Current Security Threats

CryptoWall - the newest ransomware version of the CryptoLocker malware

CryptoWall is the latest version of ransomware that encrypts the contents of the hard drive, similar to CryptoLocker.  For more details on the CryptoLocker malware, you can read about it here:
Emails seem to be the most common way to become infected, but drive-by downloads from websites are also vectors for installation.  The newest versions (“CryptoWall”) are using Microsoft SilverLight and Adobe Flash vulnerabilities, rather than Java, to install themselves and take over the machines.  
Some infections have been reported from prominent websites like “”.  Most however have been from *.eu and *.pw domains.
How can a CryptoWall infection be prevented?
  • Do not open any files with the name "DECRYPT_INSTRUCTIONS"
  • Update to the latest versions: Flash, Java, and the Silverlight multimedia program
  • Automatic updates is turned on
  • Do not open suspicious emails or unexpected attachments (call and verify if you weren't expecting an attachment)
  • Make sure your data is backed up to a location external to your computer (a place not mapped)
  • Make sure you are running the latest version of AntiVirus, with the latest Virus and SpyWare definitions
What to do if you get CryptoWall?
  • IMMEDIATELY disconnect your system from the network (wired or wireless) to prevent the virus from encrypting files on network shares.
  • Immediately turn off any data synchronization software, e.g., Box or Drive.
  • If you are confident that you have an infection, pull the power or remove the battery to shut down the OS and halt the encryption process.
  • Contact your CTC or the Service Desk.

eBay Inc. To Ask eBay Users To Change Passwords (5/21/2014)

eBay Inc. (Nasdaq: EBAY) said beginning later today it will be asking eBay users to change their passwords because of a cyberattack that compromised a database containing encrypted passwords and other non-financial data. After conducting extensive tests on its networks, the company said it has no evidence of the compromise resulting in unauthorized activity for eBay users, and no evidence of any unauthorized access to financial or credit card information, which is stored separately in encrypted formats. However, changing passwords is a best practice and will help enhance security for eBay users.

Information security and customer data protection are of paramount importance to eBay Inc., and eBay regrets any inconvenience or concern that this password reset may cause our customers. We know our customers trust us with their information, and we take seriously our commitment to maintaining a safe, secure and trusted global marketplace.

Cyberattackers compromised a small number of employee log-in credentials, allowing unauthorized access to eBay's corporate network, the company said. Working with law enforcement and leading security experts, the company is aggressively investigating the matter and applying the best forensics tools and practices to protect customers.