Skip to main content
  1. Home
  2. Computing
  3. News

Beware of new image files you didn’t download: They may launch ‘Locky’ ransomware

By

locky ransomware self downloading image files hacker hacking symbol
www.elbpresse.de
If you see a new image or graphic file on your computer that you don’t recall downloading, do not open it. The Locky ransomware program has moved on from MS Office Word to Facebook and LinkedIn vulnerabilities, and is now putting files on your computer that can lock you out of your data, according to Ars Technica.

Earlier this year Locky arrived on computers via a “malicious macro” in a Word document. In the last week, however, Ars Technica quotes Israeli security company Check Point reporting a “massive spread of the Locky ransomware via social media, particularly in its Facebook-based campaign.”

Recommended Videos

Typically what happens is that when you click on an image thumbnail, rather than displaying the image in a separate window, the file automatically downloads. It would be natural for most people to then click on the downloaded image — and that’s what executes the Locky code and immediately locks up all your files and demands ransom.

Vulnerabilities in Facebook and LinkedIn have been exploited by the perpetrators of the Locky attack, according to Check Point. “The attackers have built a new capability to embed malicious code into an image file and successfully upload it to the social media website. The attackers exploit a misconfiguration on the social media infrastructure to deliberately force their victims to download the image file. This results in infection of the users’ device as soon as the end user clicks on the downloaded file.”

When Locky is activated on your computer the ransomware locks you out of your files. The only way to retrieve your data is by paying a ransom, hence the term ‘ransomware.’ Ars Technica reports the current ransom to unlock a user’s computer is about half a bitcoin, or $365.

Check Point stated it previously informed Facebook and LinkedIn of the vulnerability currently being used in the ransomware attack, but won’t make the details public until those social media and other major sites fix the security flaw.

The security firm’s recommendations to consumers are: “If you have clicked on an image and your browser starts downloading a file, do not open it. Any social media website should display the picture without downloading any file. Don’t open any image file with unusual extension (such as SVG, JS or HTA).” Note, however, that the file extension could also be JPG, PNG, or any other common form.

The bottom line on avoiding this particular means of an attack by Locky is, if you click on an image and it starts to download, whatever you do, do not open the image file on your computer.

Topics
Bruce Brown
Bruce Brown
Contributing Editor
Bruce Brown Contributing Editor   As a Contributing Editor to the Auto teams at Digital Trends and TheManual.com, Bruce…
These AI features might actually make me use Paint and Notepad again
Windows 11 logo on a laptop.

Your everyday Windows apps are going to get a whole lot smarter. As Microsoft mentions in its Windows Insiders Blog, using the Windows 11 Paint and Notepad app will improve thanks to new AI features that the tech giant is adding to make it more helpful for users. It's still in early testing, and there is no official information about when or if it'll roll out to all users.

For starters, the Notepad app for Windows 11, after getting an update that added autocorrect and spellcheck, is now getting a new Rewrite ability that helps you rewrite highlighted text following any instructions you add.

Read more
Best Samsung Galaxy deals: S24, Buds, Watches and more
The Galaxy Z Fold 4's Cover Screen.

Samsung’s Galaxy lineup is one of the more popular tech lineups on the market. Among it you’ll find some of the best headphone deals, best smartwatch deals, best tablet deals, and best phone deals available. Whatever piece of tech you may have your eye on Samsung likely has within the Galaxy lineup. These devices also see pretty significant discounts pretty regularly, so we thought we’d round up all of the best Samsung Galaxy deals to make finding the right Samsung Galaxy model for you more convenient. Read onward for all of the details on how to save, and if you’d like to shop more specifically within the Galaxy lineup you can start with Samsung Galaxy Z Flip 5 deals, Samsung Galaxy Z Fold 5 deals, Samsung Galaxy Buds deals, or Samsung tablet deals.
Samsung Galaxy Buds Pro 2 — $107 $199 46% off

The Galaxy Buds 2 Pro are the high-end model of Samsung’s Galaxy Buds earbuds. They make great competition for the best wireless earbuds even if they don’t make everyone’s list, and with their Intelligent Active Noise-Cancelation technology they compare well with the best noise-canceling headphones. The Galaxy Buds 2 Pro produce high quality audio whether you’re listening to music, watching movies, or talking on the phone, and they pair easily with any Bluetooth device.

Read more
A 2-in-1 has challenged the Surface Pro 11, but not how you might think
The ports shown on the side of the Surface Pro 11.

Microsoft's Surface Pro 11 epitomizes the detachable tablet form of 2-in-1 laptop, and it's come a long way since the company first introduced the form factor over a decade ago. The newest model leveraged Qualcomm's Snapdragon X chipset for strong performance and great battery life, making for the best version of the Surface Pro ever.

But the more popular 2-in-1 format is the 360-degree convertible, where the keyboard flips around from clamshell through tent and media modes into a tablet. HP's new OmniBook Ultra Flip 14, based on Intel's new Core Ultra Series 2 chips, is one of the best laptops in this category. But here's the question: Which makes for the better 2-in-1 experience?
Specs and configurations

Read more