A new version of the RAA ransomware was found recently by security researchers at Kaspersky Lab. This one, written completely in Jscript, seems to be targeting business users exclusively, the researchers claim.

It comes as they all do: through an email with the malicious attachment. This one, however, comes in a password-protected zip file. This method does two things:

Continue reading →

Ransomware is a powerful cyberthreat that can bring any organization to its knees. It’s a popular tactic among hackers looking for financial gain, or to take down an organization for political or moral reasons -- and it works. In 2015, the Internet Crime Complaint Center (IC3) received 2,453 complaints identified as ransomware, resulting in more than $1.6 million in company losses.

While some think ransomware is only a threat to large enterprises or government organizations, recent activity shows that it doesn’t discriminate based on the size or significance of an organization. According to a warning from the FBI earlier this year: "Hospitals, school districts, state and local governments, law enforcement agencies, small businesses, large businesses—these are just some of the entities impacted recently by ransomware, an insidious type of malware that encrypts, or locks, valuable digital files and demands a ransom to release them".

Continue reading →

Imagine how you would feel if everything on your entire PC hard drive was encrypted, and somebody was demanding a large sum of money from you to make it accessible? This scenario is exactly what happens to thousands of people every day when they are infected with ransomware, and it is essentially a digital hold up. Though your life is not in danger, you face the imminent threat of catastrophic consequences from the loss of irreplaceable data.

Much of the attention in the industry is focused on the damage caused by ransomware. The common belief is that most ransomware infections are caused by human carelessness, so there is no guarantee that you will never get infected. So the focus really needs to be about how to detect and respond to a ransomware infection.

Continue reading →

Ransomware has affected over 13.1 million US citizens. That’s 4 percent of the entire US population. Half of those people will pay a steep ransom of up to $500 to retrieve their information.

Do not let this be you. Arm yourself against the epidemic and read on to find out how keep yourself from being a part of the statistic.

Continue reading →

There are a number of high profile ransomware programs doing the rounds at the moment and we know that it can generate lucrative returns for the people behind it.

But just as in the legitimate commercial world, the as-a-service model is starting to gain traction with attackers. Security vendor Check Point is releasing details of Cerber, which it believes is the world's biggest ransomware-as-a-service scheme.

Continue reading →

​Application control, such as greylisting, paired with selective local admin rights management, is 100 percent effective against ransomware and unwanted file encryption.

This is according to CyberArk Labs’ new report, based on the analysis of more than 23,000 real-world samples from common ransomware families, such as Cryptolocker, Petya and Locky. More than 30 different malware families were tested, and the results posted in the report entitled Analyzing Ransomware and Potential Mitigation Strategies.

Continue reading →

Ransomware is no longer a quick and easy way for cyber-criminals to get their hands on some money. It is now considered a "permanent fixture on the threat landscape" -- at least according to PhishMe’s Q2 2016 Malware Review.

The security experts’ new report says ransomware now accounts for 50 percent of all malware configurations, meaning it is now a mature business model. It also says it shows no outward signs of diminishing.

Continue reading →

Ransomware is one of the biggest security threats that organizations face. New research from malware prevention and removal specialist Malwarebytes across the US, Canada, UK and Germany and finds that nearly 40 percent of businesses have experienced a ransomware attack in the last year.

The study conducted by Osterman Research also reveals that of those that have fallen victim more than a third lost revenue and 20 percent had to stop business completely.

Continue reading →

Here is a scary prospect. Ransomware that hides in a corporate network, analyzing it and multiplying itself until it is found on every machine in an organization. Only after it has contaminated every machine in a network will it activate, in a coordinated attack, bringing an entire company’s business to a screeching halt, until a large sum of money is paid to the attacker.

Such an idea is not yet reality, but it’s not far from it, either. Cisco’s Midyear Cybersecurity Report says it is only a matter before we hit this milestone, mostly because ransomware has become the most lucrative malware type in history.

Continue reading →

To help curb the global rise of ransomware, the European police agency Europol has decided to launch a new initiative and website to put victims of an attack in touch with the police.

The initiative will be called "No More Ransom" and will be coordinated by Europol, but will also be receiving help from the Dutch national police, Intel Security and Kaspersky Lab.

Continue reading →

According to the findings of a new report, companies in the healthcare industry have the most ransomware present, accounting for 88 percent of all detections in the second quarter of this year.

The report from managed security provider Solutionary shows other affected industries include education (six percent) and finance (four percent), with eight other industries combining for less than two percent of detections.

Continue reading →

Ransomware is one of the biggest threats that companies face and it can have severe consequences if important files are corrupted or lost.

Endpoint security specialist SentinelOne is underlining its confidence in its product by launching a threat protection guarantee to provide customers with financial protection in the event of ransomware attacks on their networks.

Continue reading →

Ransomware is one of the biggest cyber threats businesses and individuals face and tackling it requires a customized approach.

Israel-based illusive networks is launching a new Advanced Ransomware Guard product that uses deception techniques to spot threats across the entire network, endpoints and servers and neutralize ransomware activity at the source hosts.

Continue reading →

Remember that recent article I wrote about how people value their online data much more than what extortionists are asking for when they hit them with ransomware?

Well, extortionists seem to have caught on. Newest research paper from Symantec tells us that the average ransom demand is now £525, up from £223 at the end of last year.

Continue reading →

Ransomware is one of the most feared security threats today and it is fast becoming one of the most profitable areas of cybercrime for attackers. It allows criminals to monetize their cybercrime efforts quicker than previous tactics allowed. Historically, they would have to steal their target’s data, and then find an avenue to resell that data to make it profitable. With ransomware, criminals are simply stealing a person’s data and selling it back to them for a price.

The victim already owned the data so they will definitely want it back. This therefore means the cybercriminal does not have a hard sell ahead of him. In addition to this, with the rise of anonymous currency, such as Bitcoin, there is even less of a chance of cybercriminals getting caught. Attackers can make hundreds to thousands of dollars per infection and get paid immediately, instead of going through other risky steps to make a profit.

Continue reading →