InfoSecBulletin Cybersecurity for mankind
Cybersecurity expert VPN Overview reveals the ways in which ransomware can infect your computer and how to avoid it.
1. Phishing and email impersonations
B1ack’s Stash Releases 1 Million Credit Cards on a Deep Web Forum
Cisco Confirms
Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks
AWS Key Hunter
Test this free automated tool to hunt for exposed AWS secrets
Check Point Flaw Used to Deploy ShadowPad and Ransomware
CVE-2024-12284
Citrix Issues Security Update for NetScaler Console
CISA and FBI ALERT
Ghost ransomware to breach organizations in 70 countries
Hacker chains multiple vulns to attack Palo Alto Firewall
150 Gov.t Portal affected
Black-Hat SEO Poisoning Indian “.gov.in, .ac.in” domain
CVE-2018-19410 Exposes 600 PRTG Instances in Bangladesh
Builder claims Rs 150 cr for data loss; AWS faces FIR In Bengaluru
Phishing – sending emails with the purpose of obtaining personal information – is the most common form of cybercrime in 2023.
The UK had the highest number of people falling victim to phishing in 2022, averaging at 4783 for every million internet users, a 40% rise from 2020.
These cyber criminals may impersonate legitimate companies, such as the cryptocurrency app Bitcoin, before issuing a security alert in an attempt to lure you to a fraudulent site.
Once you have entered your security and account credentials, they will inject ransomware into your computer or network, gaining illicit access to your personal information.
2. Malicious advertising
Cybercriminals can also spread ransomware through malicious online advertisements, a process otherwise known as malvertising.
In fact, there were 1251 potential malware advertisements reported between 1 March 2021 to 25 March 2022.
It’s important to note that malvertising does not require the user to take any action. You can unknowingly connect to malicious servers while you’re browsing on a trusted website.
These malicious servers record information about your device and location. Once malware is sent to your computer, for example, your personal information can then be held at ransom.
3. Exploiting vulnerabilities
Exploit kits – toolkits which use codes to exploit vulnerabilities in a system – are often used by cybercriminals.
These kits work by identifying security gaps and distributing malware. In turn, your personal information can be held at ransom.
There are multiple ways exploit kits can infect your computer, including redirecting you to compromised webpages or prompting you to download malicious content.
4. Social engineering
Cybercriminals can also obtain personal information through human interactions. This manipulation tactic is known as social engineering.
They are likely to pose as customer services, technical support, new employees and authority figures to gain remote access to devices, passwords or other information.
Once they have access to your personal or business accounts, they can commence with ransomware spreading.
5. Drive-by downloads
Finally, drive-by downloads are a threat to consumers and businesses. This is when cybercriminals install malware without the users’ knowledge.
This often happens when people unknowingly visit a malicious website using an outdated browser. Malware is then automatically downloaded onto their computer.
How to avoid ransomware scams
1. Invest in cybersecurity
To get started, download an antivirus programme that will offer effective protection against malware, such as Bitdefender, Norton and Intego. Then, run an antivirus scan to ensure your device isn’t infected with any malicious software.
2. Back up your files
Antivirus software may offer real-time protection against cyberattacks, but it will not restore any lost files. So it’s always a good idea to back up your files in advance.
3. Update operating systems and software
Make sure you’re regularly updating your operating systems and software. This ensures your computer runs smooths and reduces the risk of security breaches.
4. Prevent scams by being vigilant
Last and certainly not least, you can avoid ransomware attacks by being vigilant. Don’t reply to suspicious emails, avoid downloading unknown files, double check links before clicking on them and regularly change your passwords.
A spokesperson from VPN Overview says: “Ransomware poses a real threat for businesses and consumers alike. Cyber criminals are relentless – they will impersonate others and hold your personal information at ransom. By understanding these ransomware scams, you can stay vigilant and protect your devices from malware.”
