Cryptolocker and Keys

[zimtech]

This method of locking files is effective in scamming people. I doubt it will go away, the vector will just change to deliver the payload. As we have seen, the target for the payload (of locking) will change too.

Do you think that the take over of computers/networks that hold the keys will be a common way to handle this cat and mouse game from now on?

Given that the keys have been once retrieved, other attacks this way might also have their keys retrieved. Its it ever ethical to wipe the data if it is possibility recoverable in a future date?

Practicality might be a different issue. Some people who had their data stored encrypted could have that data encrypted now.

 

[Galdorf]

New cryptolocker variants already out in the wild: New Crypto-Ransomware Emerge in the Wild | Security Intelligence Blog | Trend Micro

 

[nlinecomputers]

It is not ethics it is simply gambling. If you get infected you either

1. Pay the ransom and hope they deliver you the key and not just keep the money.
2. You pay for the storage space to hold on to the files and hope Law Enforcement gets lucky and is able to retrieve the keys for you.
3. You give up, delete the files and move on.

Or the better option. You restore your files from your off line backup and thank your computer tech for getting you a proper backup system to protect you from this kind of fraud.