We have received a number of reports from customers affected by the international “Locky” virus. The virus affects impacted computers by encrypting all files on the machine and demanding a ransom paid via bitcoin.
The virus is spread via a legitimate-looking email requesting payment of an invoice. Included in the email is a Microsoft Word attachment that uses a “macro” to encrypt files on the infected computer. All shared network drives can also be affected. Please be extra vigilant when opening attachments from an untrusted source.
We suggest taking the following preventative steps:
- If you receive an email from an untrusted source with a Microsoft Word document attached, DO NOT open the document.
- If you happen to open a suspicious Word document that requests permission to run a macro, DO NOT enable macros.
The Locky virus is also taking other forms: it can be spread via email attachments of any file type. To learn more about the Locky virus, read the article “New ‘Locky’ Ransomware Virus Spreading At Alarming Rate: Can The Malware Be Removed And Files Decrypted?” by Cammy Harbison via iDigitalTimes.
If you are a Constellation customer and have experienced the Locky virus at your company, please contact Customer Care immediately at (800) 411-2020.
Thank you,
The Constellation Team