Notice of Ransomware Infections at York

Please be advised that several infections of a type of ransomware/malware known as “Odin” have been detected on York workstations today. Ransomware infects computers like a virus and then encrypts all files on the local PC and any network shares it finds, making the information inaccessible, offering a decryption key for a ransom.

The main method of infection is via email attachments containing the code that installs the virus, which is then run when the user clicks on the attachment.

How to protect against ransomware

York has deployed technology and systems to help filter malware and related cyber-attacks, including removal/renaming of dangerous attachment types, however protecting against ransomware requires vigilance from the University community also.

Important ways you can help including the following:
-    Do NOT click links or open attachments in unsolicited email from people or groups you don’t recognize
-    Keep your anti-virus software up to date and enabled; York provides Trend Micro AV to all staff, faculty and students at the University
-    Keep your computer up to date, including key software such as your web browser, Adobe Reader, Adobe Flash, Microsoft Silverlight or Java
-    Use York network shared drives, or similar that also has regular backups, to store important information, and ensure such information is NOT stored only on your local computer
-    If you or your department maintain servers, ensure they are up to date from an operating system AND application layer perspective

If you suspect your computer is infected or being attacked, shut down/power off your computer immediately (to stop encryption of files) and contact your local IT support or the UIT Service Desk.

Please direct any questions or concerns to UIT Client Services
email: [log in to unmask] or visit http://ithelp.yorku.ca

UIT Announce