Alert: A clever new type of ransomware attack

It seems like we are talking about cyber scams a lot at the moment. And now there’s another new trick you need to be aware of.

It seemslike we are talking about cyber scams a lot at the moment. And now there’sanother new trick you need to be aware of.


Cybercriminals are smart. They’re forever coming up with new ways to infiltrate yourdevices and networks to access your valuable data.


Fortunately,the defence weapons continue to get stronger and stronger to help keep youprotected. Some email systems are now especially good at identifying maliciousmessages and threats.


But ifyour website has a contact form – and most do – you may face a new threat. Thisis because cyber criminals are using web forms to spread malware.


Theypose as a potential new customer and ask you to provide them with a quote foryour goods or services.


Once youemail your reply to their request, they’ll send you over a special kind of file– known as an ISO file – which they say is relevant to your conversation.


Crucially,this file won’t be attached to the email. They’ll send it via a file-sharingservice, such as WeTransfer. This is to help to avoid your email provider’sprotection.


Thinkabout the psychology of what’s happening here. Whoever in your business ismanaging this conversation thinks they’re talking to a prospective newcustomer, and is much more likely to open the files without thinking.


The factthe conversation started with a contact form lowers their natural scepticism.They just want the sale!


When youopen the file, it will give the cyber criminals remote access to your device.And that can allow them to access your full network. They can then launch amalware or ransomware attack.


Thelatter is something you want to avoid at all costs. It’s where your data isencrypted so it’s useless to you. And you have to pay a large ransom fee to getit back… with no guarantees the payment will work.


Expertsthink this form of contact form attack was first tested on large businesses inDecember 2021. And believe it’s now becoming more popular.


It’svital that you and your team check requests sent via your website are genuine.And never, ever open any files emailed over unless you trust the source 100%.