Scammers took advantage of the release of Windows 10 so as to earn. They are sending on behalf of Microsoft phishing emails with malicious attachment, which blocks the user’s computer.
A few days ago over 67 the computers were updated to Windows 10, but many users are still awaiting notice from Microsoft that came to their turn. “Watch out for the notification that you can begin the upgrade. The notification should come within a few days or weeks,” the company said.
The attackers jumped at the chance to use these notifications in a fraudulent manner and began to send on behalf of the fake Microsoft message with an attachment, where under the guise of archived Windows update 10 contains Trojan-extortionist.
As reported by researchers at Cisco, fraudulent emails look very authentic scammers use the appropriate color scheme, and email address [email protected] not the victims of suspicion. However, if you look at the header, you can see that the message was sent from an IP address in Thailand. In addition, the text uses specific characters that are not in the Latin alphabet.
After the user has downloaded, unzip and run the executable, it comes to notice that all his personal information encrypted by Trojan CTB-Locker. The victim is given 96 hours to pay ransom. If the person refuses, all the data from his computer will be deleted.
It is worth noting that Windows will offer the upgrade to Windows 10 when it’s ready, therefore, for the sake of security you shouldn’t pay attention to such letters.
