4°
NEWS
SHOWBIZ
FOOTBALL
COMMENT
Life & Style
Tech
Windows 10 update is packed with dangerous ransomware – do not download!
Windows 10 users have been warned against downloading a new software update (Image: MICROSOFT • GETTY)
WINDOWS 10 users are receiving emails purporting to be from Microsoft, urging them to install a new update to their machine. But be warned, it’s not an official message from the US firm and the update is packed with dangerous malware and other vicious viruses.
By AARON BROWN
PUBLISHED: 06:01, Thu, Nov 21, 2019
UPDATED: 07:09, Thu, Nov 21, 2019
Share on FacebookShare on TwitterShare on Google+Share with EmailShare via Whatsapp
Windows 10 users need to be on high alert for a scam update that’s circulating in emails that purport to be from Microsoft.
The dangerous Windows 10 update was discovered by the security researchers at Trustwave’s SpiderLabs. According to their findings, the nefarious update is designed to infect your Windows 10 machine with the Cyborg ransomware.
Once the ransomware activates itself, it will encrypt and lock all the files on your computer with a new file extension – 777 – so you can’t crack them open and access any of your own data. The malicious software then leaves a single text file, Cyborg_DECRYPT.txt, on the desktop. It contains instructs to pay the cyber-criminals.
RELATED ARTICLES
Sky TV Black Friday deal: Get a mind-blowing £567 discount on Sky Q
Google Chrome is testing a new way to activate Incognito Mode
Once they have to received payment, the online criminals promise to unlock the files on your computer so that you’re able to access your own family photos, music files, work, emails, and everything else you keep saved on your Windows 10 machine. However, that doesn’t always mean the nightmare is over. Cyborg is particularly gruesome because it installs a copy of itself deep within the root of the infected drive, which means it can be triggered and reappear at a later – forcing you to cough-up all over again.
Bottom line – you really don’t want this on your Windows 10 machine.
Cyber-criminals are currently trying to trick Windows 10 users into downloading the ransomware under the guise of an important system update from Microsoft. According to the team at SpiderLabs, the email usually has the subject line ‘Install Latest Microsoft Windows Update now!’ or ‘Critical Microsoft Windows Update!’.
This should be a red flag as Microsoft pushes its operating system via the Windows Update app preinstalled on the system. You’ll get a pop-up on your machine when there is a new update waiting for you, but you will never be notified about changed to your operating system over email.
ADVERTISEMENT
Ad
The ransomware leaves a second installer in your system (Image: GETTY)
The email itself contains a single line of text: “Please install the latest critical update from Microsoft attached to this email”. While the fake update attachment has ‘.jpg’ file extension, it is actually not a picture but instead is an executable file.”
Of course, the email is right, the file isn’t actually a picture – but nor is a critical Windows update. Instead, it is a malicious .NET download designed to deliver the malware to your system.
Trustwave’s Diana Lopera posted an explanation about why the Cyborg ransomware threat can be so serious for individuals and businesses. In a blog post about the latest Windows 10 update came, Lopera wrote: “The Cyborg Ransomware can be created and spread by anyone who gets hold of the builder.
"It can be spammed using other themes and be attached in different forms to evade email gateways. Attackers can craft this ransomware to use a known ransomware file extension to mislead the infected user from the identity of this ransomware.”
ADVERTISEMENT
The vast majority of security experts, including Microsoft, advise against paying any ransoms from malware installed on your system. After all, there’s no guarantee you’ll get access to your files again, and paying just encourages more ransomware attacks. After all, Cyborg has a secondary install file waiting in the wings on your Windows 10 PC waiting to strike again if you do decide to pay-up.
Instead, it’s best to use an anti-virus tool – many of which have their own decrypting software built-in. Make sure your PC is disconnected from any external drives, boot in Safe mode (by holding down the “S” on your keyboard when restarting the machine), and then let the anti-virus loose on your computer to try and strip away the malicious software.
RELATED ARTICLES
WhatsApp warning: Opening this video could let hackers read your chats
Google Maps is back with a new update… and this time it’s personal
Google Chrome is testing a new way to activate Incognito Mode
Most read in Tech
Failed to load data.
Latest videos
Your Galaxy S8 might get the Android upgrade you never thought was coming
Call of Duty Modern Warfare update: New patch news for big COD download
Joe Biden outrage: Presidential hopeful sparks Twitter fury for domestic violence comment
The surprise person Prince Charles employs to follow him around on holiday revealed
UK weather forecast: Mega freeze continues as horror torrential rain batters Britain
Fitbit prices slashed in Amazon’s early Black Friday deals – save up to 35%
Pixel 4 vs Pixel 3: Why Android fans could be forced to buy Google’s newer flagship
Mate 30 Pro hasn’t even released yet but Huawei’s next flagship might not be far away
Virgin Media has slashed the price of broadband and TV for Black Friday 2019
Lenovo is discounting these Windows 10 laptops for Black Friday 2019
Black Friday phone deal offers huge data bundle with Google Pixel 3a for free
Android and iOS users warned they will soon lose access to this popular app
Your Galaxy S8 might get the Android upgrade you never thought was coming
Android warning: Update your smartphone now or face another terrifying security threat
Kodi releases major update but it won’t fix one annoying glitch faced by users
EE boost: More UK customers get the ultimate speed upgrade from today
Privacy Policy Terms & conditions
Cookie Policy Cookie Settings
Copyright ©2019 Express Newspapers. "Daily Express" is a registered trademark. All rights reserved.
IPSO Regulated
Solar 