Published: March 25, 2023 on our newsletter Security Fraud News & Alerts Newsletter.
The continual evolution of ransomware techniques is one of the most pressing issues facing users of online technology. In a “neener, neener, neener” moment, Microsoft’s Security Threat Intelligence group recently detailed several ransomware campaigns that extended their reach beyond Windows operating systems to target MacOS. Yes, it’s true. It’s not just Windows in the crosshairs anymore.
Using strategies that are familiar to cyber criminals who attack Microsoft Windows and other operating systems, these attacks call for large ransom payments in exchange for a decryption tool as part of their modus operandi. As individuals, organizations, and security teams work to educate themselves on recognizing and mitigating such threats, it is clear that there is no one-size-fits-all solution to the pervasive issue of ransomware.
In addition to FileCoder, MacRansom, and KeRanger, there is one ransomware in particular that's been haunting everyone since 2020. That evil malware is called EvilQuest. Not only does it have the standard functionality to encrypt user data, but it also comes with added features such as keylogging. This sophisticated software can capture usernames, passwords, and other sensitive information without the victim's knowledge or consent by merely capturing keystrokes.
There are ways to lower your risk:
Always be sure to have anti-virus software installed and updated on all devices; even smartphones and tablets.
Don’t click on links or attachments, regardless of delivery method, from unknown senders or that you are not expecting to receive.
Keep all devices updated and patched with all app and operating system updates.
Back up your data on all devices. If malware hits, you can restore it rather than paying a ransom and/or losing all your information.
EvilQuest also has a low detection rate as it is capable of disabling security programs, leaving users vulnerable to an attack. But that doesn’t mean you can’t take action to avoid it. With all malware becoming more advanced and dangerous as the days pass by, individuals and organizations should remain vigilant when it comes to protecting their data.
Keep up to date: Sign up for our Fraud alerts and Updates newsletter
Want to schedule a conversation? Please email us at advisor@nadicent.com