New Fantom Ransomeware uses Windows Updates

**cmangle** · 31-08-16, 11:16 AM

"The Fantom Ransomware uses an interesting feature of displaying a fake Windows Update screen that pretends Windows is installing a new critical update."

**lsemmens** · 31-08-16, 03:13 PM

Interesting thing, though, if they encrypt your machine, how are you supposed to e-mail them?

**hoe** · 31-08-16, 04:06 PM

It only encrypts certain file extensions. .doc/.xlx/.jpg etc....

Sent from my SM-G935F using Tapatalk

**lsemmens** · 01-09-16, 12:10 PM

There's a bloody great long list of them so I'd be surprised if it worked. Here's a thought, if it only encrypts certain extensions a good way of protecting your files would be to change the extensions to one that is not on the list. It might be a nuisance when you need access to said files.....but.

**mickstv** · 01-09-16, 09:47 PM

Found a program some time back that may provide protection from this type of malicious crap, it's called sandboxie.

Thought I would post a link to the sandboxie site, if anyone is interested.

**WhiteOx** · 02-09-16, 06:47 AM

I use Sandboxie all the time, it comes in handy when you want to use a keygen but aren't sure if it has a virus or you're just getting a false positive.

Also I sometimes run my browser in a sandbox to see what dodgy websites like to dump onto computers.

**Philquad** · 02-09-16, 07:53 PM

they are real nasty these things
virus's have nothing on them
normally you can recover files, format & virus gone in 2 hrs or so

a lot of av's have protection now, they say
< free

**cmangle** · 02-09-16, 08:47 PM

Malwarebytes entry into the Anti-Ransomeware arena!

**cmangle** · 02-09-16, 08:50 PM

From Malwarebytes, "It is important to note that this program is still currently in a beta stage, which means bugs will occur during its use. Even though the program has been proven to work against almost all ransomware that has been thrown at it including Cryptowall, TeslaCrypt, and CTB-Locker, bugs may occur that allow something to slip through."