RANSOMWARE – STUPID IDEA NUMBER 1
Ransomware scans for default file types. It then encrypts selected filetypes, whilst leaving others intact.
As ransomware now encrypts connected USB and Dropbox (cloud solutions), it would be interesting to change the default filetypes on cloud based backups in order to protect them from identification.
The hypothesis is that by changing the filetype to a random ending, we could trick ransomware into ignoring the file. This way critical backups would be left intact.
Create empty text files in a test folder.
Notepad default endings .txt = changed to .123
PDF default endings .pdf = changed to .456
Word default endings .docx = changed to .789
Rename *.txt to *.123 files
Bulk renaming operations using third party software.
Files stored as .123 filetypes, are ignored.
Backups would therefore be safe from ransomware encryption – if stored with a unique filetype.
Step 1 = match .123
Step 2 = Extension fixed = .txt
Step 3 = Select the file to convert
Step 4 = Rename Button (Bottom Right hand side)
Clearly this is an off the cuff idea. The next question is whether the central nugget of the idea would work. Maybe I’ll sleep on the idea, and have part 2 for you soon.