Damaging emails in the loop

    22 September 2015

    Last week several members of staff at Umeå University received an email with the subject "PostNord – frakt, anmälan, försändelse". The object of this email is to trick the recipient into clicking a link inevitably leading to several of the files on your Windows computer getting encrypted and only able to be unlocked for money.

    The emails that have been spread as of late are called Ransomware and pose a serious threat that only seems to increase. The latest attack used PostNord as sender with the purpose to trick the recipient into clicking a link and then click again to approve the download of a further file; in this case a zip file and then an exe file. Clicking the attachments results in several files on the affected computer being encrypted (locked) and to access them you are requested to pay ransom to criminals. The picture shows an example of the latest scam attempt:

     

    Exempel på Ransom-ware

     

    Foto: Umeå universitet

    What to do if you are affected?

    If you have been subjected to this fraudulent email and have opened its attachments, the files on your computer will be instantly encrypted and you will unfortunately not be able to carry on with your work. We urge you to get in touch with Umeå University's IT support at ITS immediately. Please be aware not to follow the instructions on the screen as the university is never allowed to pay ransom.

    Protect yourself from attacks by:
    • Acting skeptically towards unknown senders who send attachments by email. Do not open and do not click!
    • Delete junk emails straight away; do not click links or attachments.
    • Make sure you keep regular backups and check that they work.
    • Update and make sure you have a functional anti-virus software.
    • Update the computer's operating system as soon as updates become available.

    Login to be able to read and write comments.