Warning: New global ransomware email scam

7 Sep 2017 - 14:15

A new global ransomware attack is currently underway. Using multiple methods, the attackers try to trick you into downloading ransomware onto your computer.

How do I spot the attacks?

Keep an eye out for these variations of the current attack:

Attack 1:

You receive a fake email that claims to be from eBay. The subject line is ‘Your invoice for eBay purchases (098871971234567#)’ (the number is different for each email).

The message is very convincing as it looks almost identical to a genuine eBay email.

Here’s an example:

ransomware



Attack 2:

You receive an email with the subject line: “Voice Message from 017234512978 - name unavailable” (the number is different for each email). The email message asks you to Click to listen Voice Message.

When you click the link to listen to the message, you are directed to a web page that downloads ransomware onto your computer.

 

What do I do?

  1. If you receive either of these emails, please delete them immediately and report the incident to the UCT CSIRT.
  2. Please do not open any suspicious or unfamiliar emails.
  3. If your machine has been compromised and a ransom is demanded, do not pay the ransom. There is no guarantee you will get your data back.
  4. Keep your anti-virus software is up to date on your computer as well as other devices –such as phones and tablets.
  5. Make sure that the latest security patches have been installed, and that your computer has been restarted after these updates.
  6. Back up your data regularly and keep your backups up-to-date. That way, if your machine is compromised, you can restore your own data.