Your Next Ransomware Attack May Require Two Payments!

Ransomware-2In a case of adding insult to injury, a new strain of ransomware is looking for one payment to decrypt, and a second payment to not publish stolen files.

We first saw the Maze ransomware late last year first threaten the release of victim data should the ransom not be paid. In recent months, it seems nearly every ransomware strain has jumped on board and are utilizing this new money-making practice.

But a new twist has surfaced with Ako ransomware. In addition to holding data for ransom and stealing data, threatening to publish it if the ransom isn’t paid, Ako also has demanded a second ransom to not release the stolen data. This tactic appears to only apply to larger victim companies and is also dependent upon the kind of data stolen.

While we’ve seen the average ransom doubling this year, this second demand for a ransom tends to run in the $100K to $2M range (remember, the organizations seeing these types of attacks are the ones the the Ako folks believe have deep pockets). This second ransom almost assures the cybercriminal some form of payment, one way or another.

Ransomware-turned-data breach is the name of the game moving forward.

The only good answer here is to strengthen every weak point in your organization’s security. Security solutions will help, but the user themselves needs to be equally more security-minded. Enrolling them in continual Security Awareness Training will lower the risk of falling for a phishing attack or social engineering scam that results in the installation of ransomware.

Ransomware Has Gone Nuclear, How Can You Avoid Becoming The Next Victim?

There is a reason more than half of today’s ransomware victims end up paying the ransom. Cybercriminals have become thoughtful; taking time to maximize your organization’s potential damage and their payoff.

After achieving root access, the bad guys explore your network reading email, finding data troves and once they know you, they craft a plan to cause the most panic, pain, and operational disruption. Ransomware has gone nuclear.

GoneNuclear-WEBINARJoin us for this webinar where, Roger Grimes, KnowBe4’s Data-Driven Defense Evangelist, dives into:

  • Why data backups (even offline backups) won’t save you
  • Evolved threats from data-theft, credential leaks, and corporate impersonation
  • Why ransomware isn’t your real problem
  • How your end users can become your best, last line of defense

Watch Now

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

Subscribe To Our Blog

Ransomware Hostage Rescue Manual

Get the latest about social engineering

Subscribe to CyberheistNews