Friday, April 24, 2015

The ransomware plague is out of control

At the time of writing, a wave of CriptoLocker attacks hits the Spanish Internet with messages claiming to come from the postal service. Unfortunately, it is not the first time. Viruses which blackmail their victims are now one of the best cybercrime business. We'll discuss about it and also about cybercrime as a service, and we´ll mention another important threat which is looming over eBay Stores.

They either encrypted their victims computers or accuse them of having visited banned sites and then they blackmail them. It is the booming ransomware business, increasingly joined by crooks, as botnet owners who install these viruses in thousands of machines under their control; or experts at infecting websites, who no longer intoxicate visitors with banking Trojans but with ransomware. And in a most difficult and profitable way: those who begin to encrypt websites databases of companies.

They are scary. Even more when we read the summary made by the analyst Pablo F. Iglesias of an extensive Europol report on digital crime. Today we live in the era of "crime as a service", a complex economy in which those who want to commit a criminal act online will contract tools of a third party, such as viruses they will use, stolen database storage, cracking accounts, translating messages from "phishing" or mules to launder stolen money.

Today several media report on another cybercriminal wave: attacks on the popular e-commerce platform of eBay, Magento. Since a vulnerability that allows code to run on servers was discovered before yesterday, there have been detected already some early attempts to exploit it. Over 50% of shops have not applied the patch, which means that there's about 100,000 servers still exposed to increasing attacks.

And we finish with an interesting thought: Have been security companies exaggerating in their reports on cyber attacks against the United States from Iran, Russia or China? The controversy was ignited by an article by "The New York Times" ensuring that last year Iran launched hundreds of thousands of cyber attacks against the US, something that many InfoSecv experts from the security community have questioned.

So, it is not gold that glitters and an IP located in Iran will never be proof of an attack by it´s government. And without further delay, we wish our readers a good weekend.


Post a Comment