The scam
A while back a friend of mine had her computer kidnapped and
held for ransom. It was not the old-fashioned message with words cut out of a
newspaper and glued to a blank sheet of paper. The note popped up on her
computer screen. It claimed to be from the FBI and accused her of downloading
child pornography. My friend’s computer
was then locked down, and she could not access her files. The “FBI” would
restore her access to her computer when she paid a fine of $300.
My friend, a woman in her seventies, had not downloaded any
pornography, nor was the ransom note from the FBI. It was from cyber criminals
using ransomware. Somehow they gain control of the victim’s computer and freeze
the contents by encrypting it and threatening to destroy it unless a ransom is
paid. These criminals attack individuals, small businesses and even hospitals.
Hospitals under
attack
A number of large hospital systems have been attacked by
hackers. MedStar Southern Maryland Hospital Center had its data frozen in a
ransomware hit. The criminals demanded 45 bitcoins, worth about $19,000, before
they would release the key to the frozen data. (Bitcoin is an artificial form
of currency. Cyber criminals prefer it
to actual currency because it is harder to trace.)
Hospitals of course need to have constant access to its
files. They not only need to protect medical records but they need the network
to access critical medical information and to avoid medical errors.
How did the crooks
get onto the hospital’s network?
They can gain access by phishing. Phishing is tricking
employees to click on a link that opens the network to outsiders. If you have
ever received an email with a vague message like, “I thought you would be
interested in this” followed by a hyperlink, you have been subject to a
phishing expedition. Even if you know the person who supposedly sent you the
message, it could in fact be from a hacker. Hackers can hijack user’s email
address books and send out spam or virus to everyone on the address book.
Another way that
criminals worm their way into a computer network is by exploiting
vulnerabilities in the network itself. Computer systems are so complex that it
is impossible to avoid vulnerabilities in them. That is why it is important to
keep your antivirus programs up to date.
Protect your data
before you are hacked
Get
in the habit of backing up any important data so that if your computer is
hacked, you can still gain access to your files. However, if you back anything
up by a device attached to your computer by a usb plug, that material is also
subject to hackers. Likewise a storage device connected to your WiFi is
vulnerable to attack. To be sure that your data is safe,
store it on a device that is not attached in any way to your computer. Even
better, store it in the cloud. That way, even if your computer is completely
destroyed, you will be able to recover your records.
What
to do if your computer is held for ransom
Hospitals that were hit with ransomware
had to pay the ransom because it was critical to get to many of their files.
Police and computer companies like Microsoft recommend that individuals not pay
the ransom. For one thing, you don’t know whether the thieves will actually
release your data.
If criminals are holding your computer
for ransom, the first thing you need to do is disconnect it from the internet
and intranet so that the virus won’t spread.
Next try to get rid of the virus.
Download Malwarebytes or another malware scanner to try to track down the problem.
If you can’t use the affected computer, download it on another computer. See
what you can find out about the bug that is on your computer and how to get rid
of it.
If you have backed up your data, you’re
all set.
Prevention
It’s a lot easier to keep malware out
of your computer than it is to get rid of it after it gains entry.
- Don’t fall into the trap of clicking on
suspicious hyperlinks
- Keep your antivirus up to date
Back up your data so you can easily recover it