Cyber Hijackers
By ossie16d
@ossie16d (11821)
Australia
December 14, 2006 9:59am CST
Cyber hijackers demand ransom
Asher Moses
December 13, 2006
Hackers are hijacking free online email accounts, refusing to cede control unless the user pays them a ransom. Websense, a security firm that mines the internet daily for new threats, issued an alert today outlining the new form of cyber-extortion or "ransomware".
Some users of Microsoft's free Hotmail email service have reported logging into their account, only to find that all of their contacts and messages had been deleted, except for one message left there by the hacker.
The message, written in Spanish, roughly translates to: "If you want to know where your contacts and your emails are then pay us or if you prefer to lose everything then don't write soon!"The hacker doesn't specify a ransom amount, presumably so that they can negotiate a maximum amount with each individual target.
Joel Camissar, Websense's Australia and New Zealand country manager, said while he was not aware of reported cases where the attacks targeted Australians, he expected it to spread quickly to English-speaking countries. "At this stage it is not a significant number of people that seem to have been infected," said Mr Camissar.
It is understood that the hackers gain access to the email accounts by infecting internet cafe computers with a keystroke logger, allowing them to obtain the username and password of each person that logs in."From my cursory understanding of this type of threat, it was reported back to us that the end-users had transacted at an internet cafe, where their credentials may have been compromised," said Mr Camissar.
According to Mr Camissar, this signals a second wave of cyber-extortion. He said the first wave appeared back in May last year."The first ransomware we detected was a Trojan horse that encrypted documents on a user's PC, and you needed to receive the decryption code from the hacker by depositing up to $250 in their bank account," he said. "This[the Hotmail attack] is a more sophisticated type of ransomware, because rather than relying on a user to be infected by a virus themselves, all the user needs to do is type in their credentials on a computer that is not secure."Mr Camissar said that he was not sure whether the hackers would restore the user's account when paid, but said his previous experiences with ransomware attacks suggested they would keep to their word.
And people wonder why a lot of members here won't give out their personal information when asked for it in a discussion and also why so many people try to protect themselves.
What do you think of this? Have you ever been a victim and what did you do about it?
2 people like this
5 responses
@feralwoman (2199)
• Australia
4 Mar 07
I've heard of this Ossie. It's so scary to think that people can do that to your pc. Hopefully I have protected myself sufficiently so that this will be less likely to happen to me, but you never can tell. My pc was infected with spyware once and luckily my system check picked it up and I was able to deal with it pretty quickly. No harm done. lol
3 people like this
@ossie16d (11821)
• Australia
10 Mar 07
It is not at all nice feralwoman, and all we can do is the best we can to protect ourselves from these sorts of people. I had a similar problem only in my case it was a couple of viruses, and I had a brand new updated version of Norton at the time. Cost me more to have them removed that it did for the actual Norton anti-virus, anti-spyware software, so I was not happy. Glad to hear that you had a happy outcome when your pc was infected. :)
2 people like this
@caribe (2465)
• United States
15 Dec 06
I have never been a victim of this nor do I want to be. I often thought about the fact that the little internet businesses here in Nicaragua where you can go and rent a computer with online connection is not very safe. I used them before I got internet service and many tourists use them as well. This is the only internet access that the majority of people living in this country use. Anyone can install a program that records everything you do while on the internet, including your passwords. I think that people using these internet businesses to get on the internet would be the most vulnerable to this sort of thing.
@ossie16d (11821)
• Australia
16 Dec 06
I think there is always a risk with internet cafes as people are vulnerable using them. Also one cannot be sure that all the safety precautions like firewalls, virus protection, anti-spyware etc have been installed and are up to date. I know that when we are away, I only use the internet at friends if they are connected or else at a library. At least I know that both of those places are protected because they cannot afford not to be.
Thanks for your contribution to the discussion caribe. :)
2 people like this
@KrauseHome (36447)
• United States
30 May 07
Well, I have never been Victim of this type of thing, and if I would have ever been, I know I would find a way to report it to the appropriate authorities to where something is done about it. This is unreal if you ask me, and anyone who would pay up is not thinking straight. To me, this also sounds like another Form of Scam and needs to be stopped.
@claudia413 (4280)
• United States
12 May 07
Thank God I've never been a victim of that yet. I sure hope I never am. I'd be pretty upset if that happened to my account (although it's not a free one). I would never use an internet connection at a cyber cafe either. I know that some people are forced to do this, but I'm sure glad I'm not.
@sweetie88 (4556)
• Pakistan
4 Mar 07
My id hacked for 3 times and i had a id and a hell changed my id's password and often came with my that id and i got angry when i saw him online from my an other id. The best way to protect us is that we should open links from unknown and should n't accept files of unknown and cyber should block ips and ste where people may share their such expereinces. I hate negative use of internet.
@ossie16d (11821)
• Australia
10 Mar 07
You are right sweetie but sometimes no matter how hard we try, the cheats will still find out the information. We can only hope that someone picks up a new virus and works out how to get rid of it, or protect people, before it hits too many.
1 person likes this