So, I was updating myself on the latest threats on the Internet and I came across this special virus called “CryptoLocker”. “CryptoLocker” IS special and is especially classified as “Ransomware”.
What is “Ransomware”? Well, ransomware is nasty software that hijacks your computer and prompts you to pay money to give you your access back. Infected users have the risk of losing all their personal data if they don’t pay up.
Now, what makes CryptoLocker special? If infected, CryptoLocker will encrypt your files and then hide away the key until you go to a website and pay money for the decryption key.

That’s right, virus programmers have taken it to a whole new level because even if you clean the virus from your system, your files are still encrypted. It’s like someone locking you out of your house and then making you pay to get the keys back. However, a better analogy would be a “Tire Boot” on your car.
As usual, these types of viruses are generally spread through email attachments and the target are unsuspecting small/medium size businesses. Last month, infected users were instructed to pay $300 USD to receive the decryption keys and just recently the ransom rose to about $2,000 USD. Not only that, those who are infected have a time limit to send the payment. When this time has expired, the decryption key is destroyed and your files will be unrecoverable unless you have a backup.
The Target:
Files with commonly known extensions like:
3fr, accdb, ai, arw, bay, cdr, cer, cr2, crt, crw, dbf, dcr, der, dng, doc, docm, docx, dwg, dxf, dxg, eps, erf, indd, jpe, jpg, kdc, mdb, mdf, mef, mrw, nef, nrw, odb, odm, odp, ods, odt, orf, p12, p7b, p7c, pdd, pef, pem, pfx, ppt, pptm, pptx, psd, pst, ptx, r3d, raf, raw, rtf, rw2, rwl, srf, srw, wb2, wpd, wps, xlk, xls, xlsb, xlsm, xlsx
Backup/Recovery:
If you don’t want to pay (and pay big), you better have some type of backup and recovery system in place. ATCG TECH can help you with this. We have IT security plans that include backup monitoring to ensure your backups are being completed properly and are safe.
Removal/AntiVirus:
Make sure you are using a proactive, worry free antivirus solution! ATCG TECH includes Trend Micro’s Worry Free Business Security in our managed services arsenal. This allows us to keep you updated and monitored to ensure your antivirus are up to date. Our clients are protected from malware execution and we proactively prevent malicious websites from ever loading on our protected systems.
We will not be able to recover your encrypted files after you’ve been infected with CryptoLocker; However, we do have options available to prevent infections before they start.