View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
April 8, 2016updated 05 Sep 2016 11:30am

‘Threat level 10’ phishing scam hits UK citizens as ransomware hits industrial scale

News: Cyber security research discovers link between common email scam and dangerous ransomware.

By Alexander Sword

A widely reported email scam has been linked to a ransomware attack with a ‘threat level 10’ by a cyber security expert.

The danger was discovered by Andrew Brandt, Director of Threat Research at Blue Coat, who tested a recent spam email in a test-bed and found that it linked to a malware called Maktub.

The targeted phishing email that contained the link to Maktub emerged this week. It told consumers that they owed large sums of money to companies and gave them a link at which they were told they could print an invoice.

Maktub would then encrypt all data on the hard drive, demanding a ransom to be paid in Bitcoins that would increase the longer it took the victim to pay it.

The phishing campaign was extremely targeted, with victims’ postal addresses featuring in the email to give the illusion of authenticity.

Kevin Epstein, VP, Threat Operations Center at Proofpoint, highlighted this use of personal information as a key technique in the phishing world.

"The rule of thumb for phishing emails is that the more personalized they are, the more effective they will be. Personalization, though, is expensive, both in terms of the necessary research and preparation of highly targeted malicious emails.

Content from our partners
Scan and deliver
GenAI cybersecurity: "A super-human analyst, with a brain the size of a planet."
Cloud, AI, and cyber security – highlights from DTX Manchester

"The tradeoff between efficacy and cost has historically been a constraint on attackers — one that was assumed to be largely inviolate, much like flying faster than the speed of sound was long considered impossible."

Worryingly, Epstein suggests that the attackers may now have found a way around the constraint, or "broken the sound barrier."

Proofpoint discovered another campaign in the same week which targeted over a third of a million executives.

Meanwhile, Adobe issued an emergency update to its Flash software for internet browsers after a security vulnerability was discovered that could be exploited to deliver ransomware to PCs.

The bug could be exploited when users visited tainted websites.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.