Vipasana ransomware new ransom on the block

Yet another ransomware is going around (since at least the 20th of December), which I've dubbed Vipasana ransomware due to where you need to send your encrypted files to:

Message in Russian, you need to mail vipasana4@aol.com to get your files back

The name may be derived from Vipassanā or 'insight meditation'.

The message in Russian reads:

твои файлы зашифрованы, если хочешь
все вернуть, отправь 1 зашифрованный файл на эту почту:

vipasana4@aol.com

ВНИМАНИЕ!!! у вас есть 1 неделя что-бы написать мне на почту, по прошествии
этого срока расшифровка станет не возможна!!!!

Translated:

Your files are encrypted, if you want them all returned,
send 1 encrypted file to this email:

vipasana4@aol.com

ATTENTION!!! you have 1 week to send the email, after
this deadline decryption will not be possible !!!!

It seems these ransomware authors first want you to send an email before requiring any other action, rather than immediately (or in a certain timeframe) paying Bitcoins to get your files back. In this sense, their technique is novel. Instead of the usual 24/48/72h to pay up, they give you a week.

Do not be fooled: this does not make them 'good guys' in any way, they encrypted your files and as such are criminals.

Search results for vipasana4@aol.com are non-existent, with the exception of one victim hit by this ransomware:

Email addresses used in this specific ransomware campaign:
johnmen.24@aol.com
vipasana4@aol.com


Files will be encrypted and renamed following below naming convention:
email-vipasana4@aol.com.ver-CL 1.2.0.0.id-[ID]-[DATE-TIME].randomname-[RANDOM].[XYZ].CBF

Where [XYZ] is also a random 'extension', the real extension is .cbf

ver-CL 1.2.0.0 may refer to the version number of the ransomware, indicating there are older versions as well.

Targeted file extensions:

.r3d, .rwl, .rx2, .p12, .sbs, .sldasm, .wps, .sldprt, .odc, .odb, .old, .nbd, .nx1, .nrw, .orf, .ppt, .mov, .mpeg, .csv, .mdb, .cer, .arj, .ods, .mkv, .avi, .odt, .pdf, .docx, .gzip, .m2v, .cpt, .raw, .cdr, .cdx, .1cd, .3gp, .7z, .rar, .db3, .zip, .xlsx, .xls, .rtf, .doc, .jpeg, .jpg, .psd, .zip, .ert, .bak, .xml, .cf, .mdf, .fil, .spr, .accdb, .abf, .a3d, .asm, .fbx, .fbw, .fbk, .fdb, .fbf, .max, .m3d, .dbf, .ldf, .keystore, .iv2i, .gbk, .gho, .sn1, .sna, .spf, .sr2, .srf, .srw, .tis, .tbl, .x3f, .ods, .pef, .pptm, .txt, .pst, .ptx, .pz3, .mp3, .odp, .qic, .wps

I have sent over all necessary files to the good people over at Bleeping Computer, as there may be a way to recover files. If so, I will update this post.

Update - 12/02: thanks to a tweet from Catalin this appears to be another version of so called "offline" ransomware, discovered by Check Point:
“Offline” Ransomware Encrypts Your Data without C&C Communication

Unfortunately, there doesn't appear to be a way to recover your files once encrypted. Your best best in trying to recover files is using a tool like Shadow Explorer, which will check if you can restore files using 'shadow copies' or 'shadow volume copies'.

If that doesn't work, you may try using a data recovery program such as PhotoRec or Recuva




Conclusion


Ransomware is, unfortunately, long from gone. Almost each week or month, new variants or totally new strains of ransomware are popping up. In this way, the first and foremost rule is:

Create (regular) backups!

For more prevention advise, see here. 

You may also find a list of Indicators of Compromise (IOCs; hashes, domains, ...) over at AlienVault:
Vipasana ransomware

Types of Banking Frauds and How to Save Yourself

Banking Frauds are becoming a common thing now a days. Every alternate day newspaper contain some sort of banking fraud case. However recently several groups were trapped which were indulged in such activities. Its better to save yourself from such frauds yourself, else you will just bang your head with pillars with no guarantee of getting your money back.

How to save yourself from Net Banking Frauds

Knowledge is the key to save yourself from net banking frauds. Instead of being non-tech-savvy its better to be tech savvy and save yourself. In the following article we will tell you about types of banking frauds and how to save yourselves from them. In the old times most of the bank frauds were related to forged signatures, but not both time and technology has changed. Passwords are the modern signatures. Use them with extreme precaution.

Here a few types of banking fraud techniques and how you can save yourself from them.

1. Cyber cafe fraud : If you use net banking from some cyber cafe then softwares/virus installed on those systems might steal your banking access information. Sometimes some hardware devices like keystroke tracker (attached on keyboard port) can also store all keystrokes pressed by you and later the hacker can get the userid and password of your net banking.
How to save Yourself:

• Use netbanking from your own device. Your own laptop / desktop / smartphone (with some anti-virus) is the safest place to use net banking.
• If you have to use it from cyber cafe then make sure that some antivirus is installed. Also make it sure that the browser / system don't remember your password.
• While accessing net banking from cyber cafe, use private mode available in most of the browsers. in private mode your browsing history is not stored in system.

2. Calling from Bank: If you ever get a call from bank and the person at the other end asks for your bank details (to verify it), then its a fake call.
How to save Yourself:

• Don't provide login details of your bank account or ATM card.
• Even if they say that its urgent then tell them that you will call the bank customer care yourself.
• If you think that there might be a genuine problem then contact bank customer care yourself.
• Even if the call is from your bank, don't provide your account access information.

3. Fake Emails: If you ever receive an email from bank that asks for your bank details then its also fake. Such emails also contain a link to a phishing website to enter your bank details. These phishing websites looks just like your bank website.
How to save Yourself:

• There is one way to find if its fake or not. Email address is of form abc@domainname.com . If the sender email does not contain your bank's domain name then its fake. Usually such fake emails use free email ids like gmail and yahoo.

4. Phishing Websites: Phishing website are replicated versions of original banking website. These phishing websites have a slightly different domain name, so that if any user reaches them by mistake , he/she will not be able to identify it as fake. Usually users fall in trap of such websites through fake emails (as discussed in last point) and enters his login details which is then sent to some hacker.
How to save Yourself:

• Always check the domain name of banking website before entering the login information.
• If you have mistakenly entered information on such website then immediately open the correct one and change your password and then report this fraud to your bank.

How to report a Net Banking Fraud

5. Don't ignore SMS : Messages from you bank are important. Suppose you have received a SMS from bank that some financial transaction has occured or some beneficiary is added in your account, and none of them is in your knowledge, then it means that your net banking information is stolen and somebody else is using it.
How to save Yourself:

• Change the netbanking password immediately
• Then report the crime to your bank through net banking or calling the customer care of your bank.
• Changing the PIN of your ATM card is also advised. 

Tips to choose a secure password for net banking

6. Always register your permanent mobile number with your bank. If you ever change that number, then must register the new number and get the previous one removed. If you don't do that then after sometime if somebody else gets the same mobile number from telecom company then he/she will recieve your banking transactions messages and may also harm you in some way.

We hope that the above information will help you in protecting yourself from netbanking frauds.

How to save yourself from Online Banking Frauds

Antivirus Avast Mobile Security for Android

TAG : Antivirus Avast for Android, Antivirus Avast Free For Android , Android Avast Antivirus.

Name	Antivirus Avast Mobile Security for Android
Size	1,5 MB
Category	Antivirus
Password	www.bagas31.com

Download

FSoftare - Easy Download Software ,Full version software, Windows, Keygen, IDM, Crack, Serial, Key, and Patch Free Download.

How to Report a Netbanking Fraud

Netbanking is becoming a problem for bank customers, especially those who are new in using computers or internet. In most of the cases the bank customers are cheated due to their own ignorance or lack of knowledge about internet. According to a report in recent newspapers, Pune is becoming capital of Internet banking frauds. Dozens of groups are active in internet banking frauds by means of hacking, phishing websites and many more techniques.


Here we will tell you how you can report a netbanking fraud and save others and yourself from any further harm. If the fraud is reported in time then you may also save yourself from financial loss.

Most of the banks have got a website for netbanking customers. Its better to use the correct website for your banking transactions, as sometimes a website with a slightly different matching name might be a phishing website. Authentic websites of banks usually have a page to report the netbanking frauds. Here is a list of these pages.

• Canara bank : https://canarabank.in/English/Scripts/FraudReporting.aspx
• CIBC: https://www.cibc.com/ca/legal/report-online-fraud.html
• HDFC: www.hdfcbank.com/security/beaware_of_frauds
• ICICI: www.icicibank.com/online-safe-banking/report-fraud.page
• SBI : https://www.onlinesbi.com/aboutphishing.html

If your banks fraud page is not listed here, then after changing your account password try to find the fraud reporting link in your net banking website. If you are unable to find it then contact their customer care immediately.

You may also find toll free numbers of different banks from the following page.
http://finders.sulekha.com/banks_toll-free-numbers-india.htm

Netbanking Frauds in Last Five years

According to a recent report published in DNA more than 11500 cases of banking frauds involving amount above Rs 1 lakh are reported in past 5 years. Around 27000 Crore rupees were lost due to these frauds by different public and private sector banks. Among them SBI tops in public sector banks and ICICI tops in private sector banks. However these banks are also the banks with most number of bank accounts. Most of these losses are due to fake loans and netbanking frauds.

• Types of Banking Frauds and how to save yourself
• How to save yourself from Online Banking Frauds
• How to choose a Secure Password

Forex Report AUD/USD 1st February 2016

AUD/ USD Primary & Weekly Cycles

 

The price of the Australian dollar didn't hit the major support zones in January around the 2016 lows.

 

The AUD may have another go in February, as the new 50% level pushes the AUD back into those levels, however it won't surprise me to see and move back towards the 3-month highs in February.

 

Trade on the side of the February 50% level @.7098.