ransomware recovery – Computer Security Articles

MSRT July 2016 – Cerber ransomware

January 23, 2017 admin Antimalware research for IT pros and enthusiasts, Cerber, Cerber infection chain, Exxroute, Locky, Microsoft Malicious Software Removal Tool, MSRT, ransomware, ransomware detection, ransomware mitigation, ransomware recovery

As part of our ongoing effort to provide better malware protection, the July 2016 release of the Microsoft Malicious Software Removal Tool (MSRT) includes detection for Win32/Cerber, a prevalent ransomware family. The inclusion in MSRT complements our Cerber-specific family detections in Windows Defender, and our ransomware-dedicated cloud protection features. We started seeing Cerber in February…

Microsoft Security

Troldesh ransomware influenced by (the) Da Vinci code

January 23, 2017 admin Antimalware research for IT pros and enthusiasts, MMPC, ransomware, ransomware backup and recovery, ransomware da vinci code, ransomware mitigation, ransomware prevention, ransomware recovery, Trojan:Win32/Mexar.A, Win32/Troldesh, Windows 10, Windows update

We at the MMPC are constantly tracking new and emerging ransomware threats so we can be one step ahead of active campaigns and help protect our users. As part of these efforts, we recently came across a new variant of the Win32/Troldesh ransomware family. Ransomware, like most malware, is constantly trying to change itself in…

Microsoft Security

Link (.lnk) to Ransom

January 23, 2017 admin Antimalware research for IT pros and enthusiasts, detect ransomware, macro malware, OneDrive backup, prevent ransomware, ransomware, ransomware detection, ransomware prevention, ransomware recovery, recover from ransomware attack, spam email infection vector, Windows Defender, worm, worm-like ransomware, wormable ransomware

We are alerting Windows users of a new type of ransomware that exhibits worm-like behavior. This ransom leverages removable and network drives to propagate itself and affect more users. We detect this ransomware as Ransom:Win32/ZCryptor.A. Infection vector Ransom:Win32/ZCryptor.A is distributed through the spam email infection vector. It also gets installed in your machine through…

Microsoft Security

The 5Ws and 1H of Ransomware

January 23, 2017 admin detect ransomware, Microsoft ransomware FAQs, ransomware, ransomware detection, ransomware FAQ, ransomware infographic, ransomware prevention, ransomware recovery, Windows Defender, Windows Defender blogs for home users and small businesses

For the past three months, we have seen ransomware hop its way across globe. Majority of the ransomware incidents are found in the United States, then Italy, and Canada. The prevalence of large-scale ransomware incidents led the United States and Canadian governments to issue a joint statement about ransomware. Due to the global ransomware incidents, the…