The latest round of ransomware attacks that hit more than 200 companies in the US and Europe, targeting more than a dozen high-profile IT companies, has seen a resurgence of interest in cybersecurity among IT executives.
According to a report from security firm Malwarebytes, ransomware attacks are on the rise again as of late, and this is likely due to the fact that governments around the world are beginning to focus more on their own cybersecurity and their own digital security systems.
Malwarebytes founder and CEO Daniel P. Bekman said that ransomware is increasingly being used as a tool to compromise corporate networks.
In the past, it was just an ordinary attack that took advantage of a vulnerability in a vulnerable system to take control of the computer and then steal money and other valuable assets, he said.
In recent years, cyberattacks have escalated to the point that companies and organisations are using encryption to secure data, and now they are starting to think about using encryption again.
“A lot of the data is now encrypted,” he said, adding that this will help to reduce the amount of data that can be accessed in an attack.
The most common form of ransomware, the CryptoWall ransomware, uses a series of keyloggers to take over a victim’s computer.
This ransomware can also be distributed via the internet to allow it to infect other computers.
According the MalwareBytes report, cybercriminals are now using a new type of ransomware called CryptoWall 3, which was first spotted in the UK.
According, the ransomware encrypts all data on a computer and uses an attack vector called ‘keylogger’ to access it.
In order to access the encrypted data, the computer must first open a command prompt in order to start the encrypted process.
“When it decrypts the encrypted file, it uses a ‘key logger’ exploit, which is a form of digital encryption that prevents the victim from reading and writing encrypted data,” Bekmans report stated.
“As a result, the attacker can decrypt data from all stored media, including encrypted files, including local files on the victim’s system, and files stored on removable media, such as USB flash drives, thumb drives, or SD cards.”
He said that these keylogger attacks are usually distributed via an email attachment that includes a malicious attachment.
The keylogging attack is similar to what happened in the ransomware attacks earlier this year in which the cybercrimins used a malware called CryptoRansomware to infect hundreds of victims in order for them to pay $500.
The CryptoRocker ransomware, which used the ‘keylock’ malware, is now the most popular type of malware being used by cybercriments.
In addition, the cybercrime threat is growing.
“The cybercrime market has grown significantly, with new threats emerging every day, according to the Cybercrime Industry Analysis Group,” the report stated, adding, “Cybercriminals have shifted their focus from attacking individual enterprises to attacking companies in a global network.
This is not only because cybercriminics are increasingly targeting companies across borders.”
As cybercriminates become more skilled at attacking individual firms, they are also increasingly targeting corporations, Beksons report states.
The Malware and Security blog noted that companies in industries like health care, financial services, retail, and education are often the target of cybercrims.
The Cybersecurity Summit, held in San Francisco this week, has been a major event for the IT sector.
The event was hosted by the Institute for Critical Infrastructure Technology, a cybersecurity conference, and is expected to attract over 30,000 people.
Security researchers, as well as companies and organizations that are interested in working on a cybersecurity strategy, have been finding more and more vulnerabilities in their systems, including a new ransomware variant, which can use a combination of keystrokes and a user interface to compromise an infected computer.
“I think the real issue is the fact it is still relatively new and the threat is evolving,” Praveen Narula, the CEO of cybersecurity firm Trend Micro, told Business Insider.
“It will be interesting to see how the security landscape changes in the future.”
“We do think that there is a lot more work to be done,” he added.