Over the last few years Ransomware has become one of the most reported and feared Malware variants around. Traditionally, this form of attack denies you access to you data, either by encrypting it, deleting certain folders or bringing up a lock screen. The ultimate aim is to extort money from victims by forcing them to buy back access to their files.
This form of cyber attack is particularly troubling as it delivers a “double hit” to companies because they have to deal with the clean-up of the Malware incident and pay a ransom if they wish to recover the data. This means there is a more tangible cost to the outbreak than with traditional Malware and it is more than possible that after paying the ransom, you still won’t get your data back.
Phishing emails, the main delivery mechanism of Ransomware are designed to fool users in to clicking links that install the payload, this is done by sending out fake emails that mimic real emails, they may appear to be from a legitimate source. A few years ago the authenticity of these were more obvious, with fakes easier to spot, but the financial rewards have made the design and sophistication of these emails more convincing and increased their effectiveness of delivering the payload.