NEW ONLINE THREAT: Zepto Ransomware

Published: 29 July 2016

The new version of ransomware, Zepto virus, has struck businesses around the globe locking up computer files for ransom. Customers are strongly advised to remain vigilant when opening any attachment from unknown sources.

According to business-reporter.co.uk, in UK there were more ransomware infections in February 2016 than there were in the first six months of 2015. Moreover, the cyber insurance company Beazley expects ransomware attacks to increase by 250 per cent over the course of 2016.

Zepto, the latest form of ransomware, has emerged rapidly, distributing 137,731 spam emails in only four days at the beginning on July, according to Cisco. It uses a compressed ‘.Zip’ archive which includes a malicious JavaScript file. Once a user have fully downloaded the file, the machine begins encrypting all local files and demands ransom, which can range from hundreds to thousands of pounds, payable by Bitcoin to decrypt the files.

The body of the emails generally urge users to look at “requested” documentation, while the name of the attached .zip file is created by combining your name and a random number such as “pdf_copy-john_461397.”

It is advised to take precautions when browsing the web and dealing with newly received emails. Customers should avoid clicking, opening or forwarding any attachments from people or companies they aren’t expecting attachments from. There are also key steps that can be taken at a business IT level, including ensuring all computers are running up-to-date anti-virus software and introducing regular backups.

Zepto ransomware is very new but as it is a form of Locky ransomware, there is currently no way of decrypting the encrypted files.

If you’re concerned that backups aren’t in place or functioning correctly, contact us today via [email protected].

Read More

Cyber Security Assessment: Learn more about our free tool

1 October 2024

Cyber Security Awareness tool, all you need to know

Cloud Security Best Practices for SMEs

3 September 2024

Have a read of our 6 step Cloud security guide tailored for SMEs.

2 weeks on from the Crowdstrike outage

2 August 2024

Have you tested your incident response plan? This isn’t the first major IT outage or incident to impact organisations, and while unfortunate for Crowdstrike.

The limitations to Edge Defence and Anti-Virus Software

3 June 2024

Edge Defence and Anti-Virus Software: Why you need more in your cyber armour to protect your business in 2024.