CBT Virus - False Chrome update
Emails
claiming to be from Google asking to update your Google Chrome browser may lead
to CTB Locker/Critroni Ransomware
The virus we mentioned a few weeks back that takes over your PC and renders it and you data useless has a new way of infecting your PC. We have done everything we can to warn our clients, over the radio, newsletters, social media etc, however people are still getting the virus and losing ALL their data.Security Researcher at Malwarebytes have discovered a new wave of malware attacks involving CTB Locker/Critroni Ransomware which targets the user through fake email notifications claiming to be come from Google Chrome security team and asking the users to click on the link.
The fake Google email asks the potential victim to update his/her Google Chrome, which the email claims, has become outdated and insecure.
“Your version of Google Chrome is potentially vulnerable and out of date”.
The executable file pretending to be the Chrome Update, isn't an attachment, it infects through a link you click on. Once your PC is infected, you will see a warning like this on your desktop:
If at any point you see this -
1. DO NOT switch off your PC.
2. IMMEDIATELY remove the network cable
3. IMMEDIATELY remove any memory sticks / external hard drives
4. IMMEDIATELY disconnect from the wireless
Malwarebytes says, it is possible to remove the malware which is detected as Trojan.ZBAgent.NS by Malwarebytes Anti-Malware however it is difficult to restore the encrypted files.
While these kinds of emails automatically gets marked as Spam by most big email providers Gmail, Microsoft and Yahoo, but sometimes they manage to give the email spam filters a slip and make their way to main inbox folder.
Never click on links in any suspicious messages to keep your computer safe and secure. NEVER open attachments you are not expecting.
If you are not sure, forward the mail to us and we will advise you.
Please make sure all your staff members are aware of this virus.
Comments
Post a Comment