[Samba] Ransomware?

Reindl Harald h.reindl at thelounge.net
Mon May 16 10:38:08 UTC 2016

Am 16.05.2016 um 07:32 schrieb ToddAndMargo:
> May I surmise that all the encrypted file now have
> an extra extension of ".crypt"?  So it is easy to
> see who got clobbered.

how do you come to that conclusion and even if some malware acts that 
way what makes you sure you can rely on that? IMHO it would only be so 
when the developer of the ransomware is a fool!

why should he give you something to make a "locate .crypt" on the 
fileserver and backups easy?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.samba.org/pipermail/samba/attachments/20160516/f100dc48/signature.sig>

More information about the samba mailing list