Is it possible an attacker can break into a server, escalate their privilege to root or admin, run the encryption tool on data directory then ask for ransom? Just a random thought.

On 5 Oct 2016 21:12, "Odhiambo Washington via skunkworks" <skunkworks@lists.my.co.ke> wrote:

Ransomware is NOT malware in the true sense of malware. Ransomware is more like you personally decide to run a program that encrypts your files, only this time it's not you :-)
AFAICT, no antivirus will ever detect ransomware. Again, ransomware requires the user to be gullible enough to run it. Sorry Kevin.

On 5 October 2016 at 19:19, alex watila via skunkworks <skunkworks@lists.my.co.ke> wrote:
anti malware did not prevent the attack?

On 5 Oct 2016 18:55, Kevin Ochieng via skunkworks <skunkworks@lists.my.co.ke> wrote:
Hi Pals,

woke up today moring only to realise that all my folders in the server were affected and replaced by - SJAWv2LVfy.b674
- README HTML Application

Anyone gotten this attack before?

Kevin Ochieng'

Skype : kevinjanabi
Phone : +254 733229214
+254727217330

_______________________________________________
skunkworks mailing list
skunkworks@lists.my.co.ke
------------
List info, subscribe/unsubscribe
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
------------

Skunkworks Rules
http://my.co.ke/phpbb/viewtopic.php?f=24&t=94
------------
Other services @ http://my.co.ke

--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft."

_______________________________________________
skunkworks mailing list
skunkworks@lists.my.co.ke
------------
List info, subscribe/unsubscribe
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
------------

Skunkworks Rules
http://my.co.ke/phpbb/viewtopic.php?f=24&t=94
------------
Other services @ http://my.co.ke