Fkn Hackers

[Angelz]

I am an admin to my clans emails, website, servers, everything actually.

When I received an email to my clans email address and seen [email protected] I thought it was the server provider which is not uncomman.

Message Server <[email protected]>

05/10/2017, 08:46:00 PM 26,{rndnum(1,1)}}-second message deposited by 02024466252

It was a voice message.

So when I clicked on the voice icon to open it I didn't realize till a couple hours later that a hacker got into my computer and installed a ykcol ransomware and encrypted RSA-2048aanddAES-128eciphers.

This virus has only been out for 2 weeks now.

What it does is encrypts all your files and renames them. If I had not of turned my pc off it would of gotten into all 4 of my drives. It was only able to encrypt one of my drives. I only had a back up till June of all my shit. So I am gonna have to wait till someone writes a encryption code that will reverse this.

I found the .exe file and deleted it.

I am going to be calling my local cyber crime unit and the Canadian Anti-Fraud Centre in the morning.

Of course I am not going to pay it.

These are screenshots of instructions I received to pay them .4 bitcoin which is roughly $1800.00 US which is $2263.33 Canadian.

 

[Sammy]

Time for me to do another backup of important stuff. I guess nobody has yet caught up with it to detect that file before damage is done. 

[Labob]

HEy @duc why don't we have a secret server  Sorry you got bit  

[Angelz]

Quite a few corporations got hit with this. They back their stuff up weekly so they only lost a week but on the business end that is huge. From what I have read and my hubby has read no one is paying that amount. If it was like $200 or under then people would pay.

I am thinking of asking the Anonymous hackers to find these assholes and shut them down. But get the encryption programs first 

[AyaqGuyaq]

Sweet Angelz . . . ,can you hear me . . .?

Sweet Angelz . . ., can you see . . .?

Thanks for the "heads up."

Ayaq

 

 

[Angelz]

The fraud department can't do anything like I expected because it is not fraud and no monies exchanged either.

I am waiting on a response from the cyber crime unit.  Had to email them all copies of what I received from the hackers.

I emailed them the actual file that contains the virus. Told them not to open it LOL

I have a copy of the actual email that was sent to me on the server even though I deleted it from my email account. I told them I can send them a copy of it.

Lets see what happens now.

I imagine there is only gonna be a couple months wait for someone to write a code to reverse this.

[Sammy]

Might want to send the file to whoever your AV company is.

[Angelz]

Already did. I'm waiting for a response.

It actually found the virus .exe file when I did the scan and I am wondering why it didn't notice and add it to the quarantine before it did the damage!!

Edited October 7, 2017 by Angelz

[Angelz]

53 minutes ago, Sammy said:

Might want to send the file to whoever your AV company is.

Already did. I'm waiting for a response. It was the first email I sent.

It actually found the virus .exe file when I did the scan and I am wondering why it didn't notice and add it to the quarantine before it did the damage!!

 

Edited October 7, 2017 by Angelz

[BlackRose]

never trust any email you dont know,,i delete them,,dont care if i dont know where its comeing from!!

[Angelz]

2 hours ago, BlackRose said:

never trust any email you dont know,,i delete them,,dont care if i dont know where its comeing from!!

This is the first email that I have clicked on. It said [email protected] so I thought it was the server provider is the only reason I clicked on it. I get a lot of voice mails so it didn't give me a red flag in my head.

[BlackRose]

i never accept voice mails