Locky and FakeGlobe Ransomware in dual spam campaigns
Cyber criminals started a spam campaigns that delivers either Locky or FakeGlobe Ransomware where an individual can be victimized twice with same attacks.
The Cyberattack contained a trick of malicious actors which delivers the initial spam email. The victim could be hit with both varieties of Ransomware with a single mistake.
" The campaign is designed in such a way that a victim clicking on a malicious link from the spam email might deliver Locky one hour, and then FakeGlobe the next. This increases the likelihood of secondary infections due to the rotation," Ed Cabrera, Trend Micro' s chief cybersecurity officer for Trend Micro
The attacks started around September 4 and hit almost 70 countries. The worse hit being Japan, US and china which gathered almost half the mail spams.
“ The cybercriminals behind the campaign designed it so that clicking on a link from the spam email might deliver Locky one hour, and then FakeGlobe the next. This makes re-infection a distinct possibility, as victims infected with one Ransomware are still vulnerable to the next one in the rotation,” the researchers wrote.
The spam mail came with an embedded link and an attached document masquerading as payment invoice. The link and the document led to two different URL to download.
This could means that Ransomware as a service (RaaS) are equally growing in numbers and delivering multiple Ransomwares during a single shot to increase the impact of the attacks.
Comments ( 0 )
No comments available