Evaluation of latest ransomware group Volcano Demon supplies an in depth look into how and why calling victims ups the probabilities of ransomware cost.
Safety researchers at Halcyon have uncovered a brand new ransomware risk group that originally follows conventional strategies – harvesting admin credentials, information exfiltrated to a C2 server, logs cleared and information was encrypted utilizing LukaLocker.
Nevertheless, Volcano Demon assaults take a special route within the extortion part. The theft and encryption of the sufferer’s information aligns with conventional double extortion methods. However as a substitute of leaking to a web site on the darkish internet, this group as a substitute makes cellphone calls to “management and IT executives to extort and negotiate cost.”
In accordance with a Recorded Future article on the identical assault, it seems that the risk actors “name very often, virtually every day in some circumstances.”
What’s attention-grabbing right here is how the usage of cellphone calls may very well enhance the chance of cost. Consider how simple it’s for an organization to disregard a grievance e mail; why? As a result of there’s not particular person holding the recipient accountable. Similar could possibly be stated for Volcano Demon’s cellphone calls – slightly than e mail a negotiation (which could be ignored by sufferer group management), cellphone calls put the sufferer straight in contact with attackers, doubtlessly negotiating some type of phrases that lead to a cost to the attackers.
This has me considering of whether or not we’ll ultimately see a service supplied to ransomware risk teams to deal with the cybercriminal half of the negotiation for a ransom cost; we’ve seen the modularization of each different side of assaults, so why not “collections?”
All of the extra purpose to render these assaults ineffective by stopping them of their tracks. These counting on phishing because the preliminary entry technique could be thwarted by a layered e mail protection that features safety consciousness coaching to make sure customers take part within the group’s defenses towards malicious e mail and internet content material.
KnowBe4 empowers your workforce to make smarter safety choices daily. Over 65,000 organizations worldwide belief the KnowBe4 platform to strengthen their safety tradition and cut back human threat.