My video server got hit with URIDZU a few hours ago. I don’t understand how I got infected. The most recent files moved over were video file (mp4, mov). That happened in the last 24 hours. Prior to that there were no files moved to my server for 7-10 days.
I don’t use my server to surf the web or email. The only files that get executed are program files that I download to a desktop before sending them to my server. The last time any program was executed was at least 1-2 weeks ago. I am very careful to minimize activity that can infect my server with ransom or malware.
I don’t want this to happen again. Can anyone theorize how I got infected? I thought ransomeware can’t be embedded in video files.
Also, I assume URIDZU has no encryption weakness. So my options are to format my computer? Will a full format and reinstall remove the ransomeware?