Europol and IT security firms united against the ransomware

“Today, the Dutch National Police, Europol, Intel Security andKaspersky Lab join forces to launch an initiative called No More Ransom, a new step in the cooperation between law enforcement and the private sector to fight ransomware together.” states the official announcement published by the European law enforcement Agency. ” No More Ransom (www.nomoreransom.org) is a new online portal aimed at informing the public about the dangers of ransomware and helping victims to recover their data without having to pay ransom to the cybercriminals.”

The No More Initiative aims to spread more information about the ransomware threat and the risk of exposure, providing suggestions to avoid falling victim to this family of malware. The online portal includes a session that provides instruction to prevent a ransomware attack and give the users also to report a crime to the European Law Enforcement Agencies.

“For a few years now ransomware has become a dominant concern for EU law enforcement. It is a problem affecting citizens and business alike, computers and mobile devices, with criminals developing more sophisticated techniques to cause the highest impact on the victim’s data.” declared the Europol’s deputy director Wil van Gemert. “Initiatives like the No More Ransom project shows that linking expertise and joining forces is the way to go in the successful fight against cybercrime. We expect to help many people to recover control over their files, while raising awareness and educating the population on how to maintain their devices clean from malware.”

Online users may access the No More Ransom portal to download freely available tools that may allow them to decrypt files locked by the ransomware. At the time I was writing the NoMoreRansom website includes the decryption tools for 4 popular threats, including CryptXXX, CoinVault and Bitcryptor .

The “Crytpo Sherrif” section was implemented to allow visitors to upload ransomware samples and a description to identify the type of ransomware.

Below the list of suggestions published on the No More Ransom portal:

1. Back-up! Back-up! Back-up!
2. Use robust antivirus software to protect your system from ransomware.
3. Keep all the software on your computer up to date.
4. Trust no one. Literally.
5. Enable the ‘Show file extensions’ option in the Windows settings on your computer.
6. If you discover a rogue or unknown process on your machine, disconnect it immediately from the internet or other network connections.

Of course, don’t pay the ransom!

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs –  cybercrime, Europol)

[adrotate banner=”5″]

[adrotate banner=”13″]