Cryptolocker

When run, CryptoLocker encrypts files stored on local drives and network drives using RSA public-key cryptography. The private key necessary to decrypt the files is stored on servers controlled by the attackers. After encrypting the files, the malware shows a ransom note with a countdown timer, demanding payment in Bitcoin. If the victim does not make the payment within the deadline, the private key is deleted, making file recovery impossible.

CryptoLocker spreads through:

• Phishing emails: Messages that pretend to be from trusted companies, but contain malicious attachments.
• Peer-to-peer (P2P) networks: Downloads from platforms such as BitTorrent, where malicious files are disguised as legitimate content.
• Vulnerability exploitation: CryptoLocker takes advantage of security flaws in outdated systems and applications.

1. Install a Trusted Security Solution

Use up-to-date antivirus and anti-malware software that provides real-time protection against threats such as CryptoLocker. The Panda Dome line provides advanced defense against ransomware and other threats.

2. Enable Anti-Ransomware Protection

Panda Dome includes a specific feature to protect your sensitive data against malicious encryption. You can configure the folders you want to protect and define which applications can access them. In our blog, you can find a guide to combat ransomware.

3. Keep Your System Updated

Make sure your operating system and all applications are up to date with the latest security patches to prevent exploitable vulnerabilities.

4. Make Regular Backup Copies of Your Files

Implement a system to frequently and automatically back up your files. Store these copies on external devices or in the cloud to ensure data recovery in case of infection.

5. Be Cautious with Email Messages and Downloads

Do not click on links or open attachments in suspicious emails or messages from unknown senders. Download software only from verified or official sources.