cybercriminals

Targeted phishing takes aim at Acronis – and loses

Phishing attacks, which involve criminals posing as legitimate contacts use emails and instant messaging to trick victims into providing valuable information like login credentials and banking or credit card details, is a major challenge for organizations ... and it’s on the rise.

The Anti-Phishing Working Group’s (APWG) Phishing Activity Trends Report for Q1 2020 notes that phishing attacks rose to the highest level since 2016, with more than 60,000 phishing sites being reported in March alone.

As a member of APWG, Acronis can confirm that we’ve seen an uptick as well and Acronis employees of all levels receive well-crafted phishing emails every day. Let’s look at one recent example that targeted one of our c-level executives. 

Phishers are back in the news, but they never really went away

The recent embarrassing hack of Twitter that led to the compromise of some very famous accounts (Bill Gates, Elon Musk, Barack Obama, et. al.) for use in a bitcoin-stealing scam grabbed global headlines for a few days. The story started winding down with the arrests of three young men in the UK and Florida. 

Twitter should feel lucky today that the thieves only set their sights on a small payday (netting less than $120K before they got caught) rather than broadcasting false headlines that might have shaken global financial markets. It’s a useful reminder that phishing remains among the most popular and successful attack vectors for a variety of cybercrimes, accounting for some 30% of all breaches.

Hard Lessons from the Catastrophic Attack on VFEmail.com

Imagine yourself as a service provider who wakes up one day, pours a cup of coffee, and checks email, Facebook, Instagram and Twitter – only to discover a flurry of panicky messages from customers about your service being unavailable. You rush to your management console to find that nothing is working; your entire operating environment is an unresponsive black hole. Racing to your data center, you discover a faceless attacker has wiped out every bit of data you own and maintain on behalf of your customers, erasing every hard drive on the premises.

What’s worse is they have also managed to destroy your backup servers. You have no recovery options.

That’s not an imaginary worst-case scenario. That’s what happened earlier this week to VFEmail.net, a US-based provider of secure email services.

Ransomware Trends 2018

Ransomware continues to threaten anyone using a Windows, macOS, or Android device, and individuals and business owners alike are paying ransoms because they don’t adequately protect their systems.

While anti-ransomware solutions are available for devices like laptops, PCs and mobile phones, other Internet of Things (IoT) devices remain at risk. Our 2018 Ransomware Forecast looks at what threats we may soon face.