RIT INFORMATION SECURITY ALERT

RIT Information Security Alert --

FBI / InfraGard Ransomware

 

WHAT IS IT?

Ransomware puts some sort of restriction (encryption, lock) on your computer or account and tricks you into paying money for that restriction to be lifted.

In this specific ransomware, called Reveton, a pop-up message or other screen displays alerting you that you've violated some law (copyright, accessing pornographic content) and therefore your computer is locked.  The message uses Department of Homeland Security, FBI, InfraGard and Internet Crime Complaint Center (IC3) logos to appear legitimate.  The message may also have your IP address displayed and specific laws cited to add to the facade of being official.  In most cases, the malware does lock your computer, further scaring you into believing this is true.  The message says to avoid jail time and/or a legal dispute, you need to pay a "fine" of $300 by using a prepaid money card such as MoneyPak.

HOW DID I GET THE MALWARE?

Most likely you downloaded some freeware files or used peer-to-peer file sharing.  The files you downloaded were combined with the malware.  You may also have visited a website that automatically ran malicious code and exploited some vulnerability in your browser or browser plug-in.

HOW DO I GET RID OF IT?

Do not follow the instructions of the message or pay the fine, instead contact the help desk or your designated systems administrator.

And in the future, keep your software and OS up-to-date, avoid questionable websites, and follow out other best practices.