Ransomware is now one of the biggest software security threats out there. Its meteoric rise as the cybercriminals' malware of choice was so rapid, the number of ransomware victims increasing 250 percent in 2017, following a shocking 550 percent increase in 2016. Which is why a good backup strategy is key to protecting your business and personal Data.
One thing about ransomware that's so appealing to cybercriminals, aside from its profitability, is its adaptability. It's constantly evolving, as cybercriminals change their code to suit their needs and to elude security software.
We typically think that ransomware only attacks local computer files like your documents, photos, and email archives. Cloud email services should be immune, right? Think again! This newly developed ransomware strain might change everything you know about this costly threat.
As soon as the victim clicks the link and accepts the "service" by logging into his or her cloud email account and granting the fake app the permissions it needs, it will then encrypt all your online emails and attachments in real-time! Quite scary, indeed.
As you can see, ransomware is constantly evolving and cybercriminals can find new ways to be a step ahead and attack even your online email accounts.
Since the "ransomcloud" demo shows that this strain can be spread via phishing scams, here are basic tips to protect yourself against such attacks:
Be cautious with links - If you get an email or notification that you find suspicious, don't click on its links. It's better to type the website's address directly into a browser. Before you ever click on a link, hover over it with your mouse to see where it is going to take you. If the destination isn't what the link claims, do not click on it.
Beware of granting permissions - Cybercriminals always abuse our trust in apps. They will always try their best to trick you into granting them access via deception and social engineering tricks. Always review what permissions an app is asking for and always scrutinize
Watch for typos - Phishing scams are infamous for having typos. If you receive an email or notification from a reputable company, it should not contain typos. Typically, there are signs that give away the fact that an email is fake. Can you spot one. Would you like to test your business? We can provide an anonymos test to see how many of your employees fall victim. Contact us through our form or submit a request through our ticketing portal for current 7th Di Customers
Use multi-level authentication - When available, you should be using multi-level authentication. This is when you have at least two forms of verification, such as a password and a security question before you log into any sensitive accounts.