{"id":2953,"date":"2018-01-16T19:54:49","date_gmt":"2018-01-16T19:54:49","guid":{"rendered":"https:\/\/tsisupport.com\/?p=2953"},"modified":"2021-07-07T04:51:45","modified_gmt":"2021-07-07T08:51:45","slug":"unusual-ransomware-strain-encrypts-cloud-email-real-time","status":"publish","type":"post","link":"https:\/\/tsisupport.com\/tsistaging\/?p=2953","title":{"rendered":"Avoid A New Strain of Cloud Email Ransomware: Cloud Security Management"},"content":{"rendered":"

A white hat hacker<\/a> recently developed a working \u201cransomcloud\u201d strain that encrypts cloud email accounts like Office 365 in real-time.\u00a0 A scary thought when so many organizations trust the cloud and software manufacturers like Microsoft to keep their information secure.\u00a0 KnowBe4<\/a>\u2019s Chief Hacking Officer Kevin Mitnick<\/a> has produced a live demo to watch the ransomware work below.<\/p>\n

According to Kevin, the proof of concept has been around for a while, and is on the horizon; because if a white hat<\/a> can create it, so can a black hat<\/a>. This strain uses a smart social engineering<\/a> tactic to trick the user into giving the bad guys access to their cloud email account, with the appearance of a \u201cnew Microsoft anti-spam service\u201d.\u00a0 Once the user clicks \u201caccept\u201d, all email and attachments are encrypted in real-time!\u00a0 The ransomcloud attack will work for any cloud email provider that allows an application giving control over the email via oauth.\u00a0 With Google it will work if the app passes their verification process.\u00a0 Outlook 365 doesn\u2019t verify the app at this point, so it makes Microsoft users much more vulnerable to this type of attack.<\/p>\n

Watch the Demo Here:<\/strong><\/span><\/p>\n