FIN10: Anatomy of a Ransomware Phishing Extortion Operation

By: KnowBe4
save
Share and earn Cybytes
Facebook Twitter Google+ LinkedIn Email

Cyber security firm FireEye reported that that a number of Canadian mines and casinos were hacked by a group named FIN10 – FireEye labels FIN10 to be “one of the most disruptive threat actors observed in the region.”  It has been identified that these cyber criminals might be native English speakers.

FIN10 used phishing campaigns with malicious links, attachments, and documents, and also led users to compromised websites masked as either a legitimate holiday scheduling system or providing access to an online document like Google Docs. Clicking or accessing these would activate the ransomware and drop remote access trojans.

Share this post and earn Cybytes
Facebook Twitter Google+ LinkedIn Email
Follow
83 Followers
About KnowBe4
KnowBe4, the provider of the world’s most popular integrated new school security awareness training and simulated phishing platform, is used by more than 9,500 organizations worldwide. Founded by data and IT security expert Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness of ransomware, CEO Fraud and other social engineering tactics through a new school approach to security awareness training. Kevin Mitnick, internationally recognized computer security expert and KnowBe4’s Chief Hacking Officer, helped design KnowBe4’s trainings based on his well-documented social engineering tactics. Thousands of organizations trust KnowBe4 to mobilize their end-users as the last line of corporate IT defense.
Promoted Content
Free Ransomware Simulator Tool
Will your network stop ransomware from getting in? RanSim tests against 10 different infection scenarios. Start now and get your results in minutes!
View
134
Legacy Cybersecurity Defenses Won’t Keep Pace with New Ransomware and Cryptojacking Threats
Findings from the 2018 Webroot Threat Report Reveal the Increasing Sophistication of Phishing, Malware, and Cryptojacking.  
Save
Share
Facebook
Twitter
LinkedIn
Email
Like
3/26/2018
173
SAM.Gov Hackers Were Handed Spear Phishing, Spoofing & Credential Theft On A Gold Platter
Cybercrooks who stole federal payments by hacking contractor accounts on a GSA website used sophisticated spear phishing techniques to steal login credentials and then diverted payments to bank accou
Save
Share
Facebook
Twitter
LinkedIn
Email
Like
4/01/2018

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel