Thursday, November 1, 2018

DHARMA MALWARE - AUDIENCE PROTECTION MEASURES



From Cyprus Police

Recently, the Office for Combating Organized Crime has received new complaints about a new type of virus called Dharma. It's a new version of Ransomeware / Cryptoware that infects computer and server (server) of companies, offices, or other users. 

This Virus is sent through an email with a misleading title (email), or through insecure or "infected" websites. In malicious files, they are usually .docx and .pdf files, which have malicious macros built in when they open and install the malicious software on the computer. After installing it on the operating system, ransomware encrypts - locks digital files stored on the infected user's computer.

In order to unlock the infected files of a computer, they are asked to pay a sum, using the Bitcoin digital currency as a ransom, otherwise they are inaccessible to their user. 

Note that at this stage there is no proven way or software to restore the files encrypted by the Virus. 
This particular Virus is known to the Police Authorities, and the Anti-Corruption Bureau has already sent electronic data to Europol for further processing and analysis of the virus. 

Internet users and network administrators are urged to take extreme care and take digital security and security measures to prevent malicious software from being infected and not to pay for the money they are required to discourage such illegal practices and to prevent further spread of the phenomenon.

The actions to be taken by Internet users and network administrators are as follows:
- Back up files at regular intervals, to external storage and to be kept out of the network so that they can be restored.
- In cases where they receive emails from unknown senders or unknown sources, do not open the links and download attachments contained in these messages for which they are not surely aware of the sender and the contents of the attached file. Particular attention should be paid to emails where the sender appears to be a service or company unknown to them.
- Type URLs in the browser they use rather than using links.
- Use genuine software, and there must always be an up-to-date malware protection program on the computer.
- Check and keep up-to-date the version of their operating system.
- Disable running macros and JavaScript in applications that open .docx and .pdf files.
- Ensure the protection of their mobile devices (tablets & smartphones). 

For more information or complaint, citizens can contact the Electronic Crime Prevention Office at 22808200 or via cybercrime.police.gov.cy