A wicked phishing fraud appears that clicks on a mail with a home address locks data in the PC and requests ransom


ByBanalities

In order to encrypt the data in the PC and make the data in the PC inaccessible by clicking the URL described in the e-mail in which the recipient's home address is written, in order to be able to access the data in the PC again, the cyber crime It is reported that a villainous phishing scam called that you have to pay the ransom demanded by the person.

Meet the new ransomware that knows where you live | ZDNet
http://www.zdnet.com/article/new-phishing-attack-knows-your-address-and-brings-ransomware/

A new type of sending thousands of eerie e-mails written with recipient's home addressPhishing scamsThe existence of it has become clear. It seems that the text of the mail looks like legitimate mail because it is written so cleverly that the receiving address and domain name are also written. This e-mail is a pretense to "request money for using a specific service", and the URL of "delayed request" is written along with the sentence.

Phishing mails actually sent are as follows.


When clicking this link and opening the word file, malware is installed and the file in the PC is encrypted. In addition to encrypting the files in the PC, this malware requests payment of ransom if it wants to be decryptedRansomwareis. The more the later the payment of the ransom is delayed, the more the demand amount will increase.


I am in charge of security related articles with ZDNetZach · WhittakerHe will receive the same phishing e-mail from April 2016. Mr. Zack's home address (from about 8 years ago) is stated in this mail, it seems that it seemed to be a reliable one. But,BBC NewsSaid that he had noticed that it was a phishing e-mail because he was reporting that "a mail of phishing fraud knowing his home address arrives".


When contacting a company called "Ludlow" in the UK who has charged a fee by e-mail, Mr. Zach says, "We are the same victims who received phishing scam mail." According to Ludlow, it seems that the inquiries for the same mail are rushing in April of 2016, but the mail is not sent from Ludlow. Also, like Ludlow, there are several companies that used the company name arbitrarily in phishing fraud e-mails, according to BBC News, one company said more than 150 inquiries were ringing. In addition, these companies commented, "Although it is unclear how a fraudster got user's address information, I reported to the police about this issue."

Rahul Kashyap, senior vice president at Security Affiliate's "Bromium", said that "We use classical social engineering techniques to gain trust from the target, the fraudster publicly We are using databases such as available home address information for fraud. "

The phantom scam is used in Ransomuware is a variant of what is called "Maktub Locker". The same RansomewareExquisite graphic designIs characterized as "beautiful and dangerous".


Yonathan Klijnsma, an information analyst at Fox-IT, a security company in the Netherlands, said, "This shows that malware does not necessarily require Internet connection as" important " It shows that the network detection system is not all-purpose. "

In 2015, FBI says, "A variant of a malware made it impossible to view a lot of data, resulting in losses of $ 18 million (about 1.9 billion yen)"TalkThere are several other hospitals locked the system to RansomwareEmergencyAs you may have fallen into, the damage by Ransomware has exploded in the past few years between private enterprises and the general public.

in Security, Posted by logu_ii