OT: CryptoWall Alert

Richard Kreiss rkreiss at gccconsulting.net
Wed Oct 1 11:55:01 PDT 2014 

Top post:

Mark, even the most well trained person will at time slip up and do something stupid, really really stupid.

My daughter many years ago opened the "I love you" virus on her computer which she shared with her boyfriend.  It wiped out all of his work.

She knew better and I had already warned her about it.  When I asked her why she opened it, her replay was "I wanted to see who loves me".

I have one client who avoids this issue; no one has access to the internet or get emails or can browse the web.  However, one computer links directly to the UPS web-site, and one other person has access to a limited number of web-sites.  The one other employee who had access aa few years back was fired for downloading games for her son to play when he visited her.  She had been forewarned that this would happen if she downloaded anything.  No virus infections but she was still fired. 

This should happen at more companies when employees spent time browsing the web or shopping on line rather than working.  This would have to be applied from the top down.


Richard Kreiss
GCC Consulting



> -----Original Message-----
> From: Filepro-list [mailto:filepro-list-
> bounces+rkreiss=verizon.net at lists.celestial.com] On Behalf Of Fairlight
> Sent: Wednesday, October 01, 2014 2:02 PM
> To: filepro-list at lists.celestial.com
> Subject: Re: OT: CryptoWall Alert
> 
> On Wed, Oct 01, 2014 at 03:53:22PM +0000, Chris Sellitto thus spoke:
> > All of our computers were protected with Symantec Endpoint, with up to
> 
> No, apparently all of your computers were -assumed- to be protected with
> Symantec Endpoint, but really weren't protected.
> 
> This is why user security training is critical.  All the A/V and Anti-Malware
> software in the world is useless if your users are not trained not to do -stupid-
> things like open "invoices" from unknown parties (or even known parties
> when none were expected), etc.  There are whole sets of behaviours which
> should be beaten out of users to prevent exactly this thing.
> 
> The failure is not wholly in your A/V suite; the failure is partly in the fact that
> your users weren't well enough educated to make the right calls.
> 
> That's the -real- take-away from a fiasco like this.
> 
> mark->
> --
> Audio panton, cogito singularis.
> _______________________________________________
> Filepro-list mailing list
> Filepro-list at lists.celestial.com
> Subscribe/Unsubscribe/Subscription Changes
> http://mailman.celestial.com/mailman/listinfo/filepro-list

More information about the Filepro-list mailing list