Beware of "Ransomware"

National cyber security and specialist centre CyberSecurity Malaysia is alerting the public on “Ransomware,” a malware that infects computers and restricts access to the system until a ransom is paid to unlock it.

Victims will see a pop-up message on their screen, which states that their machine has been locked or all files within encrypted, along with a demand for ransom to restore access to their computer.

Examples of virus-induced pop-ups include those that urge home users to “click here to resolve the issue,” or pay a $100 (RM363) fine for visiting “websites with illegal content”.

“The creator of Ransomware puts fear and panic into their victims, causing them to click on a link or pay a ransom and inevitably become infected with additional malware,” said CyberSecurity chief executive Dr Amirudin Abdul Wahab.

Even businesses can become infected with Ransomware, risking temporary or permanent loss of sensitive or proprietary information, disruption of regular business operations or even bring harm to an organisation’s reputation.

Ransomware victims are urged to lodge a report to CyberSecurity Malaysia’s Cyber999 help centre and payment instructions should be ignored as it does not guarantee the release of encrypted files.

“It only guarantees that the malicious actors receive the victim’s money, and in some cases, their banking information. In addition, decrypting files does not mean the malware infection itself has been removed,” said Dr Amirudin.

Internet users and administrators are also recommended to take the following preventive measures to protect their computer networks from Ransomware infection:

> Perform regular backups of all critical information to limit the impact of data or system loss and to help expedite the recovery process. Ideally, this data should be kept on a separate device, and backups should be stored offline;

> Maintain up-to-date anti-virus software;

> Keep operating systems and software up-to-date with the latest patches;

> Do not follow unsolicited web links in email;

> Be extra careful when opening email attachments;

> Follow best and safe practices when browsing the web.

For further assistance, contact CyberSecurity Malaysia’s Cyber999 Help Centre via an e-mail to cyber999@cybersecurity.my  or mycert@mycert.org.my; or by calling 1-300-88-2999 (monitored during business hours).

In case of an emergency outside regular working hours, call the 24-hour line at 019-266 5850 or send CYBER999 REPORT EMAIL COMPLAINT to 15888 via SMS.