KnowBe4 Warns of Ransomware Scam Targeting Windows 10 Upgrade Users
The release of Windows 10 as a free upgrade on July 29, 2015, brought it to the attention of cybercriminals who decided to use it to exploit the Windows user base. KnowBe4 is warning Windows users that these cybercriminals are impersonating Microsoft with an email mimicking the notice sent to users with a spoofed originating address to read as [email protected], then tells users to click on an attached installer, something Microsoft is not doing.
Stu Sjouwerman, CEO of KnowBe4 said,
“Bad guys are trying to exploit this confusion. You might get calls from scammers that claim to be Microsoft tech support and try to charge you for the upgrade using your credit card. Cybercriminals will stop at nothing in an attempt to extort users and convince them to download ransomware. We have seen this type of social engineering time and time again. Employees need to be trained how to recognize such attempts and stepped through an effective security awareness training program, to avoid falling prey to a ransomware attack.”
The type of ransomware being distributed with this attack is CTB-Locker, malicious software that encrypts your files. It gives one an option to decrypt a few files to show it means business. The ransomware gives 96 hours to pay up in Bitcoin via the TOR network.
Sjouwerman added,
“Ransomware has a proven business model for cybercriminals. It has driven in millions of dollars and costs the average business thousands of dollars per user to mitigate. It is much less expensive to train a user on what to look for and test him regularly with anti-phishing tools like the Kevin Mitnick Security Awareness Training program. We all know humans are the weakest link in security and training can make the difference.”
According to Cisco’s Talon team, who discovered the malware, it has been sending back large amounts of data to command and control servers via hard-coded IP addresses. Cisco speculated this could mean the malware is mining a victim's files for things that look useful.
KnowBe4 has been successful in preventing ransomware infections through end-user training. In fact, the company is so confident that its training works, it offers a ransomware guarantee which pays a customer’s ransom in Bitcoin if they get hit after being trained. KnowBe4 also offers a no-charge Ransomware Hostage Rescue Manual.
About Stu Sjouwerman and KnowBe4
Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, LLC, which hosts the world’s most popular integrated Security Awareness Training and Simulated Phishing platform. A data security expert with more than 30 years in the IT industry, Sjouwerman was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired 2010. Realizing that the human element of security was being seriously neglected, Sjouwerman decided to help organizations manage the problem of cybercrime social engineering tactics through new school security awareness training. KnowBe4 services 1500 organizations in a variety of industries, including highly-regulated fields such as healthcare, finance, energy, government and insurance and is experiencing explosive yearly growth of 300%. Sjouwerman is the author of four books, with his latest being “Cyberheist: The Biggest Financial Threat Facing American Businesses.”
For more information visit: http://www.knowbe4.com/
About Kevin Mitnick
Kevin Mitnick, ‘the World’s Most Famous Hacker’, is an internationally recognized computer security expert with extensive experience in exposing the vulnerabilities of complex operating systems and telecom devices. He gained notoriety as a highly skilled hacker who penetrated some of the most resilient computer systems ever developed. Today, Mitnick is renowned as an information security consultant and keynote speaker and has authored four books, including The New York Times best seller Ghost in the Wires. His latest endeavor is a collaboration with KnowBe4, LLC as its Chief Hacking Officer.
Related News
If you are one of the bitcoin users who is a bit paranoid about privacy and still wants to use Windows 10, just follow the instructions available at the following links before reading further. Protect Your Privacy on Windows 10. Securing your Bitcoin. Windows 10 is definitely the most awaited and well deserved upgrade Windows OS users ever got since Windows XP. The predecessors of Windows 10 had their own flaws as the company couldn't anticipate and meet the requirements of its users. Windows Vista was a grand failure which turned PCs into dinosaurs. It was followed by Windows 7, which can....
It is not unlikely we will see more ransomware versions targeting Pokémon players moving forward. Since the launch of Pokémon GO, people around the world have been captivated by this mobile game. Not too long ago, the client was also released for Windows users, which only helps grow the Pokémon ecosystem. However, a new type of ransomware, called Hidden Tear, is masking itself as a Pokémon GO app for the Windows platform. Any concept of software that succeeds in gaining mainstream traction will become the target of internet criminals sooner or later. Pokémon GO is no different in that....
It remains unclear how this Bitcoin ransomware was spread through the Transmission download page, although the platform may have been breached by hackers. Keeping in mind how this malware will only activate after a three-day waiting period, Mac OS X users might want to perform some additional security checks on their machine. Bitcoin ransomware has been a big thorn in the eye of security experts and computers users all over the world. Or to be more precise, ransomware has the habit of targeting Windows computers, simply because this is the most popular operating system in the world today.....
The Bitcoin community now has more worrying things on its plate. As if hacking incidents plaguing cryptocurrency exchanges aren’t enough, the number of malware and ransomware threats on the rise. In the past couple of weeks, a number of new malicious programs were detected by multiple cyber security firms. One look at the list is enough to know that no device is currently safe. Windows Ransomware. A new ransomware called Fantom is wreaking havoc among Windows machine users. The malware cleverly disguises itself as an official update from Microsoft, tricking users into installing it.....
The U.S. Treasury Department’s Financial Crimes Enforcement Network (FinCEN) issued a warning that alerts financial institutions in the United States about increasing ransomware attacks against coronavirus vaccine research organizations. US Treasury Warns of Ransomware Attacks, Phishing Schemes Targeting Covid-19 Vaccine Research Institutions According to the alert, FinCEN says that fraud, ransomware attacks, and “similar types of criminal activity” target the distribution of Covid-19 vaccines, which could affect their supply chains if proper actions are not taken on....