bitcoins demanded by the hijackers and make your payment through the Bitcoin online service. This is why Bitcoin is the preferred payment method for ransomware criminals.

Q.   Should I pay the ransom?

A. Our suggestion is, NO! If there is anyway you can avoid paying the ransom, we HIGHLY recommend that you DO NOT comply with the hackers demands. Complying with ransomware cybercriminals by paying the ransom just encourages them to infect more computers and gives the hijackers the financial resources to continue their illegal activities. Also, it opens the door for future attacks. In February 2016, Hollywood Presbyterian Medical Center in Los Angeles, CA., made headlines after it paid 40 Bitcoins worth approximately $17,000 to ransomware attackers to restore and decrypt files the malware took captive. In this case, the hospital had no back ups of their data system and after several days of attempting to restore their system to normal they had no choice but to pay the ransom.

Q.   What are my options if I choose not to pay the ransom?

A. Honestly, your options are very limited. The only way to get your files back, other than paying the ransom, would be to restore them from a back up copy. Most people do not understand the importance of having back ups of their data until their computer has been compromised (hacked), infected with a virus or their hard drive crashes. If you do have a back up, you should not restore any files until the ransomware virus has been completely removed from your system. This may only involve scanning the computer with antivirus software to remove the ransomware virus OR a more involved procedure of reformatting your hard drive and reinstalling the Operating System.

We highly recommend setting up scheduled online backups of your important files and documents using the IDrive Online Backup software subscription plan. Use Promo Code: GIMMIBYTE at checkout and get IDrive Online Backup for $17.38 THE ENTIRE FIRST YEAR! (Personal Plan) To set up IDrive Online Backup, just create an account on the IDrive website, download and install the IDrive Online Backup software. Then open the IDrive program and simply login to your IDrive account. It's that easy! Click here for step-by-step instructions.

Q.   What happens after I pay the ransom?

A. Maybe nothing. Remember, you are dealing with criminals. There is absolutely NO GUARANTEE they will keep their word by following through with the ransom demands and decrypt your data. In some cases, the criminals might decrypt your files in 2–3 days. Be aware that the decryption process IS NOT instantaneous and takes several days to complete depending on the amount of data that was infected by the virus. Now you are left with the feeling of being victimized by this crime and have significantly less money in your bank account. PAY AT YOUR OWN RISK!

Q.   Are PCs more vulnerable to ransomware than Macs?

A. No. Recently, there have been confirmed reports of extremely nasty ransomware attacks occurring on Mac computers. Neither Microsoft Windows or Mac OSX are immune to ransomware attacks. (Sorry, Mac users.)

Q.   What should I do if my computer gets infected with ransomware?

A. First, disconnect your computer from the internet IMMEDIATELY! If you happen to have an automated backup running on your computer, you don’t want to overwrite your good backed up files with virus encrypted files. Restoring your files from back up is your ONLY chance of getting your data back intact without paying the ransom.

Next, call a professional to assist you in removing the virus. Contact us at 772.252.1850 or service@gimmibyte.com. Remember, there is NOTHING any professional can do to recover your files unless you pay the ransom or have a back up. Also, it is very important to know that once the ransomware virus is removed from your system, paying the ransom to recover your files is no longer an option.

Your options come down to:
  1. Pay the ransom to recover your files (not recommended).
  2. Don’t pay the ransom and restore your files from back up (recommended solution).
  3. Don’t pay the ransom and lose ALL your data (worst case scenario).

Nobody can make this decision for you. It’s your computer and your data, so the choice is entirely up to YOU!

Finally, REPORT IT! Victims of a ransomware attack may reach out to their local FBI field office or report it to the FBI’s Internet Crime Complaint Center (IC3) by filing a complaint on their website at https://www.ic3.gov.

Q.   How do I protect my computer and data from ransomware?

A. First, start with an antivirus program with active monitoring and layer on other applications that are specifically designed to thwart advanced malware attacks such as ransomware. We highly recommend purchasing Malwarebytes 3.0 Premium for $39.99 that we can install to prevent future virus attacks and infections. It is the most affordable and effective anti-virus protection program available. The Premium subscription gives the owner 1 year of virus definition updates OR save 25% OFF the second year by upgrading to a 2 year subscription for $69.99 (Reg $79.98). Licenses for more computers can be purchased for an additional $10.00 for each computer license for a 1 year subscription or an additional $15.00 per computer license for 2 year subscriptions. Discounts are only available at the time of purchase.

Next, keep your computer’s operating system up to date. Microsoft is continuously releasing security updates and patches for Windows. It is always best practice to install these updates to keep your computer safe and secure.

Finally, the best way to protect your data is by performing daily backups. IDrive Online Backup is a completely automated and reliable online backup solution that offers a cloud-based alternative to external hard drive backups. With IDrive Online Backup, you can be sure that your data is being backed up securely and remotely to eliminate the risks associated with on-site backups.

There are two subscription plans available: Visit our website for subscription plan details.

DON’T WAIT FOR DISASTER TO STRIKE!
Contact us today to schedule an onsite technician to set up IDrive Online Backup on your computer and protect all of your most important data from the threat of ransomware.