discussion encryption

Discussion Question: Contrast file encryption and volume encryption

· The discussion assignment requires an Original Posting (main post) from you of 2-3 paragraphs answering the module's question.

· In addition to your main post, you must post three responses to other posts made by your classmates. These can be replies to other main posts or responding to student replies on your thread.

PLEASE RESPOND TO THE PEER POSTS BELOW

PEER 1

Ransomware works via finding its way onto a host computer, it's a kind of malware so it's like when your computer gets sick and slows it down but instead it locks out all your stuff. Usually what they ask for in return for control of your files is money, but sometimes they will ask for other important things. The FBI doesn't condone giving the attackers what they want because it's more than likely that they'll just take the money and keep your stuff locked, they'll possibly even ask for more. That's why they stress how important it is that if this happens to you then you should go to them for help. If your in a company then you ask your IT department.

The software goes through this encryption phase where it starts encrypting all the files on your computer until it's all locked and you can tell if something is encrypted usually because the file will have an extension added onto it. Such as .aaa , .micro , .encrypted , .ttt , .xyz , .zzz , .locky , .crypt , .cryptolocker , .vault , or .petya. These extensions are an indication that a file has been partially or fully encrypted. What's recommended is that as soon as you find out that your files are being locked, you disconnect from all wireless connections and other computing devices, because this virus can and will spread to cause even more havoc. It can spread across your network and ruin other computers on said network.

Ransomware is normally delivered by drive-by downloads or email phishing. Drive-by downloads are a fancy way of saying a download that you pick up while browsing a site and it runs in the background. Email phishing is one of the reasons you don't click on links from emails from anyone, even from trusted sources. If you know who the email is coming from your best bet is to get with them personally to make sure that it's a valid email and that it's not an attacker. If a ransom is paid though, the attack may give you an encryption key to unlock your files, if your lucky enough. Why take a chance though, you should always take the smart path and make sure that you contact the proper authorities if you come across anything like this in your time. Also make sure to back up your computer files, it may sound obvious enough to want to put it off and procrastinate this, but the longer you wait the more at risk you are.

PEER 2

This week, I have decided to write my discussion post about ransomware and explain how it works. I've always found it one of the more interesting topics in cybersecurity. The idea behind ransomware is quite simple - the attacker finds a way to run code that encrypts some, or all, of the harddrive, and demanding some form of compensation to decrypt it. However, it's important to not take the attacker's word, as they have no incentive to decrypt your files after payment! This is why it's always better to take the computer to a specialist, and never pay up. They make their money preying off people who don't know any better.

The best way to avoid ransomware is preventative measures. Once the files are encrypted, there is no guarentee you will get your files back if they are not backed up, as many times the only solution is a factory reset. Do not download any files received via email unless you know the source, and be cautious while downloading files online. Backups are very important, for peace of mine and safety. That way, if your computer is infected there isn't much to worry about.

PEER 3

How ransomnware works?

Ransomware is a type of malicious software, or malware, that prevents you from accessing your computer files, systems, or networks and demands you pay a ransom for their return. Ransomware attacks can cause costly disruptions to operations and the loss of critical information and data.

You can unknowingly download ransomware onto a computer by opening an email attachment, clicking an ad, following a link, or even visiting a website that's embedded with malware.

Once the code is loaded on a computer, it will lock access to the computer itself or data and files stored there. “More menacing versions can encrypt files and folders on local drives, attached drives, and even networked computers.” (“Ransomware — FBI - Federal Bureau of Investigation”)

Most of the time, you don’t know your computer has been infected. You usually discover it when you can no longer access your data, or you see computer messages letting you know about the attack and demanding ransom payments. (“Ransomware — FBI - Federal Bureau of Investigation”)