Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Maktub ransomware phishing scam knows your home address and uses it as leverage
#1
[Image: hand_drawn_house.jpg]
Ransomware is one of the most prevalent security threats at the moment, and each week there are new examples that up the ante a little more. In recent months we have seen cross-platform ransomware, Tesla 4's unbreakable encryption, and the MBR-overwriting antics of PETYA, but a new phishing scam takes another approach.
In a cleverly orchestrated campaign, a phishing scam is doing the rounds whereby malware meets social engineering in a bid to extract cash from victims. It marries together the file-encrypting Maktub ransomware with a thinly-veiled threat -- home addresses. Quoting victims' home addresses to them serves two purposes: it adds a level of authenticity to the phishing email, but also acts as additional leverage by upping the fear level.

Andrew Brandt from security firm Blue Coat explains that victims receive emails informing them that they owe large sums of money to various businesses. To make the phishing scam seem genuine, victims are advised that hard copies of invoices will be sent to their home address -- which is listed in the email -- but a link purports to provide instant access to the documents. Of course, clicking the link is a mistake.
Speaking to the BBC, Brandt said that the speed with which the ransomware strikes is terrifying:
It's incredibly fast and by the time the warning message had appeared on the screen it had already encrypted everything of value on the hard drive -- it happens in seconds.
There have been suggestions that addresses have been gathered from eBay accounts, but this is something that eBay denies. What is clear however, is that quite some thought has been put into this ransomware campaign which is all about getting people to pay up.
As with other instances of ransomware, pressure is put on victims to pay the ransom to decrypt their files sooner rather than later. Pay within three days, Maktub promises, and the fee is 1.4 Bitcoins (around $588), but leave it a while and this increases to 3.9 Bitcoins (around $1638). The ransomware threatens that if it is ignored for more than two weeks encrypted data could be rendered completely unrecoverable.


source
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Atlas VPN zero-day vulnerability leaks users' real IP address mrtrout 0 648 09-06-2023 , 08:42 AM
Last Post: mrtrout
  Over 10 Million Facebook Users Hacked in Ongoing Phishing Scam mrtrout 2 1,465 05-29-2023 , 03:41 PM
Last Post: Kai Brooks
  ProtonMail Shares Activist's IP Address With Authorities Despite Its "No Log" Claims mrtrout 0 890 09-07-2021 , 06:03 AM
Last Post: mrtrout
  Apple releases iOS 14.4.1 and macOS 11.2.3 to address a WebKit vulnerability Bjyda 0 1,295 03-08-2021 , 11:05 PM
Last Post: Bjyda
  This phishing scam left thousands of stolen passwords exposed through Google search tarekma7 1 1,320 01-23-2021 , 10:24 PM
Last Post: mrtrout



Users browsing this thread: 1 Guest(s)