A piece of ransomware called CryptoWall is currently making the rounds on the Internet. This type of virus allows those who are affected to remove the threat by paying a ransom. While the virus has been written off as not dangerous, it took down a police department overnight. CryptoWall may seem like other ransomware, but it has some larger implications for data security.
According to IT consultant Jesus Vigo on TechRepublic, “CryptoWall is classified as a Trojan horse, which is known for masking its viral payload through the guise of a seemingly non-threatening application or file. Its payload involves encrypting the files of infected computers in an effort to extract money for the decryption key.”
Symantec, the company behind Norton antivirus, has ranked the threat level of CryptoWall as level 1 — “Very low.” Symantec’s data sheet on the virus states there were less than 50 known infections as of June 2014, and the geographic distribution of the virus was low. But that no longer seems to be the case.
More cases popped up in August. Dell’s SecureWorks reported that the virus had infected over 625,000 systems, and that over $1 million worth of bitcoin had been paid out by infected users. And if those systems are anything beyond single users, there can be pretty devastating consequences.
A police department in Durham, N.H. had its computer systems knocked out in less than 12 hours after an officer opened an email attachment. The malware has also started to appear in advertisements that run on many popular websites, so just avoiding suspicious attachments doesn’t guarantee safety.
Dan Goodin, security editor for Ars Technica, points out something very important: “CryptoWall has been gaining ground since April, when it was folded into the RIG exploit kit, which is software sold in underground forums that automates computer scams and malware attacks for less technically knowledgeable criminals.”
Those same criminals are becoming more sophisticated all the time as crime moves online. The fact that the email made its way to a police station may have been completely coincidental, but if it were possible to target individuals with CryptoWall, then it may have been possible to wipe out the station’s criminal records.