Be Safe…Stay Secure from CTB Locker.

A new variant in the Ransomware family referred to as CTB Locker is spreading fast. Ransomware is malicious software that denies you access to your computer or files until you pay a ransom. The malware encrypts file/s on your computers and may lock your screen, making your computer completely useless and inaccessible. The malware is getting circulated mostly through the mode mentioned below:

1. The user gets an e-mail containing an attached .zip file meant to arouse curiosity, inviting the user to click on it. The .zip file contains a Trojan.
2. After being opened, it infects the computer and initiates encryption of files. If the user is using network shares, the malware will try to encrypt mounted devices as well.
3. If the user tries to access files, the CTB Locker prompts the user with a ransom notice for unlocking the computer, with a timer showing the time left to pay the ransom.

Presently, there is no known way to break the encryption used by the CTB Locker and recover the files; you may lose the information permanently!

It is a high severity infection and hence, you are requested to follow the following safe-computing practices, diligently:

1. Do not click on unsolicited web links in email messages.
2. Use caution when opening email attachments.
3. Maintain up-to-date anti-virus software.
4. Keep your operating system and software up-to-date with the latest patches.

If you suspect that your computer has been infected or is displaying any of the above-mentioned signs, please follow the instructions given below:

1. Disconnect the infected computer from the network (wireless or wired) immediately.
2. Don’t pay the ransom money. Your computer may still be at risk even after you pay the ransom and have it unlocked by the perpetrator.
3. Change all passwords after the malware has been removed from your system.