University of Utah information security officials urged the staff, faculty and students on Friday to be on alert for ransomware.
It’s software that installs itself on a computer, encrypts its data and makes files inaccessible without an encryption key. Hackers basically hold the computer hostage until they receive payment of hundreds or thousands of dollars for the decryption key.
Dan Bowden, chief information security officer for the university and its medical system, says he’s “paid to be paranoid” about malware like this.
“Much as you would do if your tire was wheel-locked in the parking lot,” he says, “you pay a guy to show up with a key to unlock your wheel and let you take your car.”
Bowden says recent attacks on hospital computers elsewhere have put important functions at risk. But individuals can be victims too.
He advises: “Backing up your data, bookmark the sites you use routinely, and then within email, watch out for unsolicited email, and then watch out for attachments and weblinks in email as well.”
Bowden also recommends staying away from files with double extensions, like “pdf.exe.”