Malware targets accountancy firms

Community Correspondent
Sift Media
Share this content

Accountants’ websites and emails may be targeted by a piece of ransomware that wipes information from their systems if a fee is not paid.

The ICPA discovered that a member had been hit by the Trojan, named Cryptolocker, and that all of his computer’s software and programmes had been completely wiped.

Anita Brown, ICPA senior consultant, issued a letter about the incident, warning other members to be vigilant of the virus.

The "nasty" piece of malware has been around since last year, but only in the last few months has increased in the intensity of its attacks - perhaps due in part to the fact that bitcoin, which it demands as a ransom, has increased in popularity and value.

According to Brown...

Please Login or Register to read the full article

The full article is available to registered members only. To read the rest of this article you’ll need to login or register. Registration is FREE and allows you to view all content, ask questions, comment and much more.


Please login or register to join the discussion.

02nd Dec 2013 19:04

Microsoft products

The Cryptolocker virus hits  Microsoft Access Excel and word documents - That includes databases in SAGE payroll dears.

Don't go cheap on virus proitection.


Thanks (1)
By Locutus
03rd Dec 2013 15:51

Spike in virus e-mails

I have noticed quite a spike in e-mails in the last 48 hours - all "from" Royal Mail and Mastercard and with a virus-laden .zip attachment.

This is no doubt to coincide with the fact that the start of December is the peak for ordering Christmas shopping online.  The scammers have moved on a lot from the old days of the poorly-worded e-mail "from" the deposed Oil Minister of an African country who wants to share his fortune with you if you give him your bank details.

Thanks (0)
03rd Dec 2013 21:12

Fed-ex Emails too

Or ones purporting " sending your rewards " have been used to deliver a virus calleed Tatanga  along Cryptolocker .

There is only one defence . have a clean back up available and restore back to it after cleaning all drives.



Thanks (0)
By chatman
05th Dec 2013 13:25

Cryptolocker: overwriting your backups.

What if your backup overwrites your encrypted files with the newly encrypted ones. What do you do then?

Thanks (0)
05th Dec 2013 15:10

I would suggest  going out

I would suggest  going out and replacing all your kit and starting again with a back up that was  taken before the virus hit.

Look for offsite backup

Thanks (0)
By chatman
05th Dec 2013 15:40

Cryptolocker encrypting your backed up files

glenbogle wrote:

Look for offsite backup

I was referring to offsite backup.

Thanks (0)
11th Jan 2014 11:19


My client was hit with this nasty malware. McAfee stopped it but not until after it had done a lot of damage. So even with having up-to-date protection is no guarantee. 

Thanks (0)