The average ransom demand is up to almost $13,000, compared with $6,700 just a few months ago.
The sharp increase in ransom payments is linked to the emergence of more expensive and more hands-on forms of ransomware like Ryuk, Bitpaymer and Dharma.
While ransomware attacks of the past generally relied on spamming out large numbers of phishing emails in the hope of getting a few hits, now cyber criminal groups are taking a more focused approach with attacks.
They are now attacking computers directly across the internet. The new forms of ransomware rely on more direct attacks on computers. They are exploiting security holes in remote desktop protocols (RDPs) to gain access to systems and once in they are attempting to infect and encrypt as many computers as possible on a network. That is why it is so important to install updates on your system and not to use outdated operating systems that are no longer supported by manufacturers, see prior post below.
https://dforceatl.blogspot.com/2019/04/windows-updates-problems-and-new.html
Office 365 users are targets of phishing attempts attempting to steal their credentials. It is easy to copy the underlying source code of a website, Office 365 portal for example and then publish it to create a fake website that looks like the genuine site (you must pay attention to URL). The target will receive an email allegedly from Microsoft threatening to close the account unless action is taken. The link to the phony site will then ask for your email and password. If the info is supplied, the attacker will then take charge of your account, encrypting OneDrive, Sharepoint and using the compromised email to send phony financial documents and other attachments which will appear to come from a trusted source by the recipients. Be careful.
If you are a victim of ransomware, the attackers can command ransom payments of six figure sums – which attackers demand in cryptocurrencies like Bitcoin.
While the authorities generally don't recommend that victims of ransomware attacks pay the ransom demand – it funds criminal activity and there is no guarantee it will work anyway – in some cases, organizations feel as if they don't have a choice.
It was last month that I wrote about Jackson County, Georgia paying $400,000 to criminals that had infected it's systems with ransomware.
https://dforceatl.blogspot.com/2019/03/georgia-county-pays-400000-to-hackers.html
To read more about the threats, use the links below.
https://www.zdnet.com/article/ransomware-the-cost-of-rescuing-your-files-is-going-up-as-attackers-get-more-sophisticated/
https://www.zdnet.com/article/ransomware-an-executive-guide-to-one-of-the-biggest-menaces-on-the-web/
Subscribe to:
Post Comments (Atom)
Kaspersky Ban, Latest Security News
The latest Security News and Anti-Virus options in wake of US Kaspersky ban. With the impending 09/29/24 drop dead date for receiving update...
-
Facebook to let you know if your data was shared with Cambridge Analytica According to a news report by CNBC, starting today, Monday 04/09... -
Cyberattack cost MGM Resorts about $100 million, Las Vegas company says In today's digitally connected world, one must remain vigila... -
Daily I am presented with spam check requests and questions from people who wonder why spam exists and why it is increasing. It's simpl...
No comments:
Post a Comment