LostInfo 勒索軟體
保護您的裝置免受惡意軟體威脅對於維護資料完整性和個人安全至關重要。勒索軟體(例如最近發現的 LostInfo 勒索軟體)透過加密資料並要求勒索贖金來解密,從而構成了重大威脅。
目錄
LostInfo 勒索軟體概述
LostInfo 是網路安全研究人員發現的一種勒索軟體。該惡意軟體會對受害者係統上的資料進行加密,並在感染後更改檔案名稱。原始檔名附加有唯一 ID 和副檔名“.lostinfo”。例如,名為「1.jpg」的檔案在加密後將顯示為「1.jpg.{06420628-F5F4-ECED-BAAA-BCC19668745C}.lostinfo」。加密過程完成後,LostInfo 會產生一份標題為「README.TXT」的勒索字條。
LostInfo 勒索軟體的勒索字條
“README.TXT”文件通知受害者他們的文件已被加密。它強調攻擊者提供的解密過程的品質和可靠性,並阻止向第三方來源尋求協助。勒索信要求支付一筆未具體說明的資料恢復費用,如果在 12 小時內聯繫,可享 50% 的折扣。如果不支付贖金,它還威脅要與其他網路犯罪分子分享受害者的私人和財務數據。
支付贖金的後果
研究人員強調,沒有攻擊者的幫助,解密通常是不可行的。然而,支付贖金並不能確保攻擊者會提供必要的解密工具。通常,網路犯罪分子會在不履行承諾的情況下拿走金錢,因此建議不要透過支付贖金來支持他們的非法活動。
刪除 LostInfo 勒索軟體
從受感染的系統中消除 LostInfo 勒索軟體將阻止其進一步加密資料。不幸的是,這並不能恢復已經被破壞的文件。因此,必須注重預防和立即應對,而不是寄望於解密。
防止勒索軟體感染的安全措施
為了保護您的裝置免受 LostInfo 等勒索軟體感染,請考慮實施以下安全措施:
- 定期備份:在外部裝置或雲端儲存上保存資料的定期備份,以確保您無需支付贖金即可恢復檔案。
- 反惡意軟體軟體:使用信譽良好的反惡意軟體程式來偵測和防止勒索軟體攻擊。
透過遵守這些預防措施,用戶可以大幅降低成為 LostInfo 等勒索軟體攻擊受害者的風險,確保他們的資料保持安全並保護他們的裝置。
LostInfo 勒索軟體所釋放的贖金字條是:
'I'll try to be brief: 1. It is beneficial for us that your files are decrypted no less than you, we don't want to harm you, we just want to get a ransom for our work.
Its only takes for us at list 20 minutes after payment to completely decrypt you,
to its original state, it's very simple for us!
3.If you contact decryption companies, you are automatically exposed to publicity,also, these companies do not care about your files at all, they only think about their own benefit!
4.They also contact the police. Again, only you suffer from this treatment!We have developed a scheme for your secure decryption without any problems, unlike the above companies,
who just as definitely come to us to decipher you and simply make a profit from you as intermediaries, preventing a quick resolution of this issue!In case of refusal to pay, we transfer all your personal data such as (emails, link to panel, payment documents , certificates , personal information of you staff, SQL,ERP,MIS,LIS,financial information for other hacker groups) and they will come to you again for sure!
We will also publicize this attack using social networks and other media, which will significantly affect your reputation!
If you contact us no more than 12 hours after the attack, the price is only 50% of the price afterwards!
Do not under any circumstances try to decrypt the files yourself; you will simply break them!
Download the (Session) messenger (hxxps://getsession.org) in messenger :ID"0585ae8a3c3a688c78cf2e2b2b7df760630377f29c0b36d999862861bdbf93380d"
MAIL:lostinfo@skiff.com'
