Oh no. Watch out for PrisonLocker, it is worse than Cryptolocker

MikeRepairs

MikeRepairs

Member
Reaction score
12
Location
Long Beach, WA
Oh no. Watch out for PrisonLocker, it is worse than Cryptolocker.

PrisonLocker is designed to encrypt nearly every file on infected machines, including those on hard drives and shared drives but excluding .exe, .dll, .sys, and other system files. Like CryptoLocker, infected users will be given a predetermined amount of time to pay the ransom before the decryption key is forever deleted.

Read the article

I have been recommending all Windows users immediately install HitmanPro.Alert with CryptoGuard as soon as possible. Hopefully this will also protect for PrisonLocker as well?
 
Good question, and rep for the update.

Maybe we'll get a visit from a certain FoolishIT demi-god about the possible protection value there?
 
PC Ops said:
Thanks for the heads up!
Have HMP Alert Cryptoguard installed on all my machines. Hope it'll block this one too!

Man I hate those malware making morons :mad:
Click to expand...

It will be good to know if HMP will work with Prison Locker

And I hate the Malware Mob for what they do to customers machines in search or riches...but It DOES keep us in work, and also I like the knowledge gained in the challenges they set us.
 
I'm sure this won't be the end of this type of malware.... Once they know people will pay, that's it....
 
carrcomp said:
Good question, and rep for the update.

Maybe we'll get a visit from a certain FoolishIT demi-god about the possible protection value there?
Click to expand...

The article says,

According to specifications listed by the author in a number of locations, the PrisonLocker infection process will begin with a Trojan that drops a single executable file into a temp folder.
Click to expand...

If that's the case, CryptoPrevent protection should be effective against this new one as well.
 
PC Ops said:
Man I hate those malware making morons :mad:
Click to expand...

Agree, not alot of money to be made telling someone they are screwed.

Instead of paying these ransoms, it would be cool to start like a kickstarter bounty type thing for the first scumbag willing to rat out his buddy to the authorities for a fat stack of cash, so that the scumbag that is writing this could hopefully be sent to one of those prisons like they talk about in "Office Space"..... the FPMITA type prison.
 
I think there's money to be made in reselling online backup like mozy or carbonite...or selling external hard drives along with backup software.

"Sorry you just lost all your files, but if you want to prevent that in the future then here's 'x' to help you."
 
It would be very interesting to see what would happen if it got into carbinite or moby or some other online backup system.

coffee
 
jdpetrov said:
I think there's money to be made in reselling online backup like mozy or carbonite...or selling external hard drives along with backup software.

"Sorry you just lost all your files, but if you want to prevent that in the future then here's 'x' to help you."
Click to expand...

I hate to say it but I agree. More reason to sell online backup. Last year alone, I think I have acquire a dozen new clients for online backup due to CryptoLocker.
 
stro said:
Agree, not alot of money to be made telling someone they are screwed.

Instead of paying these ransoms, it would be cool to start like a kickstarter bounty type thing for the first scumbag willing to rat out his buddy to the authorities for a fat stack of cash, so that the scumbag that is writing this could hopefully be sent to one of those prisons like they talk about in "Office Space"..... the FPMITA type prison.
Click to expand...

I would totally support this. I'd even consider donating $5 from every malware removal to a general malware writer bounty hunter fund.
 
coffee said:
It would be very interesting to see what would happen if it got into carbinite or moby or some other online backup system.

coffee
Click to expand...

On Security Now, Leo and Steve were talking about how Carbonite was being affected by Cryptolocker. The phones were ringing like crazy and Carbonite was having to restore previous versions of backups for their customers.

Scary stuff... I had one person call me because someone in the office brought a laptop in that had crypto locker and it encrypted all the files on their file server. :(
 
coffee said:
It would be very interesting to see what would happen if it got into carbinite or moby or some other online backup system.

coffee
Click to expand...

I've being saying it's only a matter of time before viruses, malware etc start infection these machines. To be told they would never get infected by local techs and security firms.
 
I may be wrong, but as far as I can tell from these articles, which all seem to originate with a blog post from Malware Must Die, Power Locker is not much more than a concept and hasn't been completed, let alone released. It almost looks like someone is trying to get people to put money up front for development.

CryptoLocker on the other hand is very real and continues to cause problems.
 
You must log in or register to reply here.

Similar threads

Porthos
New ransomware attacks target your NAS devices, backup storage
Replies
1
Views
936
ell
E
Porthos
Top 5 Reasons Your Employees Struggle with Cyber Security
Replies
4
Views
1K
Comptex
C
D
Petya Ransomware Unlocked, You Can Now Recover Password Needed for Decryption
Replies
10
Views
2K
HankArnold
HankArnold
Kitten Kong
CryptoLocker developers charge 10 bitcoins to use new Decryption Service
Replies
8
Views
3K
phaZed
phaZed
frederick
When is it OK to reinstall/reload Windows?
2 3
Replies
45
Views
11K
NJW
NJW
Back
Top