Problem is, the prompt doesn't appear until the encryption has ended, the key ha... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		devcpp on Oct 18, 2013 \| parent \| context \| favorite \| on: You’re infected—if you want to see your data again... Problem is, the prompt doesn't appear until the encryption has ended, the key has been sent to the servers (it's kind of complicated, it apparently tries to find servers on its own, I wonder if it can be fooled) and that key has been locally destroyed. So, by the time the user is notified that there is malware on their PC, it's too late. People who know to detect viruses while they're running don't run attachments in the first place.

Wicher on Oct 18, 2013 [–]

According to the KernelMode thread¹ the keypair is generated on the server. The public key is retrieved from it, but its private counterpart will never be on your machine. No key is sent to the server.

¹http://www.kernelmode.info/forum/viewtopic.php?f=16&t=2945

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact