• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Security   »   Cryptolocker GOZeuS

Cryptolocker GOZeuS

  • Posted on:June 2, 2014
  • Posted in:Security
  • Posted by:Rik Ferguson (VP, Security Research)
4

Since Friday 30th May an almost unprecedented example of global cooperation between law enforcement agencies in 11 countries, led by Europol and the FBI along with the private sector, has been in effect. Law enforcement, Internet Service Providers and the Information Security industry have been working together to counter the threat posed by two specific malware families; Cryptolocker and P2PZeuS (aka GameOverZeuS).

Cryptolocker uses strong encryption to make the victim’s files entirely inaccessible until a ransom (1 Bitcoin, currently worth about $600 UISD) has been paid to unlock them. P2PZeuS is a sophisticated evolution of banking malware aimed at stealing financial and other credentials that the criminal will then resell on underground markets. An explanation of the propagation and effects of these criminal tools can be found here.

The ultimate goal of the law enforcement activity is to prevent infected computers from communicating with one another, significantly weakening the criminal infrastructure. While this blow is effective, it is not permanent and we expect the malicious networks to return to their former strength within a weeks, if not days.

This synchronised collaboration sets a new standard for that which is possible in the name of Internet security. This truly global operation has seen coordinated activities aimed at taking over or disrupting elements of the Command & Control infrastructure used to spread these pernicious malware families, but we cannot achieve this goal alone, every computer user has their own role to play.

A free tool which will allow you to scan your system for these threats and to remove them if found is available for download hereĀ  (for 32-bit systems) and here (for 64-bit systems).

Victims and potential victims, that’s you, must make use of this window of opportunity where the criminals have been weakened. Here’s your To-Do list, it’s short and sweet.

1 – Download and run the clean-up tools referenced above to make sure your system is clean

2 – Make sure your Windows operating systems is fully up to date with patches from Microsoft

3 – For on-going protection, ensure that you are running effective and up-to-date security software.

4 – Spread the message, make sure your families, friends and social circles are aware of the risks and of course of the opportunity we have right now.

These actions together will either clean up existing infections or help you to get ahead of the malware and better protect yourself in future.

For additional information, please click here.

Please add your thoughts in the comments below or follow me on Twitter;Ā @rik_ferguson.

Related posts:

  1. Understanding Ransomware and Exploring Solutions
  2. Trend Micro Collaboration With Law Enforcement Makes The World Safer For Exchanging Digital Information
  3. CryptoLocker evolves with new monetization schemes
  4. The history of ransomware: From CryptoLocker to Onion

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Advanced Cloud-Native Container Security Added to Trend Micro's Cloud One Services Platform
  • Trend Micro Goes Global to Find Entrepreneurs Set to Unlock the Smart Connected World
  • Winners of Trend Micro Global Capture the Flag Demonstrate Excellence in Cybersecurity
  • Companies Leveraging AWS Well-Architected Reviews Now Benefit from Security Innovations from Trend Micro
  • Trend Micro Announces World's First Cloud-Native File Storage Security
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, ę—„ęœ¬, ėŒ€ķ•œėÆ¼źµ­, å°ē£
  • Latin America Region (LAR): Brasil, MĆ©xico
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Ɩsterreich / Schweiz, Italia, Š Š¾ŃŃŠøŃ, EspaƱa, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.