In what is fast emerging as a disturbing trend, another ransomware gang has now resorted to using Distributed Denial of Service (DDoS) attacks to knock their victim’s websites offline.
According to reports, ransomware operators are ganging up to launch repeated DDoS attacks against a victim’s website to force them to the negotiating table.
The reports quote Brett Callow, threat analyst at Emsisoft, who isn’t surprised at this new modus operandi: “DDoS is cheap, easy and in some cases may help convince some companies that speedy payment is the least painful option. The more pressure the criminals can put companies under, the better their chances of extracting payment.”
Ransomeware is not only restricted to large businesses or organisations although they are likely to be the most lucrative. But, smaller businesses and even individual users can have equally important data to protect. The only way to do that is by taking adequate precautions to limit both attack and any resulting demands.
Prevention is better & cheaper than the cure!
One way is by installing anti-malware protection similar to your anti-virus protection similar to Malwarebytes. It provides a ‘belt & braces’ approach and for the minimal cost could save hundreds if not thousands of pounds if an attack was to succeed.
Double extortion
Ransomware operations that target business networks will often steal a victim’s unencrypted files as well. The original tactic was to leak the unencrypted files if the ransom isn’t paid. In such an attack last year, BleepingComputer reported that an affiliate of the SunCrypt ransomware launched a DDoS attack on their victim to force them back to the negotiating table.
The Avaddon ransomware is the latest to join the ranks and has reportedly DDoSed the website of one of its victims after stealing about 44GB of personal and financial documents.
The operators of the Maze ransomware were the first ones to get multiple different threat actors to join forces and exchange tactics for more powerful strikes against their targets. It isn’t yet clear if Avaddon has joined the Maze syndicate or whether it has decided to spearhead a new operation of its own.
Click here to view original article at: Yet more ransomware operators are using DDoS attacks as leverage
