Annoying New Ransomware Attack Uses Girl Resumes

2015-06-10-ISC-diary-image-00bThe SANS InfoSec Forums noted that since Monday May 25th a new version of CryptoWall 3.0 ransomware started, using both malicious spam and the Angler exploit kit (EK). The attack wave has increased significantly since Monday June 8th, and the use of the Angler EK appears to have started around the same time.  

Both campaigns are active as recently as Friday June 12th. SANS published a flow chart that shows the path to infection, and you can see it to the right. 

I would send an email to your friends and employees warning them that this campaign is going on, and that this attack uses both attachments and compromised websites to infect their computer. Do NOT open any attachments that look anything like, and be careful to not go to unknown websites. Make sure that all the applications on your computer are up to date. You can go to Secunia to download the free Secunia PSI which scans for old versions of software that need to be updated.

It's important to inoculate your users against this new infection tactic. There is a new template that was shared to the community templates, into a new category called ransomware. Go to Phishing -> Email Templates -> Community Templates -> Ransomware and choose "Resume".  Use that to send to all your users! 

If you are not a KnowBe4 customer yet, find out how affordable it is to train all employees and send them frequent simulated phishing attacks. 

Get A Quote Now




Subscribe To Our Blog

Ransomware Hostage Rescue Manual

Get the latest about social engineering

Subscribe to CyberheistNews