Skip to main content

Hackers spreading Locky ransomware by uploading infected .SVG images on Facebook Messenger

What is Locky Ransomware ?

The name of this ransomware is LOCKY. What is Locky ? it actually denotes one of the today’s prevalent ransomware families. It was discovered in the mid-February 2016. This file-encrypting epidemic proved to be sophisticated enough to fly under the radar of conventional anti-malware defense. However, Locky is one of the most preferred malicious software used by hackers. 

Who Discovered ?

Bart Blaze, a very well known reputed security researcher first discovered this type of ransomware attack which is being conducted via Facebook Messenger. Later, Peter Kurse, another security researcher with extensive experience in investigating cyber-crimes confirmed the news to reporters.
Bart Blaze wrote in his personal blog :
 “As always, be wary when someone sends you just an ‘image’ – especially when it is not how he or she would usually behave”. 
And Facebook has released the following statement in response to the discovery:
 “We maintain a number of automated systems to help stop harmful links and files from appearing on Facebook, and we are already blocking these ones from our platform. In our investigation, we determined that these were not, in fact, installing Locky malware—rather, they were associated with Chrome extensions. We have reported the bad browser extensions to the appropriate parties”. 

How does it spread ?

To spread Locky ransomware hackers are using a downloader software called Nemucod. This downloader is being used by hackers to help the ransomware bypass Facebook security by pretending to be a .svg image file. Hackers is now delivering this downloader software Nemucod through Facebook Messenger. 
What is .svg image file ? How hackers spread ransomware through it ? SVG extension file is scalable vector graphics file. It’s based on XML (Extensible Markup Language). So, it’s very easy to implement a set of codes of any harmful programs in it.
However, in this case hackers has embedded JavaScript. When you access this infected vector image file (SVG) then this java-script directs you to a site that seems to be YouTube’s landing page. But, actually it is not real Youtube’s homepage. It’s a clone site developed by hackers. If you look in the url then you will find that it’s 100% different.
However, after loading the fishing site you’ll be requested to download & install a codec so that the desired video could be played. This codec is presented in Chrome extension. If you install this codec chrome extension then the attack shall be distributed to other friends of you via Facebook Messenger. And at the same time this chrome extension will install Nemucod downloader, and instantly Locky will be installed into your system via Nemucod downloader. After that your all personal files on PC will be encrypted (locked) by Locky & it’ll demand some money via Bitcoin to decrypt them.

How to keep safe yourself from Locky ransomware infections?

To protect yourself from Locky take some preventive precautions to avoid any trouble in the future.  Following these rules strictly may decrease the chances of hijacking by Locky -
1. Do not connect your pc, laptop, tablet etc. to a public WiFi hot spot.
2. Do not open any attachments in email or chatbox from unknown or, suspicious senders.
3. Do not click any links in emails or chats from unknown senders.
4. Do not download any files attached in email or chat from unknown or, suspicious senders.
5. Try to avoid visiting malicious sites.
6. Do not download or, update software/apps from a third-party website, or store.
7. Do not use any out-dated or, pirated software.
8. Install WOT (web of trust) extension, and visit only reputed websites shows by WOT.
9. Keep your antivirus & windows up to date always.
10. You may use Kaspersky anti-ransomware tool, or, Bitdefender anti-ransomware tool for extra security.
11. Disable SMB v1, SMB v2, SMB v3 on windows via registry editing. How to disable it ? Read below.
12. Periodically set restore point. After attack you may able to use System Restore to get back to a known-clean state.13. Most Important : Always keep offline backup your data, or, do cloud backups.  

references : 
Tags : Hacks, Security, Ransomware, Malware, Facebook, News, Cyber Attack, Cyber Crime, 
This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 



Labels:

Comments

Post a Comment

Popular Posts (Last 7 Days)

South Africa is participating in largest and most advanced HIV vaccine trial program; makes its own history

image credit A big step for mankind -  South Africa is participating in  HIV  (Human Immunodeficiency Virus) vaccine program. This vaccine could prevent HIV infection. The drug trial began last month. This program is called  HVTN 702 . About 5400 adults are participating in this  HIV  vaccine trial. Scientists say that this  HIV  vaccine program is the largest and most advanced trial program in South Africa.   “If deployed alongside our current armoury of proven HIV prevention tools, a safe and effective vaccine could be the final nail in the coffin for HIV,” said Anthony Fauci, director of the National Institute of Allergy and Infectious Diseases (NIAID), which falls under the American National Institutes of Health (NIH), a co-funder of the trial.   “Even a moderately effective vaccine would significantly decrease the burden of HIV disease over time in countries and populations with high rates of HIV infection, such as South Africa.”  image credit Dr Glenda Gray  is
Post a Comment
Read more

"royalmacro" trail short update - Auto Upvote List

Today I just included a few steemians in my auto upvote list -- All posts of the following accounts must be auto upvoted by the trail after 30 minutes of publishing @gyanibilli @gamerveda @arnob @indiantraveller @nadira @libert @mindfreak @sujoy1990 @chotto @jznsamuel @munmunbiswas  [Plz activate on trail] @leohira123 @ragini00 @simaroy @atkins @drsupriya18 @jimmyrai28  [Plz activate on trail] @ronald0 @jerremie @jsantana @blacks  [Plz activate on trail] @artists @steemmeets @firepower @pharesim @steampty @rahul.stan @looftee @richman @vaibhavshah @terrycraft @slowwalker @trafalgar @ericvancewalton @papa-pepper @gavvet @benjojo @crowdfundedwhale @curie @abdullar @jlufer  [Plz activate on trail] @mgibson @funnyman  [Plz activate on trail] @elyaque  [Plz activate on trail] However, some users are delisted now but, they must be listed in the near future if they enable their account on trail. I request now the following members to enab
Post a Comment
Read more

One day at the Zoo -Episode #20

Two weeks ago I visited "Alipore Zoological Gardens" in Kolkata which is mostly known as "Alipore Zoo". It was founded in the year of 1875 in British India. And it was established by Edward VII, and then The prince of wales. This zoo is the biggest attraction of the tourists in the "City of Joy". However, the Alipore Zoo has some notable historical value as it's the most old zoological garden in India. The zoo was also famous for the home of "Aldabra giant tortoise". But, in 2006 the tortoise died at the age of almost 250. There are now over 1266 animals of 108 species are living in the Alipore Zoo. And annual visitors of the zoo is about 3 millions. **I captured some photos, but, due to the obstacle of the fence I couldn't take them very clearly. * Saltwater Crocodile To be continued ... Episode #1 ,  Episode #2 ,  Episode #3 ,  Episode#4 ,  Episode#5 ,  Episode#6 ,  Episode#7 ,  Episode#8 ,  Episode#9 ,  Episode
Post a Comment
Read more

The Real Face Of India - Episode 79

The Real Face Of India - Episode#79 I believe that India is the most beautiful country in the world. In this series I show the real face of beautiful India. Half Dozen Photos of Natural Beauties Snap taken : 31 Aug 2017   Camera : SONY, Model : DSC-W710 Other Episodes :  Episode#01 ,  Episode#02 ,  Episode#03 ,  Episode#04 ,  Episode#05 ,  Episode#06 ,  Episode#07 ,  Episode#08 ,  Episode#09 ,  Episode#10 ,  Episode#11 ,  Episode#12 ,  Episode#13 ,  Episode#14 ,  Episode#15 ,  Episode#16 ,  Episode#17 ,  Episode#18 ,  Episode#19 ,  Episode#20 ,  Episode#21 ,  Episode#22 ,  Episode#23 ,  Episode#24 ,  Episode#25 ,  Episode#26 ,  Episode#27 ,  Episode#28 ,  Episode#29 ,  Episode#30 ,  Episode#31 ,  Episode#32 ,  Episode#33 ,  Episode#34 ,  Episode#35 ,  Episode#36 ,  Episode#37 ,  Episode#38 ,  Episode#39 ,  Episode#40 ,  Episode#41 ,  Episode#42 ,  Episode#43 ,  Episode#44 ,  Episode#45 ,  Episode#46 ,  Episode#47 ,  Episode#48 ,  Episode#49 ,  Episode#50 ,  Epis
Post a Comment
Read more

Buds

I captured this photo when I was travelling a rural jungle... Tags : Photography, Nature, Macro Photography, Flowers & Plants photography,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount
Post a Comment
Read more

One day at the Zoo -Episode #22

Two weeks ago I visited "Alipore Zoological Gardens" in Kolkata which is mostly known as "Alipore Zoo". It was founded in the year of 1875 in British India. And it was established by Edward VII, and then The prince of wales. This zoo is the biggest attraction of the tourists in the "City of Joy". However, the Alipore Zoo has some notable historical value as it's the most old zoological garden in India. The zoo was also famous for the home of "Aldabra giant tortoise". But, in 2006 the tortoise died at the age of almost 250. There are now over 1266 animals of 108 species are living in the Alipore Zoo. And annual visitors of the zoo is about 3 millions. **I captured some photos, but, due to the obstacle of the fence I couldn't take them very clearly. * Gharial To be continued ... Episode #1 ,  Episode #2 ,  Episode #3 ,  Episode#4 ,  Episode#5 ,  Episode#6 ,  Episode#7 ,  Episode#8 ,  Episode#9 ,  Episode#10 ,  Episode#1
Post a Comment
Read more

Seven Day - Black & White Challenge: [Day #05]

Seven day black & white challenge: [Day #05] Some simple rules must be obeyed to be eligible in this contest • Seven black and white images that represent an aspect of your life. • Present one image every day for seven days. • No people. • No explanation. • Nominate someone every day, but anyone can join the fun. • Use the tag -  #sevendaybnwchallenge  - as one of your five tags. My Today's Nomination :  @photoman Tags : Black & White Photography, Flowers & Plants photography, Landscape photography, Nature, Photography,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount
Post a Comment
Read more

Blue Moon

Tags : Photography, Nature, Moon This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount
Post a Comment
Read more

Macro Photography - Cobweb

Macro-shot of Cobweb Tags : Photography, Macro Photography, Nature,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount
Post a Comment
Read more

Macro Photography - Buds

A macro shot of Buds Tags : Photography, Macro Photography, Flowers & Plants photography, Nature,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount
Post a Comment
Read more
Back to Top