There is a new ransomware strain somewhat amateurishly called "Locky", but this is professional grade malware. The major headache is that this flavor starts out with a Microsoft Word attachment which has malicious macros in it, making it hard to filter out.
The bad guys use social engineering twice to trick the user to first open the attachment, and then enable macros which causes:
- The macros download an executable
- The executable encrypts files on the machine
- It then encrypts unmapped network drives
- Changes all file names and deletes VSS snapshots
Here are more details, screen shots, links to resources and a novel way to do something about it at the KnowBe4 blog:
(This link is safe to click on, despite the redirects. If you do not feel comfortable clicking it, just copy and paste the URL in your browser).