[ad_1]
CERT NZ has issued a warning after a new computer virus affected nearly 1,000 kiwis.
A man enters credit card information into a laptop (file). Source: istock.com
CERT NZ, the government agency that supports organizations and individuals affected by cybersecurity incidents, says the virus has the potential to cause widespread disruption and loss of revenue and data.
“The virus, known as Emotet, installs malicious software (malware) on a computer without the owner knowing it, and the attack is often financially motivated,” warns CERT NZ in a statement.
“Once the attacker has entered your computer, the malware steals your login details, sends false invoices to business customers, or even blocks access to your files and demands money to get them back.
“The virus can affect computers that use Windows, and it is a concern for companies, as it can deploy more malware that can allow ransomware attacks, such as those affecting the healthcare sector in the United States. This ransomware, known as Ryuk, encrypts the data of the affected individual or organization and retains it for ransom. “
According to intelligence received by CERT NZ from an international partner, around 800 New Zealanders have been affected by this malware.
“The infection starts when someone clicks on a link or attachment sent in an email. Not only does the person’s device get infected with malware, the virus also accesses and sends infected emails to the person’s contact list, continuing the cycle. This is how the virus is able to spread so effectively. “
CERT NZ Deputy Director Declan Ingram described the “deceptive” nature of this virus.
“These malicious emails often don’t come from spam email addresses, which is usually a sign that an email is suspicious,” says Ingram.
“Since the cyber attacker has access to someone’s contact list, the email is sent by a person you know and could even be embedded in an email conversation thread you are having with them, making it difficult to identify. That is why it is extremely important to have up-to-date antivirus software on your computer.
“It’s also worth picking up the phone if you get an unexpected email from someone you know that contains a web link or attachment to check if it’s the real one.
If you believe your business has been affected, CERT NZ recommends disconnecting the affected computer from your network immediately and contacting your IT support team.
If your personal device has been affected, CERT NZ recommends reporting the matter to them through your online reporting tool.
“Importantly, because the malware has access to your computer, you will have all your account login credentials and passwords, which could include things like online banking. They will need to be changed to protect your accounts. This is very important only change your passwords using a different computer, as the malware can also record any changes you make. “
CERT NZ has issued an alert on its website with information on what to do if you have been affected and how you can better protect yourself from a virus like this. You can find this here.
