Tag Archives: malware

Windows 10 Ransomware E-Mails – Do NOT Download

If you receive an e-mail about installing Windows 10 updates, just delete it. A new ransomware has been found, urging users to install the latest Windows 10 update. The subject line shows either ‘Install Latest Microsoft Windows Update now!’ or ‘Critical Microsoft Windows Update!’ and once opened, a file extension attachment will show up for you to click on.

This malicious download will infect any computer that downloads the “.jpg” file extension. TechRadar reported that the download, “encrypts all of the files on the infected user’s system and appends their filenames with its own file extension, 777. A ransom note with the filename ‘Cyborg_DECRYPT.txt’ is then left on the desktop of the compromised machine. Finally the ransomware leaves a copy of itself called ‘bot.exe’ hidden at the root of the infected drive.”

The file is called ‘bitcoingenerator.exe’ and the GitHub account it’s from is named “misterbtc2020”. This ransomware can lock your PC and your files be encrypted, and for a ransom, you can receive your files as decrypted.

Make sure your antivirus is up to date on your computer to avoid any and all malicious cyber attacks. Also, remember that Windows 10 updates are only pushed through its operating system and not through e-mails.

If you ever have an issue with any Windows 10 updates, give us a call at 1-800-620-5285.  Karls Technology is a nationwide computer service company with offices in many major cities. This blog post was brought to you from our staff at the Garland Computer Repair Service, if you need computer repair in Garland, TX please call or text the local office at (469) 299-9005.

New Trojan Malware through Word

New phishing emails that contain trojan malware are spreading, according to experts. The malware, named Ursnif, is contained in Word documents through emails and allow cyber hackers to steal personal credentials.

Ursnif isn’t the first of its kind, however. It was reported that this particular variant has been around since 2007 and specifically targets Windows OS. Fortinet, a top-rated security platform, recently stated this threat to be highly active.

“When a victim opens the Word document, it displays a security warning message designed to protect MS Word users from malicious macros (VBA code).  However, the document content deceives victims to click the “Enable Content” button, as shown in Figure 1. When the button is clicked, the malicious VBA code is executed because the code is in an AutoOpen sub that is executed at opening the document.”

Source: fortinet.com – Figure 1

It’s highly advised that you do not open any documents through e-mails unless you know exactly who it is from. Be sure to double check the address it was sent from as well. Many times, the name will show up legit, but the email address itself does not match.