Infosecurity Magazine - Crypto-Ransomware Targets 20 Million Inboxes

Security researchers are warning of another major crypto-ransomware campaign which has so far been observed attacking 20 million user inboxes. The threat, discovered in the second half of this week, arrives as many similar ransomware attacks do in the form of an unsolicited email.

“This attachment is a JavaScript file in a 7zip archive that the Barracuda ATP Dynamic Analysis Layer identifies as a ‘file-encryption/ransomware’ type virus,” explained Barracuda Networks lead platform architect, Eugene Weiss.

Information Management - Major ransomware attack hits healthcare and other industries

A major ransomware attack is now underway against multiple industries, including healthcare, according to data security and disaster recovery vendor Barracuda Networks.However, the extent of the attack in the healthcare sector is not yet clearly known.

“In the last 24 hours, the Barracuda advanced security team has observed about 20 million attempts at a ransomware attack through an email attachment, such as “Payment_201708-6165.7z,” according to Eugene Weiss, leader of the Barracuda Content Intelligence Team. The payment number varies with each attack.

Healthcare IT News - Cybersecurity firm warns of 20 million active ransomware attempts in last 24 hours

The aggressive attack uses impersonation and advanced threats to trick email recipients into downloading an attachment labeled ‘payment,’ which will encrypt an organization’s files.

Over the course of 24 hours beginning August 30, there have been 20 million attempts at a ransomware attack through an email attachment, cybersecurity specialist Barracuda said. 

HR Drive - Damage control: Recruiting talent when your brand has been tarnished

Sometimes, a brand reputation gets banged up because someone is impersonating the company, according to Asaf Cidon, vice president of content security services at Barracuda Networks. The firm, which provides software and systems that help crack down on fraud, knows all too well the danger that companies face. The latest threat comes from spear phishing, a sophisticated method that hackers use to infiltrate company information and damage their reputations, Cidon told HR Dive. 

SC Magazine - Major malspam campaign pushing Locky ransomware via spoofed internal email addresses

A large malspam campaign using spoofed email addresses has attempted to infect recipients with Locky ransomware in roughly 20 million detected attacks since Tuesday, researchers from Barracuda Networks have reported.According to Fleming Shi, Barracuda's senior vice president of advanced technology engineering, it appears that the bot behind the campaign is able to generate fake email addresses that make it look as if the offending email is arriving internally from the recipients' own organization. "This makes it a little more likely people will click on it," said Shi, speaking with SC Media.

SiliconAngle - Scary multistage phishing attacks target Office 365 enterprise users

Uncovered in a report from Barracuda Networks Inc., the campaign starts by targeting Office 365 users with a typical phishing message that claims that their account has been suspended and they need to follow a link to fix the problem. Once clicking on the link, the victims are directed to a fake landing page, appearing to be the Office 365 site that asks them to enter their username and password for the account – stage one of the attack.

Dark Reading - Office 365: A Vehicle for Internal Phishing Attacks

These have become more popular and tougher to spot, says Asaf Cidon, spearphishing expert at Barracuda. The company recently released a report on a threat he calls Account Compromise. Once they have an employee's Office 365 account information, threat actors can craft realistic-looking messages and send them from an account their victims trust.

Beta News - Sophisticated phishing attacks target Office 365

"Cybercriminals have a long history of designing attacks to reach the largest number of eyeballs possible," says Asaf Cidon VP of content security services, writing on the Barracuda blog. "From the early days of traditional spam, to search or trending topics on social platforms, criminals follow the users -- and Office 365 has become a breeding ground for highly personalized, compelling attacks."