If you get an email claiming to be from Microsoft about a Windows update, don't open it. Security researchers from Trustwave's SpiderLabs have discovered a new malicious campaign which spoofs urgent update emails from Microsoft to infect user's systems with the Cyborg ransomware. Learn more in this article.
Ransomware Mid-Year Update: It’s Worse Than Ever
Ransomware is alive and well.
SonicWall recently released a mid-year update to their 2018 Cyber Threat Report. In it, they cover increases in malware attacks, encrypted attacks, and cryptojacking attacks. But one of the most prominent attacks remains a constant threat – ransomware.
It feels like ransomware is old news – with so many stories in the news, and vendors claiming to have a handle on it, it’s natural to feel like it’s no longer a really-real threat. But the truth is ransomware is alive and kicking.
The SonicWall report brings to light the reality of just how serious you need to take the threat of ransomware:
- A 229% increase in ransomware attacks year-to-date over 2017
- 12 new variants of ransomware (including the new king called GandCrab)
- 181.5 MILLION attacks this year alone (that’s nearly 100K attacks daily!)
The new criminal king of the hill GandCrab Ransomware is now rapidly adapting in real-time to security solutions offered by security vendors. GandCrab is a strain which targets mainly English-speaking countries. GandCrab is distributed via the RIG and GrandSoft exploit kits, as well as phishing attacks. The malware is operated in an affiliates program, with those joining the program paying 30%-40% of the ransom revenues to the GandCrab author. In return, affiliates get a full-featured web panel and technical support.
These days, cybercriminals are savvy operators looking for ways to use their “products and services” in ways that help them generate the greatest amount of revenue. The numbers above demonstrate the business of ransomware is stepping on the proverbial gas, seeing a bright future for their upcoming revenue targets.
This news highlights the importance of ensuring your users are as vigilant as ever. Maintaining a constantly elevated culture of security is necessary to reduce the attack surface within your organization. This is accomplished through frequent and effective new-school security awareness training used to both educate the user on methods and techniques used by bad guys, but also about security-minded browsing and email habits.