Do not open email attachments, as they are one of the most common causes of innocent computer users getting infected with malicious malware. Email attachments are "the kiss of death." Ask the sender to place the attachment in Dropbox, etc. or other safer alternatives. Furthermore, Mac and Windows 10 users can open PDF files by themselves, so no need to download and install additional software like Adobe Reader. There are too many vulnerabilities these days regarding email attachments and outdated Adobe software.
Bonnie got an invoice from her travel agent via email, which she was expecting, and now she's having issues. Leo says that's not wise to do because she should never open attachments. But she had to update her PDF reader, and that's when the problem started. She downloaded a suspect version of Reader.
Hackers somehow got ahold of a malware exploit that was developed by the NSA and used it to attack the city of Baltimore. The malware, a ransomeware exploit known as Eternal Blue, was taken home by an NSA contractor, and Leo says that Kaspersky antivirus quarantined the malware and then sent it to the home office in Russia.
Katie got bit by malware called Your Transit Info Now. How can she get rid of it? Should she use Malware Bytes? Leo says you don't need to use Malware Bytes. It's a safe and powerful utility, but it's easy to get a faked version of it, and sometimes it can cause even more problems if you don't know how to use it.
Murray's home owner's insurance is now covering cyber-related incidents, including ransomware at up to $250k. What does Leo think? Leo says that's interesting because many insurance companies have declined to cover it because it's considered an "act of war" as part of a nation state's cyber warfare campaign. So Murray would have to read the policy very carefully to be sure there isn't an act of war clause that they can use to get out of paying any losses. Leo says that LifeLock will cover him up to $1 million with their backup service.
The Weather Channel went down this week for about 90 minutes due to a phishing attack and ransomware. Leo says that it's impressive that the Weather Channel came back up so quickly, but this is going to keep happening as long as people click on attachments.
Caller keeps getting popups when he's watching YouTube on his Google Pixel C Tablet. It just keeps minimizing his videos and he's inundated with popups. It also happens on his Motorola Moto G6. Leo says that he's likely got some apps from the Google Play store that have malicious behaviour programmed into it. Just use apps you want or need by well-known developers. It's likely an app that he installed on both devices. Leo is guessing it's probably ads trying to play from an app, but sometimes even removing the app won't work. He may need to do a complete reset on his devices.
Robert got bit by a phishing scam about being a workshop presenter. He clicked on a link to download an attachment and nothing happened. He realized what he had done and disconnected his desktop. Now he thinks he needs to reinstall? Leo says Nuke from orbit. Do not install from in-place. He should want to back up data, wipe the hard drive, and then reinstall Windows from a known, good source. But he should make sure to know if he actually has malware. If he has a WInMail.dat file attachment, that's from Microsoft and older Outlooks use it.
Leo says that while 2018 was the year Ransomware, 2019 is even worse. Arizona Beverages got hit by ransomware last week. The attack shut down sales operations for days, scuttled their networks, and servers. The network was hacked and encrypted, targeted by hackers with a ransom note posted to their website. Leo says that Arizona struggled with trying to rebuild their operations for five days. Most of their servers hadn't been given security patches in years and their backups didn't work.
Steve's printer is suddenly printing out ads. What the heck? Leo says there's a good chance he got nailed by either a browser hijack, or malware that has replaced his printer driver. He recommends using Malware Bytes, by only get it from the original creator. The chatroom says that there is a printer exploitation tool kit out there on the web. It could be that there's malware in the HP firmware as well.