There is a new ransomware targeting Amazon users. Comodo Labs first detected the phishing mails purporting to be Amazon notifications: autoshipping@amazoncom. While there is no text body, the subject is: ‘Your Amazon.com order has been dispatched‘ (followed by a code number). The dangerous part of this message are the attachments.
This latest attack only increases the call to action to strengthen security measures. “Cybercriminals adapt to attempts to block them, constantly creating new and more insidious strains of malware“, Comodo report. The malicious macros are executed on opening and then download the ransomware.
The samples are still being analyzed, though it is reported to be Locky, or a variant or the trojan-ransomware. This infection encrypts files and leaves a ransom demand. It is not known how many infections there are at the moment, though it seems to be an aggressive campaign. This comes at a time when Kaspersky Labs research show that 43% of users do not know what ransomware is, or how to deal with it. Figures reveal that only 13% of people are worried about ransomware.
Avoiding social media
24% of Canadians questioned and 26% of U.S users said that they would be willing to discontinue to use social media if it protected their data. Around a quarter of North American users believed that they could deal with a ransomware attack by turning their computers or devices off. It seems that younger people are slightly more clued-up about the threat with 37% of 16-34 year-olds admitting not knowing what to do if attacked – this figure rose to 54% for those aged 55+.
Kaspersky warn of an ‘epidemic’
“Although it has been around for more than a decade, we have seen a recent explosion of new ransomware families that is cause for serious concern,” said Ryan Naraine, of the security company. “With this epidemic, the need for increased consumer awareness about ransomware is essential“.
He went on to warn that everyone connected to the ‘net should be aware of the threat, and learn how to prevent or deal with the threat, ensuring all devices are up-to-date, software kept patched and regular external backups are made.
More news of this particular threat will be posted as they become available.