Security Awareness Training Blog

Ransomware Blog

Keeping you updated on the latest ransomware attack vectors, strains, decryptors, families and trends to help you avoid becoming infected.

This Ransomware Targets HR Departments With Fake Job Applications

I missed this one a few months ago, but it's a great example how focused the bad guys are getting with their attacks, and you need to watch out for this social engineering attack vector ...
Continue Reading

Windows 10 Stops Ransomware Cold... Or Does It?

OK, finally there is some good news in the fight against ransomware!
Continue Reading

Have We Reached "Peak Ransomware"?

There was an article with the title: "Don’t panic: We’ve reached ‘peak ransomware’" in a publication called The Memo. They decided to ask an expert: Rik Ferguson, VP of security research ...
Continue Reading

Scam Of The Week: Tech Support Exploits WannaCry Ransomware Fears

We all know about the infamous WannaCry ransomworm which caused a worldwide 1 billion dollars in damage, targeting mainly un-patched Windows 7 machines. As expected, the bad guys are now ...
Continue Reading

Symantec: "Email Becomes the Weapon of Choice"

Symantec's 2017 Internet Security Threat Report (ISTR) details how simple tactics and innovative cyber criminals led to unprecedented outcomes in global threat activity. This report ...
Continue Reading

[Heads-Up] Cyber Insurance Does Not Pay Out For Human Error

The WanaCry ransomworm has caused insurance companies really to take notice. Customers have started to file damage claims, it is a bit early however to see the insurance industry's full ...
Continue Reading

Exclusive: North Korea's Unit 180, the cyber warfare cell that worries the West

Ju-min Park and James Pearson from Reuters wrote a remarkable piece that you need to know about. They wrote: "North Korea's main spy agency has a special cell called Unit 180 that is ...
Continue Reading

WanaCry Ransomware Was Not The First To Use NSA's ETERNALBLUE

April 14th this year, The Shadow Brokers released a stolen zoo of NSA hacking tools. One of these was ETERNALBLUE, a Windows exploit using an outdated Microsoft network communications ...
Continue Reading

Shadow Brokers Offer New SaaS 0-Day Threat Subscription Model

The mysterious Shadow Brokers – the hackers who leaked the NSA SMB zero-day exploit that powered WanaCry into the world's worst ransomworm – are back, and could cause even more damage. In ...
Continue Reading

Are The North Koreans Behind WanaCry Ransomware?

A North Korean hacking group is suspected to be behind WanaCry. Symantec and Kaspersky malware labs are investigating technical evidence that possibly suggests the North’s involvement, ...
Continue Reading

Telefonica Victim Of $600,000 Bitcoin Ransomware Attack

Spanish telecoms giant Telefonica was confronted with 85 percent of their systems shut down after ransomware criminals infiltrated its systems demanding $550,000 in Bitcoin. Telefonica is ...
Continue Reading

Ransomware Scum Decide What You Have To Pay By Reading The Economist

Russian organized cybercrime now has a surprising method of determining how much to ask for – the Big Mac index from The Economist. Security firm Recorded Future blogged that in March, a ...
Continue Reading

Ransomware Causes 90-day Downtime And 700K Damages For Law Firm

PROVIDENCE, R.I. — Cybercriminals held a Providence law firm hostage for months by encrypting its files and demanding $25,000 in ransom paid in Bitcoin to restore access, according to a ...
Continue Reading

America Ponies Up: Ransomware Payments Rise To $1,077 Per Infection

America was the victim of 34 percent of global ransomware infections in 2016. The "why" is clear; a whopping 64 percent of Americans are willing to pay to get their files back, as opposed ...
Continue Reading

100+ Free Ransomware Decryption Tools

The threat of ransomware has never been more real. In fact, 2016 was a record year. Here are some scary statistics from the past year put together by the folks at Barkly: Nearly 50 ...
Continue Reading

Newark City Hall Computers Infected With Ransomware

NEWARK, N.J. (CBSNewYork) — . The City of Newark’s computer system has been disabled by hackers demanding thousands in ransom money, according to a published report. Hackers are demanding ...
Continue Reading

And Just When You Thought Locky Ransomware Had Disappeared...

Locky ransomware reappeared with a vengeance Friday, this time not using Office documents combined with social engineering to have the user enable macros, but with a PDF that has a Word ...
Continue Reading

Why Cerber Is The New King Of Ransomware

During 2016, ransomware exploded. It clearly became the biggest menace on the net, using phishing as it's No.1 infection vector. Hundreds of ransomware strains competed for market ...
Continue Reading

New Cerber Ransomware Starts Evading Machine Learning

A new version of the Cerber ransomware family has adopted new techniques to make itself harder to detect by endpoint security software that uses machine learning for detection. It is now ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews