+- Geeks for your information (https://www.geeks.fyi)
+-- Forum: Security (https://www.geeks.fyi/forumdisplay.php?fid=68)
+--- Forum: Security Vendors (https://www.geeks.fyi/forumdisplay.php?fid=87)
+---- Forum: Heimdal Security (https://www.geeks.fyi/forumdisplay.php?fid=130)
+----- Forum: Heimdal Security Blog Articles (https://www.geeks.fyi/forumdisplay.php?fid=138)
+----- Thread: What is Maze Ransomware? (/showthread.php?tid=12602)
What is Maze Ransomware? - harlan4096 - 24 August 20
Quote:Continue Reading
Find out Everything you Need to Know about Maze Ransomware & Protect your Business against This Emerging Threat!
Coming back to your laptop only to find all your data encrypted and a defiant message on your screen asking you for money in return might probably be one of the scariest scenarios related to cyber-attacks. If you’re “lucky” enough to get targeted by cybercriminals, you might find out that maze ransomware is even more frightening.
If ransomware refers to a type of malware (malicious software) which encrypts all the data on a PC or mobile device, blocking the data owner’s access to it, as we explain in our Cybersecurity Glossary, maze ransomware is an even more dangerous attack, because the criminals behind MAZE also have a public website where they post the stolen data of the victims who refuse to pay the extortion fee.
As the Federal Bureau of Investigation mentions, “ransomware attacks are becoming more targeted, sophisticated, and costly […]”. Moreover, they represent a menace for a long time, since ransomware first appeared in 1989, when it was introduced into systems via floppy disks. You can find more information about this type of attack here, and, if you’re curious, details about the ransomware payouts from last year here.
The particular maze ransomware is nowadays so alarming because, even if you do manage to get access to your essential information through backups, the criminals would still have a copy, which could degenerate into a massive GDPR issue. You might be facing a combination of a ransomware attack and data breach. As the criminals mention on their website, if the ransom is not paid, they will:
– inform the media and offer details about your security breach;
– sell the valuable stolen information on the dark market;
– inform the stock exchanges on which your company might be listed about the attack and the loss of sensitive information;
– inform your clients and partners that your company was attacked and use the stolen information to attack them as well.
How can Maze Ransomware infect your devices?
First known attacks of maze ransomware took place in May 2019. The criminals initially distributed the ransomware via spam e-mail and exploit kits, but now they use a variety of tactics, techniques and procedures. They might even hire actors to analyse their next victim’s organisation and determine its annual revenue. The e-mails they were sending had “Missed package delivery” and “Your AT&T wireless bill is ready to view” at the subject line and were sent using several malicious domains with the registrant address abusereceive@hitler.rocks.
...
![[Image: heimdal-logo.svg]](https://heimdalsecurity.com/blog/wp-content/themes/heimdalv2/images/heimdal-logo.svg){kind=logo}