September 8, 2021
Cybersecurity criminals are utilizing unconventional methods to breach company networks through ransomware attacks, which may even be carried out through the company’s own employees. These scammers are offering a percentage of the ransom to employees who assist them with launching these attacks. For example, a recent campaign offered $1 million in bitcoin (40% of the presumed $2.5 million ransom) to any employee willing to deploy malware inside his or her employer’s network.
This new approach signifies a noticeable trend in cybersecurity. As employees are becoming cognizant of phishing emails, hackers are resorting to increasingly creative tactics. Ransomware was historically deployed through email attachments and links. More recently, cyber attacks have evolved to advanced techniques, such as obtaining direct network access through unsecure VPN accounts. These new approaches take advantage of gaps in security, employee training, or potentially disgruntled employees.
WHAT DOES THIS MEAN FOR ME?
Firms should implement the following to mitigate ransomware risk:
As cybersecurity threats continue to evolve, so must your firm’s approach to mitigating your cybersecurity risk. Fairview Cyber can help your firm with essential cyber and data security services like phishing prevention training, network penetration testing, and drafting policies to govern data security, including access management and change management.