Virus Alert - "Urgent Announcement from Bank of Jamaica" Ransomware called Locky

Virus Alert - "Urgent Announcement from Bank of Jamaica" Ransomware called Locky

Would you share this Article with others?

The Government of Jamaica is advising the public to be aware of the malicious email message below with the subject: "Urgent Announcement from Bank of Jamaica." The email message has a malicious attachment that contains a Ransomware called "Locky" that will infect the recipients’ computers if they attempt to open the attachment. Therefore, recipients of the malicious email message should delete it and should never attempt to open the attachment it contains.

A Sample of the Malicious Email Message

Urgent Announcement from Bank Jamaica Virus Email
From: Bank of Jamaica mails@ jm.boj.com
Subject: Urgent Announcement from Bank Jamaica


Please find enclosed the New Transaction Guidelines set by the Bank of Jamaica for Individuals and Companies, effective from Tuesday, 1st March 2016.

Bank of Jamaica

One of the easiest ways to get a malware infection is simply by opening an email message or an attachment. One of such malware is Ransomware. Presently ransomware has been impacting various organizations in Jamaica.

What is Ransomware? - It is a type of malicious software designed to block access to a computer system until a sum of money is paid.

The present Ransomware making its round is Locky and it arrives via the following methods:

  • You receive an email containing an attached document (Troj/DocDl-BCF).
  • You receive an email with a link
  • The document advises you to enable macros "if the data encoding is incorrect."

What To DO - Best Practices

For optimum security when using email, please follow these best practices:

  • Think Before You Click: Delete suspicious emails without opening them, such as those from unknown users with attachments, or with embedded links;
  • Do not open attachments that end in an unrecognized or potentially harmful file format (Examples: .vbs, .exe,.com, .shs, .bat, .cmd,.inf, .sct, .vbe, and .vb);
  • Use antivirus software with an up to date signature file and the "Auto-Protect" feature enabled to ensure all files are automatically scanned;
  • Ensure your email application does not automatically download pictures when you open or preview email messages or RSS items;
  • Never forward emails that you think may be infected with malware; and
  • If you suspect that your computer is infected with malware, contact your Help Desk immediately for assistance.

Remember, hackers use intriguing email messages that seem to come from someone you know to encourage you to open infected attachments (an example of the email that is circulating is attached). Pay close attention to the sender which says Bank of Jamaica <mails@jm.boj.com>, which looks realistic, however it is not as BOJ's domain is actually <boj.org.jm.>

Note: Some of the names, addresses, email addresses, telephone numbers or other information in samples on this website may have been impersonated or spoofed.

Please share what you know or ask a question about this article by leaving a comment below. Check the comment section below for additional information, if there is any. Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com. And, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent. Also, to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts (OTA) by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews
There are no comments as yet, please leave one below or revisit.

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews.

Write Your Comment, Question, Answer, or Review
Write your comment, question, answer, or review in the box below to share what you know or to get answers. NB: We will use your IP address to display your approximate location to other users.
Your comment, question, answer, or review will be posted as an anonymous user because you are not signed in. Anonymous posts cannot be edited or deleted. Sign-in.

Virus Alert - "Urgent Announcement from Bank of Jamaica" Ransomware called Locky