01553 692212

REMOTE SUPPORT
01553 692212

New Ransomware Alert

Posted March 21, 2022

Alert: A clever new type of ransomware attack

It seems like we’re talking about cyber crime all the time. And now there’s another new scam you need to be aware of.

Cyber criminals are always changing. They’re forever coming up with new ways to get into your devices and networks to access your extremely valuable data. (its valuable to you)

Fortunately, the defence tools continue to get stronger and stronger to help keep you protected. Some email systems are now especially good at identifying malicious messages and threats.

New RansomwareBut if your website has a contact form – and most do – your facing a new threat. That’s because cyber criminals are using web forms to spread malware.

They pose as a potential new customer and ask you to provide them with a quote for your goods or services.

Once you hit reply to their request, they’ll pop over a special kind of file – known as an ISO file – which they say is relevant to your conversation.

Crucially, this file won’t be attached to the email. They’ll send it via a file-sharing service, such as WeTransfer. This helps to avoid your email provider’s protections such as an antispam

Think about the psychology of what’s happening here. Whoever in your business is managing this conversation thinks they’re talking to a prospective new customer, and is much more likely to open the files without thinking.

The fact the conversation started with a contact form lowers their natural scepticism. They just want the sale, and its a human that has filled in the form

When the file is opened, it will give the criminals remote access to your device. And that can allow them to your entire business. They can then launch a malware or ransomware attack across your network, or to your clients

This is something you want to avoid at all costs. It’s where your, or your clients, data is encrypted so it’s useless. And you have to pay a large ransom fee to get it back… with no guarantees the payment will work, or they wont come back.

Experts think this form of contact form attack was first tested on large businesses in December 2021. And believe it’s now becoming more popular.

It’s important that you and your team check requests sent via your website are genuine. And never, ever open any files emailed over unless you trust the source 100%.

If we can help keep your business protected or train your team on the big threats to be aware of, please contact us.

 

< Back to the IT Blog