(706) 576-4702 Get A Quote Client Help

Malware Archives - Vroooom Technology

Revelton Malware Disguised As A FBI Fine

By | Technology News | One Comment

A new “drive-by” virus is making its way across the internet that disguises itself as a fake message, and fine, purportedly from the FBI.
Users get the virus by opening a file or attachment with malware. It works by installing itself when users visit a compromised website or download a corrupt file. Once infected, the victim’s computer immediately locks, and the monitor displays a screen, that you are unable to leave, stating that here has been a violation of federal law.

The fake message goes on to say the user’s IP address was identified by the FBI and the Department of Justice’s Computer Crime and Intellectual Property Section as having been associated with child pornography or the download of Illegal files. To unlock the computer, users are require to pay a $200 fine using a prepaid money card service.

The Reveton virus, used by hackers along with Citadel malware, a software delivery platform that can mimic other kinds of computer viruses, first came to the attention of the FBI in 2011. Since that time, the virus has become more widespread in, not only the United States, but internationally as well. Some variants of the virus have even started to effect computer webcams by displaying the victim’s picture on a frozen screen.
Authorities say they are receiving hundreds of complaints every day due to the fact there is no easy way to fix the computer once it becomes infected. The malware freezes the computer and doesn’t allow the user to access anything else until the supposed fine is paid.
A user’s best bet is to run the computer on “safe mode” and tried to use an anti-virus program to catch the virus and remove it from the computer. Be aware, however , that even if you manage to unfreeze your computer, the malware may still operate in the background. The malware may be able to capture personal information such as user names, passwords, or even credit card numbers. The best option may be to let a professional remove the virus.

Checking Your Mac for Malware

By | Network Security, Technology News, Website Tips | No Comments

If you own a Mac, and have Java enabled on your system, then this is for you. The Flashback virus targets the Mac OS, through a vulnerability in Java, turning your computer into a zombie while stealing your personal information. Oracle, who runs Java, has released a patch to prevent such an attack, but because Apple issues their own version of Java, therefore needing to release their own patch, has only done so recently. Figures vary for the total number of infected machines, but seem to be around half a million. So what do you need to do now?

There are a couple of ways of you can go about the situation from here. First, would be to find out if you have the Flashback virus on your system. You can simply go to Flashbackcheck.com and enter in your UUID, from there the website will detect if Flashback is showing up in any of your system files. Or you can do it manually, checking for the Flashback virus using the Terminal app. Open up the Terminal application (it’s in the Utilities folder in your Applications folder). Use this line of code in the terminal and hit return:

defaults read ~/.MacOSX/environment DYLD_INSERT_LIBRARIES

The response back should look something like this:

The domain/default pair of (/Users//.MacOSX/environment, DYLD_INSERT_LIBRARIES) does not exist

If the message doesn’t say that the pair “does not exist,” than Flashback is present on your system. Assuming the message is negative, let’s keep going. Now check out this line:

defaults read /Applications/Safari.app/Contents/Info LSEnvironment

That should generate the same “does not exist” message. Again, if it doesn’t then your Mac has been infected with Flashback. If it’s negative try this line:

defaults read /Applications/Firefox.app/Contents/Info LSEnvironment

Again, the message is (hopefully) negative. If it’s not, then you most certainly have the Flashback Virus. Which brings us to the next step, removal. Not to worry too much though, a special app made by Kaspersky Labs, found here, can remove the infection from your system. While malware and viruses generally hit Windows based machines more often, it doesn’t mean Apple’s OS X is anymore secure. Virus detection software only goes so far, it takes savvy computer use to stay ahead of the curve. Knowing how to avoid suspicious links and files are more useful in preventing an exploit than the top virus protection software can offer.

If you are concerned about the security of your network, or think you have a virus that you just can’t get rid of, you can visit us today at Vroooom to see what we can do to put your mind at ease.