[148206] in cryptography@c2.net mail archive
Re: [Cryptography] Cryptolocker
daemon@ATHENA.MIT.EDU (dan@geer.org)
Thu Nov 21 21:58:08 2013
X-Original-To: cryptography@metzdowd.com
From: dan@geer.org
To: Glenn Willen <gwillen@nerdnet.org>
In-Reply-To: Your message of "Thu, 21 Nov 2013 18:21:27 PST."
<7B9D3B7D-A6AF-45DD-84D0-CC7455EC64AA@nerdnet.org>
Date: Thu, 21 Nov 2013 21:51:26 -0500
Cc: Greg Broiles <gbroiles@gmail.com>, cryptography@metzdowd.com
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
I can say that this did hit an accounting firm that I know well.
The encryption of all of their files ten days before the 10/15
tax deadline was nearly fatal and, yes, it nailed the backups.
I believe the toehold was a poisoned PDF from a client.
--dan
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography