Ransome wear

JackMDS

Elite Member
Super Moderator
Oct 25, 1999
29,563
432
126
By keeping updated clone file of you HD/SSD.

Can be done to external Drive or Cloud service that is offered by some of the Clone software vendors.

If Ransomware takes over, you can format the HD/SSD and install the Clone file back to the Drive.



:cool:
 

PliotronX

Diamond Member
Oct 17, 1999
8,883
107
106
Ransom WEAR?
I am glad I'm not the only one!

Mge3eRL.png


As for ransomware, it all spreads like any other malware, the main vehicles being loaded ads (particularly Adobe Flash based) and phony e-mails with convincing content and attachments or hotlinks to aforementioned malicious websites. Good habits when dealing with e-mails and uninstalling Adobe Flash will boost your personal protection from RW more than any real-time antivirus. The emphasis should be on cold backups or backups that the RW cannot modify. This means not relying on shadow copies or "previous versions" as it's commonly known. Backups are paramount, they offer a peace of mind that no other security measure can give you.
 

Z15CAM

Platinum Member
Nov 20, 2010
2,184
64
91
www.flickr.com
This is serious Crap. So what you got a recent backup image dismounted.

Not many people do that or understand the consequences..
 

Ketchup

Elite Member
Sep 1, 2002
14,559
248
106
The emphasis should be on cold backups or backups that the RW cannot modify. This means not relying on shadow copies or "previous versions" as it's commonly known. Backups are paramount, they offer a peace of mind that no other security measure can give you.

This is what I do at home. Regular backups to the server are weekly. The server is backed up to drives stored in a separate location a few times a year, so at the very least they are not sustainable to such a threat, and data of the most value (at least to us) is secure.
 

biostud

Lifer
Feb 27, 2003
20,265
7,414
136
How does it affect files shared across services like onedrive?

I als do regular backups, have a good AV, and use the brain before clicking on links.
 

John Connor

Lifer
Nov 30, 2012
22,757
619
121
Wipe it and install another OS.
You can boot another OS and get most relevant info I'm pretty sure.
IDK,my friend's daughter got it and I just wiped it and gave her a fresh OS.


I hate when people just say format. That's a cop out. Protect yourself from the first place. I have never, EVER had to reformat because I was owned in all the years I've used Windows.
 

sweenish

Diamond Member
May 21, 2013
3,656
60
91
Yeah, but saying to protect yourself is even worse advice [right now] since they're already infected. You're basically telling a pregnant girl to practice safe sex.

Without knowing the severity of the ransomware, a wipe may be the only option. From there, yeah, lock it down. I haven't wiped because of malware for a long time.
 

John Connor

Lifer
Nov 30, 2012
22,757
619
121
Well, if you have ransomware now, then depending on which type, there already might be a tool to reverse it. Hitman Pro also has a tool. If no tool exists then yeah, fess up to being owned and wipe away.