Tag Archives: malware

Someone Hijacked Phorpiex botnet and Uninstalling Their Malware

Late last month, security analysts recognized a hijack of the Phorpiex botnet.

Phorpiex Botnet is a 10 year old network that has spread malware and has affected computers all across the world. And if you have this particular malware on your computer, you may have found a pop-up message saying “Please install AntiVirus Software and update your computer!”

At first, security analysts thought it was a prank by the Phorpiex network. However, they soon realized that the malware was slowly dissipating from those affected.

Though there’s no definite explanation for this, some say that it’s possible another malware network hacked into the Phorpiex system so they would lose funds. Competition seems to heighten in the cyber-criminal world.

To avoid these, and other malware problems on your PC, make sure to keep your operating system up to date and have the latest anti-virus software installed.

If you are needing assistance with any malware issues, please give us a call at 1-800-620-5285.  Karls Technology is a nationwide computer service company with offices in many major cities.  This blog post is brought to you from our staff at the Arlington Computer Repair Service, if you need computer repair in Arlington, TX please call the local office at (817) 756-6008.

Windows 10 Ransomware E-Mails – Do NOT Download

If you receive an e-mail about installing Windows 10 updates, just delete it. A new ransomware has been found, urging users to install the latest Windows 10 update. The subject line shows either ‘Install Latest Microsoft Windows Update now!’ or ‘Critical Microsoft Windows Update!’ and once opened, a file extension attachment will show up for you to click on.

This malicious download will infect any computer that downloads the “.jpg” file extension. TechRadar reported that the download, “encrypts all of the files on the infected user’s system and appends their filenames with its own file extension, 777. A ransom note with the filename ‘Cyborg_DECRYPT.txt’ is then left on the desktop of the compromised machine. Finally the ransomware leaves a copy of itself called ‘bot.exe’ hidden at the root of the infected drive.”

The file is called ‘bitcoingenerator.exe’ and the GitHub account it’s from is named “misterbtc2020”. This ransomware can lock your PC and your files be encrypted, and for a ransom, you can receive your files as decrypted.

Make sure your antivirus is up to date on your computer to avoid any and all malicious cyber attacks. Also, remember that Windows 10 updates are only pushed through its operating system and not through e-mails.

If you ever have an issue with any Windows 10 updates, give us a call at 1-800-620-5285.  Karls Technology is a nationwide computer service company with offices in many major cities. This blog post was brought to you from our staff at the Garland Computer Repair Service, if you need computer repair in Garland, TX please call or text the local office at (469) 299-9005.

New Trojan Malware through Word

New phishing emails that contain trojan malware are spreading, according to experts. The malware, named Ursnif, is contained in Word documents through emails and allow cyber hackers to steal personal credentials.

Ursnif isn’t the first of its kind, however. It was reported that this particular variant has been around since 2007 and specifically targets Windows OS. Fortinet, a top-rated security platform, recently stated this threat to be highly active.

“When a victim opens the Word document, it displays a security warning message designed to protect MS Word users from malicious macros (VBA code).  However, the document content deceives victims to click the “Enable Content” button, as shown in Figure 1. When the button is clicked, the malicious VBA code is executed because the code is in an AutoOpen sub that is executed at opening the document.”

Source: fortinet.com – Figure 1

It’s highly advised that you do not open any documents through e-mails unless you know exactly who it is from. Be sure to double check the address it was sent from as well. Many times, the name will show up legit, but the email address itself does not match.