Yet another ransomware strike focusing on Amazon customers was discovered last week utilizing a fake sender address. Funny enough, the attack has started just when the new study indicates that the majority of computer users are unaware of ransomware threats and how to handle them.
Security researches inform of phishing email messages which have been delivered to customers presumably originating from Amazon official website and the sender email looking like email@example.com.
Supposedly, you will not find any single word in the body of the message, just the subject line which reads: "Your Amazon.com order has dispatched." The elements that cuase the problems are the actually the attachments, that look like MS Word files.
At the time the files were examined, it was discovered there was no content inside, just macros. Email recipients are triggered to allow the the material inside the attachment and so the macro codes are executed.
In particular, the malicious payload happens to be the Locky ransomware, which targets and locks all types of user documents. The original data files are wiped and swapped over by the encrypted documents renamed and the .locky extension added. New encrypted files are all stored in the same folders just like the original documents. Needless to say, people are later requested to pay out the ransom to obtain their files back and recovered.
The new report from Kaspersky Lab, shows that 43% of computer users have no idea what ransomware is, in spite of its present-day excessive distribution. A comparable group of users (44%) stated they didn't realize what information or data may be damaged during a ransomware assault.
Furthermore, it's not a strong concern for tech-savvy population born after 2000. Only 13% of Millennials stated they were concerned about ransomware plague on the whole.
Additionally, a lot of respondents do not understand how to act during a ransom attack. The study discovered that 16% of North Americans believe unplugging the PC or turning off the smart phone might put an end to ransomware. And a tiny quantity actually hoping negotiating with the hacker is a good approach to eliminate the problem.