News / USA

    FBI Warns 'Ransomware' Scams on the Rise

    A man types on a computer keyboard in Warsaw in this Feb. 28, 2013 illustration file picture.
    A man types on a computer keyboard in Warsaw in this Feb. 28, 2013 illustration file picture.

    Related Articles

    Hacking Firestorm Rages Through Internet

    Has mass hacking of the Internet become the new normal? Cyber security analysts weigh in on how to stop them

    Iran Stepping Up Its Hacking Activities Against US, Study Says

    Efforts include probing US power grids for vulnerabilities, marking a significant escalation in hack attacks

    China, US Have Weapons for Cyberassault

    China's new 'Great Cannon' blurs the line between cyber-espionage and cyberattacks

    There’s an old Internet scam floating around that’s getting some new attention lately.

    It’s called “ransomware,” and if you’re unlucky, it may have already infected your computer or mobile phone.

    Ransomware is a term used for a specific type of malware that secretly locks up certain files on your computer, putting them out of reach to everyone but the crook.

    Earlier this year, the FBI issued a warning, alerting the public to a recent rise in the spread of ransomware in the U.S.

    Two of the most pervasive bugs, CryptoLocker and CryptoWall, are thought to have bilked millions of dollars from unsuspecting users, and have recently begun spreading through Japan, Australia, and several other nations.

    The cybersecurity firm Websense says it alone has detected about 2 million instances of Cryptolocker, with more than 60 percent of those detections targeting computers in Australia. 

    And researchers at anti-virus firm Symantec say a newer ransomware bug, apparently designed to contain several references to the TV series "Breaking Bad," is rapidly spreading around the world. 

    It works like this: a ransomware bug quietly searches out certain types of files in your computer and, without your knowledge, encrypts them. Once encrypted, a user won’t be able to access those encrypted files without the decryption key, held by the bad guys.

    Users are then notified, usually via a pop-up message, that all their files are now inaccessible, and will remain so unless the user pays a fee to the bad guy in exchange for the decryption key to unlock their documents.

    It’s almost as if someone digitally stole all your data and promised to sell it back to you only after you paid a fee.

    “Ransomware looks for specific types of files to encrypt, traditionally,” said John Shier, a senior security analyst at the cybersecurity firm Sophos. “It’s looking for what we call user-generated content – word documents, spreadsheets, pictures. These could be pictures of your child’s first birthday, videos of your honeymoon, financial spreadsheets of your small business; files that you really care about.”

    The ransom typically is costly enough to hurt but not so expensive that users might just give up and abandon their data, usually in the $300 to $600 range.

    “This is a business they’re running; in order for them to provide a product that is going to be successful, they can’t price themselves out of the market,” Shier said.  “So that dollar figure has been pretty consistent. That price figure is just that – low enough that if you don’t have a way of getting out of this, it’s going to hurt a little bit, but not so much that you’re willing to give up your files.”

    Once payment is made, often via Bitcoin or pre-paid credit cards, the bad guys hand over the decryption key, But there’s no guarantee that will happen.

    “I get that question a lot – will they turn over the decryption key?” Shier asked. “They absolutely do, because this is basically a business. They want it known that other people who have been hit by this can say ‘Well, I paid them and got my files back.’ If you pay, you get your files back – that’s just good business.”

    Although they’re relatively simple in design, ransomware bugs often use a 256-bit AES encryption standard, making them theoretically impossible to crack without the decryption key.

    “There’s really nothing you can do,” once you’re files have been locked, Shier said. 

    Ransomware is indiscriminate in its targets, hitting personal, corporate and government computer systems alike.

    “They don’t care who they grab – it’s spray and pray,” Shier said. “The corporate world is least likely to pay because they’re most likely to have mitigations in place, meaning the most success the bad guys are seeing is off the public.”

    Even though it’s pretty much too late to do anything once a device has been infected and locked down, there are ways to protect against ransomware, or mitigate the damage once infected. The first and best, said Shier, is to backup all your files repeatedly, and in separate locations.

    “The key is to store your backed-up files someplace inaccessible,” he said. “Taking the backup off the network is absolutely essential. And if you re-image [reload backed-up files] on a clean machine, you have to make sure you address how you got infected in the first place.”


    Doug Bernard

    dbjohnson+voanews.com

    Doug Bernard covers cyber-issues for VOA, focusing on Internet privacy, security and censorship circumvention. Previously he edited VOA’s “Digital Frontiers” blog, produced the “Daily Download” webcast and hosted “Talk to America”, for which he won the International Presenter of the Year award from the Association for International Broadcasting. He began his career at Michigan Public Radio, and has contributed to "The New York Times," the "Christian Science Monitor," SPIN and NPR, among others. You can follow him @dfrontiers.

    You May Like

    Video Migrants Continue to Risk Lives Crossing US Border From Mexico

    In remote areas of the Sonoran Desert, which straddles the US-Mexico, thousands of migrants face arid desolation

    Video Recycling is Lifeline for Lebanon’s Last Glassblowers

    It's an ancient craft that stretches back millennia - but despite Lebanon’s trash crisis providing a lifeline, remaining glass blowers face an uncertain future

    Meet the Alleged Killer of Cambodia’s Kem Ley

    What little is known about former soldier, troublesome Buddhist monk and indebted gambler, raises more questions than answers

    Featured Videos

    Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
    London’s Financial Crown at Risk as Rivals Eye Brexit Opportunitiesi
    X
    VOA News
    July 25, 2016 5:09 PM
    By most measures, London rivals New York as the only true global financial center. But Britain’s vote to leave the European Union – so-called ‘Brexit’ – means the city could lose its right to sell services tariff-free across the bloc, risking its position as Europe’s financial headquarters. Already some banks have said they may shift operations to the mainland. Henry Ridgwell reports from London.
    Video

    Video London’s Financial Crown at Risk as Rivals Eye Brexit Opportunities

    By most measures, London rivals New York as the only true global financial center. But Britain’s vote to leave the European Union – so-called ‘Brexit’ – means the city could lose its right to sell services tariff-free across the bloc, risking its position as Europe’s financial headquarters. Already some banks have said they may shift operations to the mainland. Henry Ridgwell reports from London.
    Video

    Video Recycling Lifeline for Lebanon’s Last Glassblowers

    In a small Lebanese coastal town, one family is preserving a craft that stretches back millennia. The art of glass blowing was developed by Phoenicians in the region, and the Khalifehs say they are the only ones keeping the skill alive in Lebanon. But despite teaming up with an eco-entrepreneur and receiving an unexpected boost from the country’s recent trash crisis the future remains uncertain. John Owens reports from Sarafand.
    Video

    Video Migrants Continue to Risk Lives Crossing US Border from Mexico

    In his speech Thursday before the Republican National Convention, the party’s presidential candidate, Donald Trump, reiterated his proposal to build a wall along the U.S.-Mexico border if elected. Polls show a large percentage of Americans support better control of the nation's southwestern border, but as VOA’s Greg Flakus reports from the border town of Nogales in the Mexican state of Sonora, the situation faced by people trying to cross the border is already daunting.
    Video

    Video In State of Emergency, Turkey’s Erdogan Focuses on Spiritual Movement

    The state of emergency that Turkish President Recep Tayyip Erdogan has declared is giving him even more power to expand a purge that has seen an estimated 60,000 people either arrested or suspended from their jobs. VOA Europe correspondent Luis Ramirez reports from Istanbul.
    Video

    Video Calm the Waters: US Doubles Down Diplomatic Efforts in ASEAN Meetings

    The United States is redoubling diplomatic efforts and looking to upcoming regional meetings to calm the waters after an international tribunal invalidated the legal basis of Beijing's extensive claims in the South China Sea. VOA State Department correspondent Nike Ching has the story.
    Video

    Video Four Brother Goats Arrive in Brooklyn on a Mission

    While it's unusual to see farm animals in cities, it's become familiar for residents of Brooklyn, New York, to see a little herd of goats. Unlike gas-powered mowing equipment, goats remove invasive weeds quietly and without adding more pollution to the air. As Faiza Elmasry tells us, this is a pilot program and if it proves to be successful, the goat gardener program will be extended to other areas of New York. Faith Lapidus narrates.
    Video

    Video Scientists in Poland Race to Save Honeybees

    Honeybees are in danger worldwide. Causes of what's known as colony collapse disorder range from pesticides and loss of habitat to infections. But scientists in Poland say they are on track to finding a cure for one of the diseases. VOA’s George Putic reports.
    Video

    Video Wall Already Runs Along Parts of US-Mexico Border

    The Republican Party’s presidential nominee, Donald Trump, gained the support of many voters by saying he would build a wall to keep undocumented immigrants and drugs from coming across the border from Mexico. Critics have called his idea impractical and offensive to Mexico, while supporters say such a bold approach is needed to control the border. VOA’s Greg Flakus has more from the border town of Nogales, Arizona.
    Video

    Video New HIV Tests Emphasize Rapid Results

    As the global fight against AIDS intensifies, activists have placed increasing importance on getting people to know their HIV status. Some companies are developing new HIV testing methods designed to be quick, easy and accurate. Thuso Khumalo looks at the latest methods, presented at the International AIDS conference in Durban, South Africa.
    Video

    Video African Youth with HIV Urge More Support

    HIV, the virus that causes AIDS, is the top killer of teens in sub-Saharan Africa. But many youths say their experience with the virus is unique and needs to be addressed differently than the adult epidemic. VOA South African Correspondent Anita Powell reports.
    Video

    Video Pop-Up Art Comes to Your Living Room, Backyard and Elsewhere

    Around the world, independent artists and musicians wrestle with a common problem: where to exhibit or perform? Traditional spaces such as museums and galleries are reserved for bigger names, and renting a space is not feasible for many. Enter ArtsUp, which connects artists with venue owners. Whether it’s a living room, restaurant, office or even a boat, pop-up events are bringing music and art to unexpected places. Tina Trinh has more.
    Video

    Video Scotland’s Booming Whisky Industry Fears Brexit Hangover

    After Britain’s vote to leave the European Union, Scotland’s government wants to break away from the United Kingdom – fearing the nation’s exports are at risk. Among the biggest of these is whisky. Henry Ridgwell reports on a time of turmoil for those involved in the ancient art of distilling Scotland’s most famous product.

    Special Report

    Adrift The Invisible African Diaspora