Java Exploit with Ransom Trojan

3 posts / 0 new
Last post
dgilluly
Java Exploit with Ransom Trojan

I run a computer repair shop and I've been noticing that the highly publicized Java exploit(s) are being used to get the infamous Ransom trojan(The one that mimics the FBI and tells users to deposit money through greendot moneypak) onto victims' PCs. So I'm posting how to stay protected from this attack: Disable or uninstall Java if you don't need it, until a better patch gets made. If you can't live without Java, make sure you have a legitimate antivirus program, and that it's fully updated all the time. And as always be very very careful of what you click on while browsing the interwebs, safe browsing should be your first line of defense.

If you have already received the virus, take your computer to an authorized(and honest) repair shop, or a friend who knows what they're doing. Though it's easy to get rid of the alert and the popup, but the trojan also can download other malware such as keyloggers and spyware. Only remove it yourself if you are very comfortable with repair tasks. To remove the popup, boot to safe mode and remove the entry from the start menu -> startup(file name maybe something random, just look for a suspicious item, I've seen it have the same icon as vbs scripts). Then it's a good idea to run thorough AV/malware/spyware scans of your system AVG, Avast, Malwarebytes, and Spybot S&D all found different infected items in my experience.

   

   

hubby
Re: Java Exploit with Ransom Trojan

A problem with Java that i see all the time is that people THINK they need it - thinking it is JavaSCRIPT.. so to be clear, 98% of you out there do NOT need Java!

dgilluly
Re: Java Exploit with Ransom Trojan
That's definitely true, web browsers have Javascript built right into them. The whole situation is a Java double-cup of fail :D . The 2% of users that need(or want) Java are probably Runescape players.

Add new comment