Ransomware — Protect Yourself or Pay

Locky Ransomware in 2016

Ransomware has surged dramatically this year with the launch of a new variant called “Locky.” Delivered via massive malicious spam blasts (malspam), Locky represented 40% of all malware distributed worldwide during the first quarter of 2016.

And as these attacks have become more sophisticated, attackers are increasingly targeting businesses and organizations that have deeper pockets. So far, law enforcement has been helpless to stop these threats, IT teams are struggling and failing to protect their organizations, and attackers are raking in the money.

As a result, we (and everyone else in the market) expect dramatic growth in ransomware over the next year – as a matter of fact, we’re already seeing it:

Ransomware distribution is expanding from malspam email blasts to a number of well-known exploit kits that deliver the malware via the web on compromised websites or malvertising.

The evolution of each ransomware variant is happening quite quickly as well – the Locky virus changed its payload format from malicious macros in MS Office files, to obfuscated javascript in zipped files within 30 days of the first malspam outbreak.

Ransomware is evolving to go after targets that are traditionally more difficult to compromise and monetize, including smartphones and Mac computers.

How to Protect your Business

These attacks can seriously impact your business, and legacy security technologies are notoriously bad at stopping these threats. In order to defend yourself, you need to take a look at advanced cloud gateway and endpoint security across both email and web channels, incorporating advanced security technologies like sandboxing, outbreak detection, IP reputation, and machine learning.

To learn what you can do to prevent your business from being victimized by ransomware, check out our recent webinar on that topic (see link below). And for deeper technical dives, see the blogs below, and sign up for our upcoming “deep dive” on Locky by our security research team on May 17:

Analyzing behavior to protect against BEC attacks

Business Email Compromise

Understanding “normal” behaviors in email exchanges are key to combating advanced phishing and BEC attacks by John Stevenson Detecting Business Email Compromise (BEC) In the final part of our series of blogs on Business Email Compromise (BEC), it’s time to look at how...

Using NLP techniques to protect against BEC attacks

Business Email Compromise, Office 365, Phishing

How Natural Language Programming help combat phishing and BEC attacks by John Stevenson Business Email Compromise (BEC) Business Email Compromise (BEC) covers a range of email attacks that typically share a common core attribute. There is no obvious executable...

Phishing with QR codes

Phishing, Security Research & Analysis

Don’t Scan or be Scammed By Maharlito Aquino, Kervin Alintanahin and Dexter To In 1994, a type of the matrix barcode known as the Quick Response code, now widely known as QR code, was invented by Masahiro Hara from a Japanese company Denso Wave. The purpose of the...

For OEMs

For Enterprises

In the News

Expert Support

Recent Posts

Company

In the News

Cyren Security Blog

Ransomware — Protect Yourself or Pay

Locky Ransomware in 2016

How to Protect your Business

Categories

You might also like

Analyzing behavior to protect against BEC attacks

Using NLP techniques to protect against BEC attacks

Phishing with QR codes

Cyren protects 1.3 billion users against emerging threats.

Cyren is now part of the Data443 family.

Contact