Here's how DoppelPaymer has beefed up the ordinary ransomware game
As the pandemic continues around the world, malware authors have hijacked its importance and use it to their advantage. Covid-19 and its various references have been showing up more frequently in phishing lures, masquerading as phony apps, and in many other malware variations. Now there is a resurgence of the ransomware called DoppelPaymer (DP) that is using virus-themed email subject lines to attract victims. This one is significant in the number of different distribution methods that have been used in the three years since its progenitor, BitPaymer, was first discovered.
Covid-19 related scams have certainly proliferated, and we have written about them before:
Where does DP fit into this scheme? Let’s take a closer look.
One of the reasons why malware and phishing scams are so successful is that they follow the most newsworthy stories. While Covid-19 continues to be in the news, it isn’t the only subject. Given all the interest in NASA US-launched manned space missions resuming, it isn’t surprising that criminals have taken advantage with ransomware that has a NASA focus. Earlier this summer, the DP-based ransomware targeted a NASA contractor. The attack was successful at stealing a variety of documents (which were then posted online), including human resource-related and project plans that leaked employee details. This phishing lure congratulated SpaceX’s successes and was targeted at NASA co ..
Support the originator by clicking the read the rest link below.
