النسخة العربية

Oman National CERT Towards a safe cyber environment

The 7th Regional Cybersecurity Summit

The 7th Regional Cybersecurity Summit

ITU-ARCC is organizing The 7th Regional Cybersecurity Summit which is kindly hosted by CITRA Kuwait on 21- 22 October 2018.

View
The 6th Arab Regional Cyber Drill

The 6th Arab Regional Cyber Drill

ITU-ARCC is organizing the 6th Arab Regional Cyber Drill (ALERT) for the Arab Region ,Kuwait (CITRA) from 23-25 October 2018.

View
Oman Threat Hunter 2018

Oman Threat Hunter 2018

“THREAT HUNTER” a national competition that is organized by ITU-Arab Regional Cybersecurity Center (ITU-ARCC) in a partnership with Silensec ...

View
Guide Manual for Reporting Abuse Through Social Media

Guide Manual for Reporting Abuse Through Social Media

This guidance booklet is written to facilitate reporting abuse process through Social Media and afford easy, smooth, and clear way of guidance to report over social media correctly.

View
Cybersecurity Specialized Training Courses

Cybersecurity Specialized Training Courses

Oman National CERT in cooperation with the Arab Regional Cybersecurity Center (ARCC) is conducting a series of specialized training in cybersecurity hosted in Oman.

View

Media Center

Share it

Online Incidents Report
Request OCERT Services
Information Security Glossary

OCERT News

 

Ransomware Malware

OCERT Latest News

22/May/2016


Ransomware

Ransomware is a type of malwares that prevents users from accessing their files. The Ransomware encrypts the files with strong encryption algorithm. Furthermore, some Ransomware locks the PC screen. Most Ransomware encrypts the files with strong encryption algorithms which are hard to be decrypted. To decrypt and regain access to your files, Ransomware demand payment from you in the form of a "Bitcoin" ransom.


Impact:
  • Most ransomware encrypts the files with strong encryption algorithms which are hard to be decrypted. To decrypt and regain access to your files, ransomware demand payment from you in the form of a Bitcoin ransom.
  • Within last few weeks various types for ransomwares are spreading around the world.
  • The top two ransomwares spreading around the world:
    • “Locky”: New type of ransomwares, most of the incidents reported that malware received through email attachments. The ransomware encrypts the files and rename them with the extension “.locky”.
    • “CTB Locker”: an old type of ransomwares, but new reports shows that they currently targeting websites files.
    • There are other known type of malwares such as TeslaCrypt Ransomware, Trojan-Ransom.NSIS.Onion.jmc, Ransom.FileCryptor.FixExplorer,etc.
Affected Operating System & Version:
  • Windows
  • Android
  • MAC
  • Linux
Solution(s):
  • Use caution when opening email attachments.
  • Do not follow unsolicited web links in email.
  • Maintain up-to-date anti-virus software.
  • Conduct routine backups of important files, keeping the backups stored offline.
  • Keep your operating system and software up-to-date with latest patches.
  • If you infected by a Rasnsomware, isolate the infected machine from the network where possible to prevent the malware from spreading.
  • Use available Ransomware Removal tools.
  • Conduct email security awareness among your employees to avoid being infected by similar malicious emails.
  • You can refer to Oman CERT article on Email security
    http://www.cert.gov.om/library_articles_details_arabic.aspx?article=1
Reference(s):


  • News Archive