Skip to main content

Beware of new image files you didn’t download: They may launch ‘Locky’ ransomware

locky ransomware self downloading image files hacker  hacking symbol
www.elbpresse.de
If you see a new image or graphic file on your computer that you don’t recall downloading, do not open it. The Locky ransomware program has moved on from MS Office Word to Facebook and LinkedIn vulnerabilities, and is now putting files on your computer that can lock you out of your data, according to Ars Technica.

Earlier this year Locky arrived on computers via a “malicious macro” in a Word document. In the last week, however, Ars Technica quotes Israeli security company Check Point reporting a “massive spread of the Locky ransomware via social media, particularly in its Facebook-based campaign.”

Typically what happens is that when you click on an image thumbnail, rather than displaying the image in a separate window, the file automatically downloads. It would be natural for most people to then click on the downloaded image — and that’s what executes the Locky code and immediately locks up all your files and demands ransom.

Vulnerabilities in Facebook and LinkedIn have been exploited by the perpetrators of the Locky attack, according to Check Point. “The attackers have built a new capability to embed malicious code into an image file and successfully upload it to the social media website. The attackers exploit a misconfiguration on the social media infrastructure to deliberately force their victims to download the image file. This results in infection of the users’ device as soon as the end user clicks on the downloaded file.”

When Locky is activated on your computer the ransomware locks you out of your files. The only way to retrieve your data is by paying a ransom, hence the term ‘ransomware.’ Ars Technica reports the current ransom to unlock a user’s computer is about half a bitcoin, or $365.

Check Point stated it previously informed Facebook and LinkedIn of the vulnerability currently being used in the ransomware attack, but won’t make the details public until those social media and other major sites fix the security flaw.

The security firm’s recommendations to consumers are: “If you have clicked on an image and your browser starts downloading a file, do not open it. Any social media website should display the picture without downloading any file. Don’t open any image file with unusual extension (such as SVG, JS or HTA).” Note, however, that the file extension could also be JPG, PNG, or any other common form.

The bottom line on avoiding this particular means of an attack by Locky is, if you click on an image and it starts to download, whatever you do, do not open the image file on your computer.

Bruce Brown
Digital Trends Contributing Editor Bruce Brown is a member of the Smart Homes and Commerce teams. Bruce uses smart devices…
MacOS Sequoia release date: Here’s when your Mac will get the update
macOS 15 features.

During Apple's Worldwide Developers Conference (WWDC) 2024 keynote, we got our first look at the latest macOS version, macOS 15 -- otherwise known as Sequoia.

The update is bringing the exciting new customization features from iPadOS 18 and iOS 18, as well as iPhone mirroring, iPhone notifications, window tiling, Safari updates, and a new password app. Plus, a load of these features will be powered by the new Apple Intelligence.

Read more
This HP student laptop is on sale for over 50% off today
The HP Pavilion 15-inch laptop on a white background.

HP has some fantastic laptop deals for anyone looking to save big on a budget-friendly system. Right now, you can buy an HP Pavilion laptop for $400 instead of $900, so you’re saving a massive $500 off the usual price. If you need a new laptop but you don’t have much spare cash, this will delight you. Bear in mind that it won’t stick around at this price for long. Here’s what it has to offer at this super low price.

Why you should buy the HP Pavilion 15-inch laptop
HP is one of the best laptop brands around and perfect for anyone on a tight budget. With the HP Pavilion 15-inch laptop, you get great core specs for the price. That includes a 13th-generation Intel Core i5-1335U processor with 8GB of memory and 256GB of SSD storage. That’s basic stuff but it’s just fine for typing up documents, web browsing, or anything else basic.

Read more
The best 17-inch laptop deals from HP, LG, Razer, and more
An HP Omen 17 laptop on a desk.

If you're the type of person who prefers having a larger screen, then going for a 17-inch laptop probably makes a lot of sense. Unfortunately, there aren't a ton of 17-inch laptops on the market, and for the most part, you'll be looking among the ranks of the best gaming laptops to find yourself a solid option. That said, there are some budget-friendly ways to go, and you don't have to grab one of the best laptops with a high price tag to nab yourself a 17-inch laptop. Luckily, some of the best laptop brands out there make 17-inch laptops, so you're not having to rely on a generic brand.

To that end, we've gone out and found some of our favorite 17-inch laptop deals out there, including HP laptop deals, Dell laptop deals (and Dell XPS laptop deals), and gaming laptop deals.
HP 17.3-inch laptop — $360, was $550

Read more