Virus – Gooroo Technical Services

Mac users at risk: Atomic MacOS Stealer (AMOS)

Jason/Gooroo — Thu, 04 May 2023 22:26:42 +0000

Atomic macOS Stealer (AMOS) is a new malware that targets macOS systems and will require a Mac repair and privacy risk audit. It is a 64-bit Golang executable file that is distributed through malicious links and attachments. Atomic MacOS Stealer (AMOS) is a new malware that targets macOS systems and is capable of stealing a wide variety of information, including: AMOS is distributed through…

Source

What Anti Virus is best for you? in 2023

Jason/Gooroo — Tue, 02 May 2023 01:01:00 +0000

We get asked a ton what anti-virus software is best for their computer for providing protection and virus cleanups, and our reply has always been Avast for home use and Trend Micro for commercial or business use, especially for those networks with Windows servers.For Windows 10 and below, the Avast anti virus program is one of the best performing anti virus applications out there that will protect…

Source

SynoLocker ransomware attack – Synology DiskStations

Jason/Gooroo — Mon, 01 May 2023 05:23:00 +0000

Synology NAS targeted by SynoLocker ransomware Synology users told to update DiskStation NAS drives after SynoLocker, a ‘cryptolocker’ style ransom attack. Synolocker is not a variant of the infamous Cryptolocker virus we reported on earlier, but is of the same type – a ransomware style virus which hold its victim’s files to ransom. Their methods involve encrypting the victim’s files and then demanding money to obtain the decryption key, usually the payment is in the form of BitCoin, and anonymous digital currency. Users on the weekend reported finding a message from the crypto-ransomware operators demanding 0.6 Bitcoin (or around $350 US), for the decryption key. Victims would need to install a Tor browser to access the hidden website where they could make the payment and receive the key and to allow decryption. At this time their is no other method to recover files, short of recovering from backup. According to Synology, users have been reporting that the attacks are only affecting Synology NAS devices running version 4.3 of its DiskStation Manager (DSM) and not DSM 5.0, which included fixes released last December for two critical flaws that give unauthorised access via the Windows File Service and File Station. The malware starts encrypting files, telling users that this process is under way. This implies that unencrypted files can still be copied at that point but how many will depend on the number of files on the affected drive and how long the encyption process has been running. The best course of action remains to turn off the drive immediately and take advice. Detection and prevention rates will be very low as SynoLocker is completely new and attacks the NAS directly, thus it is unlikely that any workstation antivirus products will detect it. Synology users will also need to think about how the malware reached their NAS in the first place and check their modem security, especially opened ports to the NAS and their computer(s). An official Synology statement said that the issue seemed to be affecting DiskStations running Disk Station Manager 4.3-3810 or earlier. Update the DSM Users should update to the latest version by going to Control Panel > DSM Update or manually via the Synology support site. Updated Information For more updated information see the Bleeping Computer article and discussion at Bleeping Computer’s article & posts on Synlocker.

SDRO Speeding Ticket Encryption Virus Scam

Jason/Gooroo — Mon, 01 May 2023 02:33:00 +0000

We are receiving calls from our clients and queries on suspect emails that look just like it is coming from the NSW Office of State Revenue (SDRO) or an Australia Post parcel delivery notice – do NOT open or click on the links in these emails as all contain a cryptolocker like virus.These viruses will encrypt all your files on your computer and any attached drives, such as your backup drive and…

Source

Top 5 Best Endpoint Security for Business in 2023

Jason/Gooroo — Wed, 22 Mar 2023 22:41:24 +0000

In today’s digital world, securing your business’s endpoints is more important than ever. With the increasing number of cyber threats and vulnerabilities, you need to have the best endpoint security in place to protect your valuable data and resources and minimise on potential site wide virus cleanup in the business. In this article, we’ll explore the top 5 best endpoint security solutions for…

Source

WannaCry Encryption SMB v1 Malware Tech Notes

Jason/Gooroo — Sun, 14 May 2017 23:17:16 +0000

This page has been urgently created to contain information regarding WannaCrypt, or better known as the WannaCry encryption ransomware virus. While the full extent of the damages caused so far remains unclear, the latest estimates place it at over 200k victims in over 150 countries. The main difference to other ransomware malware, WannaCry infects via a recently disclosed vulnerability in the…

Source

Cryptolocker Encrypted Trojan

Jason/Gooroo — Fri, 27 Sep 2013 03:14:02 +0000

Cryptolocker encrypted trojan really does encrypt work data and personal files and is incredibly damaging, resulting in requiring urgent virus cleanup of computers and across the local network. This trojan is very unlike most other ransomware viruses in that this one really does damage files.It can traverse across network resources (servers, NAS, mapped network shares) and encrypt anything with…

Source