What is Gameover Zeus (GOZ) and CryptoLocker malware?
Gameover Zeus (GOZ) also known as “Peer-to-Peer Zeus,” is a type of malware designed to steal banking and other credentials from the computers it infects. The infected computers also secretly become part of a global network of compromised computers known as a “botnet,” a powerful online tool that cyber criminals can use for numerous criminal purposes besides stealing confidential information from the infected machines themselves.
CryptoLocker is a highly sophisticated malware that uses cryptographic key pairs that not only locks the system it affects, but also encrypts certain files found in the system's hard drive. If files are encrypted by Cryptolocker and you do not have a backup of the file, it is likely that the file is lost.
What is the impact of this malware?
A system infected with GOZ may be employed to send spam, participate in DDoS attacks, and harvest users' credentials for online services, including banking services which may lead to financial loss.
A system infected with Cryptolocker, may resulting in system or important files lockup. User coerced to pay (a ransom) through online payment methods to regain computer usability. However, paying doesn’t guarantee access to the infected system which may result in data loss.
What will happen if I open the email with the malware attachment?
GOZ operates silently on victim computers by directing those computers to reach out to receive commands from other computers in the botnet and to funnel stolen banking credentials back to the criminals who control the botnet.
Users affected by Cryptolocker may find their documents inaccessible due to Cryptolocker's encryption.
What is the next step if I am affected?
Change your passwords - Your original passwords may have been compromised during the infection.
Update - make sure that your Windows software is up to date and that you have installed any patches which Microsoft has issued for whatever version of Windows you are running.
Use reputable anti-malware/anti-virus software to protect your computer. You may wish to consider Singtel Security Suite for personal or SingNet Desktop Security for business. Anti-virus software recognizes and protects your computer against most known viruses. It is also important to keep your anti-virus software and signature files up-to-date.
Any advice on how to prevent such malware attack?
Scrutinize email messages carefully. Be wary of every email you receive, especially those from unverified sources. Users can do this by doing their research or communicating directly to the purported sender to confirm if they sent the messages. Do not open any executable file attachment.
Keep your operating system and application software up-to-date - Install software patches so that attackers can't take advantage of known problems or vulnerabilities.