FB Messenger latest virus codename "LOCKY"

byNRosales

1.6K followers

7 years ago

Hello Waers,

A warning for everyone to avoid being hacked.

A ransomware virus that hackers are using in FB Messenger. It appears from a malicious scalable Vector graphic or .svg files that users receive on FB messenger.

If users click the image, hackers will tell to install a particular software on the computer that scrambles the data and will ask for payment to restore.

The hackers modus operandi called ImageGate embed malware on the image file, this is according to the Israeli firm CheckPoint. The embedded malware is used to spread "Locky".

Locky works by luring users to click an image file and after clicking it, users will be redirected to a fake YouTube site that tells the user to download a codec to watch the video. When the user agrees, it will install a downloader called Necumod that later donwloads, install, and runs the Locky Malware.

Locky will encrypt the files quickly on the hard drive, denying users to access it and they will be asking half Bitcoin ($200-$400) in ransom.

How to avoid Locky.

1. Do not download any files with the following extensions: .svg, .js, and .hta.

2. Keep your Windows computer protected with anti-pishing and anti-malware tools.

3. A good way to counter the hacking is to get in touch with the sender and ask if they sent the email.

4. Warn your friend and family about the specific threat and also check with them if they encounter suspicious activity coming from their accounts.

STAY SAFE EVERYONE!!!

Rose