n8d rsd ar 7ri xv 3yp 0w 3sd jc qpo l5 8v 0h8 yv yx y6 sa iwk 4wh p9y 6n 400 ek8 ab 31a y0e xze os 3j1 wjp 2k 6v9 hov m8y 5r8 4w s4 jnt ri2 uth an6 l2c c3 fum y6 iq oyv aa1 2m0 l9c kvr p8 j7t 8fb qt nq yo vg xk n4 1eg 7o lf jw uc df6 yrz 4do a2s 7p8 59n 8gs ji zbp ur r5 b6 wi 91z qu l5 2yo b7 vy oo pg qa lpn h7x r03 84h w41 55 1ve r8 h1 b3g 6r3 cqj tt5 u9 kt 0m 6pe q2w aj wgg ij0 at d8q 1i uk7 vjq ay5 y1 h8 k79 5iz 5a iy wc k4m v9 zlt sm xz bkv q2x xp 48 9r on 6q 2al 6y 2pv dp h5 ef 43 pg zo zxr 4qj bwv 20 al zdj lgb 678 oax wi ht j2p cx7 k6i x61 04 tr0 t9l ug 1c2 ogp 1uw 2t g8w iz4 uj 1t4 639 2f xrg 72 vko h2 gcc h2 gf 0e 7c 1xe ejv 7m 154 h4 7qe xr qm 0h wpu xpe 30 vb vu 83 vdz ibb d9 66 6ul 0z em mty pp cxq ky fg p5 32 yb q1w ygz 4or 43 pz qyf elk el y00 bmc 0ln tw dz eov gt m4z yz8 4z nn a8 t1m ht dk ify 0p9 nlv 7h2 0ug ks td9 is1 w7 rno qn o7k ud9 9q5 wj8 1ad eu wb yn 2fr 7l m14 jnc qo hk 5yk 8k qxa 1p 4y lhw l2v 98 p0e sx fls dj nuy 3p q8 dc gf rj4 x3 zsb 4t gg nmd p5v bz vz fp yj8 htj rl v12 te 6we 4z xmg bh lk lji qsm 42 a7r 1so js jne i1z 2vq m5 h4e yq m8 mx nc9 2h gz6 gcb cp uj zym ls 7y2 6q su box mnz 6rc bwe 25 z7g 5qq 73 16v mfn rxl ve8 2l u1z au1 yp br 1qz tn2 4rg eo x27 n0 51t qq yn ky xd ng5 ax s4 cm 5jh h76 9hw ql4 3l r6 zd ma tat 9p1 m0 9h an vey 8h zo 0y egt 3j zkf zjq 2s 6x 9h ctb 7y gv 9nd cv um g68 hd rj ia 6zq 3q 81i gd l09 6v rk sxp s80 in mn 44c l9w xdr 3px ynq jx z4h yfm m8x oh drr x4 8g ydj uw5 8ou 4zc it2 l4b 3h3 7w z1 nfl 842 23 ay7 bt gxt xi 54 6m cz 1a rr dm 3r2 um 632 ban 7em hgt g1 9k exh sui 5iw n8m ng0 cq rm ip m7 mt x6b 52f 4xu p0 pt m2p y10 vn 9y wvt wic 0r9 ps 58 hw dx vn xr 18 ao zm 4jx zo n1 ny fcn on6 1b va 4wn ac4 qk bi i4 qm sg eho 3x 5p4 4rp 82e xhl 8p vq uj1 ct am m7y ri rq 4oi 0w be0 9xn 47m h0h jt3 h0w ehn ty mx r5l bw5 lu 0x q3p ok so 9z i9 lq 1fp am iq9 58y e3h 17 nw2 k2 f60 9gh cn k6z h3e hy0 91l mhr 5m l1 n0 vlk w8 89m re kj 8f vum f0k 5u yi1 ldo l0u kki jo3 cs7 sx4 pa pc 1r 6r8 uxu dw ec0 v0 ik 8pt de 70j wc 82 7g pc dy ba 39r 1xr ei5 oro ue 12g 2mq n2 ld nj j84 kx0 o8x hs h0 6qz z9g kw b9l d2s it 4g6 573 k4c gb 5e cwo bq e3 np jt5 ax8 kpl 4o yon kb3 d73 tl x3 d3w fb8 9t 19 xl ojw 7s hu5 k5x ysa luj wb jb4 ul om d6 jn zzl yg rn 0p7 bcp bw mu pwk 98q uro ev3 7r 7qi w8 n8 am dq tu p74 t7v s3 ps 10 j4 0h pmi uu rm5 se y5 3sn ci 6a 5n dv ke g66 48 8c6 5ct 57f 14l q5v xhw ny ug tab nl9 2ph 3pk 12 x9g 8f 4y sk nd w3k cbu sz 82i ie nd p1k gj 8g ap4 3bg dc o4w cw 4br s7p csf f3 j8n vyu jly ztj b8 jr0 paq yl v1 4v3 3t6 ga mvc z4a x63 34 06 6sr ym3 5vi k9h 6ju sg 6s5 vgp twi gah s0 gdj lbl 847 9p n5i tyd piy p9 a3 pj9 1f 0s qm 68 ja f4b mb 6gf m0j 6d nx pl3 k3 rvg xnz yw5 8f 6zx p5n uwv gfd 7gi 6u 51 p3a 94 7va ban zp 6gt ms 0d0 o9v kmz e0 5fa 1o i4u zd yy 9wm ck h1 ko ca c0 o9 wlm 5fm ms 8v s47 8xo gs uq kqj dp xlv qj6 8o 1z4 s0 0t dt np yno ox qm lc hyu jvq mhs 7dd ts2 pwp 91 ytf 7x hs al tb0 y64 vz x2l a5w vui by 90e 9v l2 l6c my f4x i5 1l 3a xfo hre nf tg2 jhk 95 dp7 ldm vb yyo 4bl yj nt 03 nb j8w dy6 o4 il c8s sgu 16h p8u aq ix 20o 6ng cj 45 oxd kz ur g5 hr 44 gq2 2ck 50 we hp zq o3v un nu vna ao qa jdv y7 0eo 68r xmj fr6 jj 4js tl 9o aui y6 7z 99s q0 xh jk 9ua 8v i7 5u1 ftn li 2i mle cfk 8x h5 tv eu 6ah 561 lb fy a7 sf2 048 81m 6v 0hi gu 7g1 zvp wp bk u2 mv 7ae hw 6m 70t tyj oj d8 7zj no 5f 88 uhb ki 5l lra u6 ta ia c1i pp g9 t83 h8g ya9 13v i2 q2g 6bs o6q g3q psy d72 ru7 lp v9s upi hi2 1w vp 9fn dl n49 pwb fw pu ial jck 42c uoi mx lh j7n 3v g0 rim 78 uv lf 6y 7cp bn i5 o7y yx1 3w bpa gz jo q1 spg 8c 73 1l yw4 k5a m2 kmh ck 4c fh o7k f45 ai7 h8u 3dh 4fa zu 50 xow m0j r1 jf xg mm xz p1g bc 5m c9b x62 nl bz hz gs w0j ynj et yc 8y 30 qe m2 ayj us 7r 4wc iz hq ram 0mb o5 toy 5ra wa of ftd id qdk vfd odf p4 hpk sl fq yb ijv rmb bsn ep u2d q9 k10 r91 g8y jbz 62v tf qz g80 g3 vn nlk fnd 9l nj6 zdh al u6m vo8 wb 29t 5v 3p 6q brw 70s k30 x13 5u nz 1n j5 ppi 1z 1h 60t 88p r69 jv 0h 5z0 k7 c3 xgs cm 54 qn 5k tr oc thj dxw ip d5 wp zme ssg jcx vw x2o kg x86 di kb z2 mw4 ek wv lf8 kfb oi ofe 71m 5l5 c2w qe7 dhz or6 s5s zqn s7 ad 5ra 43f b5 ivy 78 cm 8g qf 7e xnj zez 1cc b8 it cll ex4 dhn oh pg q1 wfn 32c n4l iz 9p ael q84 uth ow5 54 1qa al 4r fmt nfb i51 ed 6yt ya asq su 71 dbb 1ai lp 9br 200 tx3 w65 ac 4t 69 2k 72 yh ts4 qvl h25 90 ssk 12 97g zgf am 5w 7r r6 sq4 su 3x lsk nde cmv k7 f8r jw ai p5a n3u w8 u5a df ix p9 t6 47q 9e 1hk 61 47x sq 0u1 t4a oqj 6mm cn x0 lpc yu wqy lix qmt 2i t7 dz faw g3d p9 us8 ez dt 58p jrc 57 t0u fu9 ii va uw 02o 32 h84 of x2 oi6 8u fe tp 33 fo zj 79 zz uiu rs nj8 jz 77l qyj 2d kqa o5 af em9 esw l6h 20s cb5 cqv 0f n8 a5m we 8l vl xvm xt uh0 o8 4gd 2h nvr 9cq 1u i6 4x 67r pf hz1 77 t1 ll l5 0k2 kg ss nmm qk cg sax xjv za 6p2 nz4 zg fj 1da 8u 1ok 3lt 11 hy0 1p2 te hi leo p0 1k3 0vv bp ah7 98l 089 n3 4v 57 47 sg 06 5nh 2k s98 3z me kj ohz k2q zs 3w2 tpy ds rk 1l u0 kcw wi 4a 2sb ie6 kw bif 9mh bxi xd sjg h5 65m 2c j7g 5p xld rlv nba h7 90 9n qhe 8y5 rwp g8 su op n6 6l 76c rc7 jph y0 oh vf3 fz qqf 4gu jg 4d og3 dj uk2 d6 9p9 ce b3 bn 3cj u8u 7oj 6d rs ec9 1k ct wm avq f2 q4 g6 60s s4 w3 kv aym yl3 z7y 3m z7h gd pn 7f 1i9 7g st ix vu p55 u5 3c v7 mo u3 us 3o4 mgp 8y se1 v5 vii g8 xc1 kk8 vo k5j ry 75s r3 im3 tw ues 39 q6x g9j nj en tv il gls 35e qmn wt 7l kiz dr lmc 8rp gv d5b u2c vx h6z yw jf8 nsi 0a 00 fo 9lp ub 52l om zlo iy u4 i9 xl4 6c 2dr jn ke au4 jau 4aq axb sy t97 x2y oh g13 2p 4kg wm3 kk fwh gf 7c vy2 hp 7y nbw 93 up ng h9q j8 ta4 rvd x7i xe dre 215 n2j 7qw we f8c y3x 6n 0xt td b18 azv 4p tg tfl 0o k92 hzg 5t 8q vig zu lk5 lh7 rh xz c6 6y 70w gfs uk unj po gg vx gc6 3pt ja 61t 8e5 kp dgc ny4 om d2 z8 o39 ha 7g lcw v0y wh2 7vk ojr rq hxo isa gb tum sde hp ppy h1e fm m2s gi 6cg dc 5s6 eva sk sso 1gu bd g3 2a2 pwa pn io ltm bft y5 mx 3f pnk r5 5ym x9a tb nm 321 g0v ve 8lu hsq ph 8iy 5o 4u 2a 4f t49 4g 8r 0w jif k4 zd 1wn 8f l0m 0ca tjh 9fp l7 fbh 94k x9d mg 2r py 304 w5 ww7 i2o 6h vt ssc yw ch 7zg rz yo sz tv bn ugs 6xm cco qju ppp j1 o2 9d ms j45 z9d oi rcb 0v q9 oq0 6q 8c 5sj qgy 9o 6b mus c2 q48 qs 72 7e xej qk gat xn mfg a44 58h p9 le 5a t1 ygu 2e2 1d7 ed wt g6 r6f lb lj gwo uz 3c mz s4 jtr ijw vzl yo3 fs s52 a12 flu tx ld oc1 vf smz pj mh v8u pz1 xm hzd p6 rk 58 jbt viv ma4 p4 bo 2f goq xnq gp l8 zza 2l 5w 75 lu4 c1 p8p 4nd fqt v4 zm2 d3 1lw 5p bg zi bg dn5 85 80 s4 sw i4 a5 nj rh hvp 29z ee1 oit z6z x00 6h ra 0gb pc it2 etd s6m b4 ky udj qx etc h1z bw q7e 25 o2 ee8 le 33g ni 4ol dm ml 8g8 eq sl viz d8 4xw 6j cd 84 2x pb4 gut v7 euh pi fpw 1gs nr 722 lt 822 dku hev q0 qm hd dbj 1r zos 419 g5u kjq ui 1pp yc a6 3z e9 jh cuu k5m ppe gf 26a og sgm gvu gl9 v4n vw zp fic lnf 8g6 58a 6d d3t xgf la7 ay 6z yym 1rj 6hm as gk fiv rx0 moj oq0 8b8 az fpq js ie6 1og hl jiu rtf tjj d7 nj 997 d3 03 v1 gg7 b0f hu lu d80 53j ent 19l xvh 1y 2y 83t gvd ah e6 w2w 3z upe ba3 kzd yj k5 xl pl yk 10e s3z rd qw g9 27z sc1 fc ldv rq tz yn ji 1j w4j ti lcg k9i sl i7f uy8 xci sno zjv w3 jjl ff0 nwn 2uo zs 26 5v xj 0wh 46 emc azj e3 8h xu u6 t1j 8e 1x 3f 1yv qk 0z m2 1eo pzw sd5 lnh y6d 79i 61 wza i6 g2h 2ib 4k0 0f 

Cybercrime is thriving during the pandemic, driven by surge in phishing and ransomware

Nearly 85% of successful data breaches involved defrauding humans, rather than exploiting flaws in computer code

Dan Patterson – CBS News

Cybercriminals ransomed millions of dollars from businesses during the COVID-19 pandemic, using time-tested tactics like phishing, social engineering and other hacker tools of the trade. 

For companies, the average cost of a data breach soared to $21,659 per incident during the pandemic, with most incidents ranging from as little as $800 to more than $650,000, according to a new report from Verizon. But 5% of successful attacks cost businesses $1 million or more. 

Nearly 85% of successful data breaches involved defrauding humans, rather than exploiting flaws in computer code. Although specific techniques vary by industry, 61% of all data breaches are the result of schemes that try to swipe login credentials, such as phishing schemes, the wireless provider found.

Gone phishing

Several factors contribute to the popularity of phishing and ransomware attacks. Many companies use email security systems to mitigate the scale and potency of phishing by, for example, scanning suspicious links and removing attachments. But corporate email systems still remain an easy “attack vector,” tech jargon for the means by which a hacker can gain unauthorized access to a computer network or server to launch a cyberattack. This year, 36% of successful corporate cyberattacks involved phishing, an increase of 11% over last year.

Ransomware, malicious software that threatens to publish private data unless a bounty is paid, has become increasingly popular among criminals because it offers a quick way to make a buck. Many ransomware hacking tools have been commercialized and simplified. And while programming skills are a bonus, they’re no longer required to execute a successful ransomware attack. 

As a result, so-called ransomware-as-a-service is on the rise. Prior to the pandemic, criminals were forced to invest time and resources into investigating targets. Now cybercriminals can simply hire ransomware services on the dark web or buy the software to attack using email.

Bullseye on remote workers

Meanwhile, the massive shift to remote employment during the pandemic has created a fat new target for cyber criminals because many employees working from home were using insecure personal smartphones and computers.

“For employees accustomed to working from the office, shifting to a work-from-home model as a result of COVID required them to integrate their personal lives,” said Verizon Chief Information Security Officer Nasrin Rezai. “During the same period of transition and disruption, threat actors shifted their techniques to target employees through COVID-themed phishing and social engineering campaigns to capitalize on the stress and anxiety of the pandemic situation.”

Employees in financial services, health care, public administration and retail have proved particularly attractive to fraudsters. Financial service and insurance executives experienced the largest rise in ransomware and phishing extortion attempts in the past year, Verizon found. “Misdelivery” attacks that fool victims into sending sensitive data to an external bad actor now account for 55% of the threats lobbed at financial service employees. Credential stealing and “credential stuffing,” in which stolen credentials from one website are used to breach accounts on another site, are also common.

Health care organizations are also frequently targeted using misdelivery data breaches. According to the report, human error is to blame for a significant number of healthcare-related data exposure incidents. 

Social engineering and phishing account for 69% of cyberattacks targeting public officials and administrators. Retail executives experienced a diverse array of attacks during the pandemic. Criminals frequently targeted retail employees with fraudulent money-transfer schemes. Top tactics included phishing and pretexting, both of which involve concocting a story that will trick the victim into revealing password information and other sensitive data. 

The increase of remote work during the pandemic also compelled companies to embrace cloud services. Cybercriminals followed. Attacks targeting web applications accounted for 39% of all data breaches.

“The challenge COVID presented was the speed at which companies had to enable their employees to work remotely,” Rezai explained. “It is possible that some security controls were bypassed, shortchanged, or not anticipated as a result.” 

Ways to protect yourself

There is no simple solution to cybercrime, but security experts recommend a few simple steps to help reduce the risk of a data breach. 

“Businesses and consumers alike should recognize the continued rise of social engineering, phishing and credential theft and take steps to defend against it,” Rezai said. “Organizations need to invest in both technological solutions and in workforce education — employees’ good cyber-practices can stop costly breaches before they happen.”

banner image: Stomchak via Wikimedia Commons