Today at 7:46 PM
I am contacting you regarding this result:
"OpenDNS has blocked 18.104.22.168 due to a security threat that was discovered by the Umbrella Labs.
If you think this shouldn't be blocked, please email us at firstname.lastname@example.org "
There is a situation developing on the internet, due to what is known as ransomware, and it uses a file encryption
type virus, known as CryptoLocker and it encrypts the victims hard drives and network drives, and then requests a
ransom be paid to decrypt those files.
Apparently this ip, was one of the servers, which was facilitating the some aspect of this virus.
Yes, stopping the site would be a good thing to prevent further infection, however for those who unfortunately need to
comply with this virus, they are NOT able to interact with it and therefore are unable to retrieve their files.
This issue is being heavily discussed at bleepingcomputer.com
and a support thread is active here:
For both the victims and other supporting infrastructure, this is a catch22.
We need to stop their services from spreading this threat and we need their services to undo the harm.
Can you please advise?
Please sign in to leave a comment.