2013-12-22 ZD Net - CryptoLocker's crimewave: A trail of $$$ in laundered BTCs

[bryant.coleman]

http://www.zdnet.com/cryptolockers-crimewave-a-trail-of-millions-in-laundered-bitcoin-7000024579/

Dell SecureWorks estimates that CryptoLocker has infected 250,000 victims. The average payout is $300 each, and millions in laundered Bitcoin have been tracked and traced to the ransomware's money runners.

Don't take this lightly. The virus has already infected 250k systems. It is causing massive negative publicity to Bitcoin.

[LiteCoinGuy]

yeah that sucks but we have to deal with it.

[bryant.coleman]

yeah that sucks but we have to deal with it.

Still I don't understand it. They have collected tens of thousands of coins. How can they spend all of them without getting caught?

[Buffer Overflow]

yeah that sucks but we have to deal with it.

Still I don't understand it. They have collected tens of thousands of coins. How can they spend all of them without getting caught?

I guess they will just sit on them for years and hope they get forgotten about.

[bryant.coleman]

I guess they will just sit on them for years and hope they get forgotten about.

Hmm... that will be a bad idea. The cyber-crime agencies normally find criminal hackers within 6-7 months time. If they want to use the money they stole, then they should spend it before getting caught.

[kjlimo]

You can always reformat the computer, right?

[bryant.coleman]

You can always reformat the computer, right?

Yes. But what if your personal files are seized and you can't use them?

[2dogs]

Haven't tried this yet, but checking it out now:

http://www.foolishit.com/vb6-projects/cryptoprevent/

CryptoPrevent is completely FREE for personal and commercial usage.  If you would like to give a little something for it, consider purchasing the Premium Edition (with Automatic Updates)

Download the portable version below (recommended for scripting/deployment):

Download “CryptoPrevent” CryptoPrevent.zip – Downloaded 89786 times – 461 kB

Download a setup installer with full uninstall support below (recommended for most people.)

Download “CryptoPrevent Installer” CryptoPreventSetup.exe – Downloaded 85639 times – 791 kB

 

[bryant.coleman]

Haven't tried this yet, but checking it out now:

http://www.foolishit.com/vb6-projects/cryptoprevent/

Hmm... I found this article interesting. Cryptoprevent is also mentioned in it. According to them, Cryptoprevent was created by John Nicholas Shaw, CEO and developer of Foolish IT, a computer consultancy based in Outer Banks, N.C. 

[solex]

.....

Don't take this lightly. The virus has already infected 250k systems. It is causing massive negative publicity to Bitcoin.

It is? You cannot blame a currency when criminals use it, just as you can't blame a telecoms company when blackmailers issue extortions by phone, you can't blame the postal service when someone sends ricin in letters. Cars can't be blamed for road deaths.

People have known for years that they need good antivirus, antitrojan software. If people aren't using one of Norton, F-secure, Kaspersky, McAfee etc then the user is to blame as much as anything else.

I hope the CL group gets closed down by police action. In the meantime Bitcoin is proving that it is a superior currency than fiat for transfers and privacy. This is significant.

[Gabi]

You can always reformat the computer, right?

Yes. But what if your personal files are seized and you can't use them?

If you are an idiot and not only you caught a virus but also you didn't backup your "epic important personal files" then please stop using a computer because you are clearly unable to use one. You are doing more damage than good.
This said, please arrest who mine iron: it is used to produce guns that kill people.

[Rygon]

yeah that sucks but we have to deal with it.

Still I don't understand it. They have collected tens of thousands of coins. How can they spend all of them without getting caught?

I guess they will just sit on them for years and hope they get forgotten about.

It would be a positive for bitcoin if they tried to spend it, and they were identified based on those transactions.

[bryant.coleman]

It is? You cannot blame a currency when criminals use it

Me and you will understand. But common people will never think so. They will say that Bitcoin is used by criminals, because it is easier and more anonymous to do so.

[gorgorom]

yeah that sucks but we have to deal with it.

Still I don't understand it. They have collected tens of thousands of coins. How can they spend all of them without getting caught?

They can easily use tumblers to launder their coins, and break them into smaller chunks to each address.

[kjlimo]

You can always reformat the computer, right?

Yes. But what if your personal files are seized and you can't use them?

reformat and load the backups?

[nastybit]

You can always reformat the computer, right?

Yes. But what if your personal files are seized and you can't use them?

reformat and load the backups?

and what if cryptolocker has fun with the backups as well?
don't tell me that you expect average consumers to have offline backups?

[dancingnancy]

Can't you boot to safemode or something with Hirens Boot CD or something?  I have no idea how this thing works, btw.

[TraderTimm]

This virus is pretty nasty. And Satoshi help you if you've got networked drives mapped, because it will encrypt those for ransom too. Like others have said, you need to vigilant about internet usage, and have some kind of protection in the way of antivirus, although those aren't perfect. Beats having nothing though.

I'm getting to the point where I'm just going to spawn a Virtual Machine for any internet-facing business, and airgap the rest. Its getting pretty damned messed up out there. Or perhaps use a technique from the real world, and "quarantine" any recent downloads/programs for a given length of time to make sure they're not trying to 'phone home' or do other shady things. If they pass some checks after that, then incorporate them into your outer-tier backups.

[dc0ded]

You can always reformat the computer, right?

Yes. But what if your personal files are seized and you can't use them?

If you are an idiot and not only you caught a virus but also you didn't backup your "epic important personal files" then please stop using a computer because you are clearly unable to use one. You are doing more damage than good.
This said, please arrest who mine iron: it is used to produce guns that kill people.

You are right. Ignorant computer users are the cause of widespread DDOS and virus attacks. I think the first thing these people should do is learn about same basic computer security than creating a facebook profile to get chicks.

[bryant.coleman]

and what if cryptolocker has fun with the backups as well?
don't tell me that you expect average consumers to have offline backups?

If so, then they will pay the ransom and remove the trojan. Most of the infected systems are in the UK. Although the $700 ransom is significant, most of them can afford it.