Fake PayPal Site Spreads Nemty Ransomware

A web page pretending to offer an official application from PayPal is currently spreading a new variant of Nemty ransomware to unsuspecting users. This latest occurrence of Nemty was observed on a fake PayPal page that promises to return 3-5% from purchases made through the payment system.

Experts Comments

September 09, 2019
Roy Rashti
Cybersecurity
Bitdam
Such an attack could and should be blocked by a security solution at each and every stage: pre-delivery, when the fake page is being browsed, when the executable is downloaded to the computer and when the executable begins operating. Without such a solution in place, it is imperative that users be especially careful when clicking any link they receive. This approach is unique to what other cybercriminals are currently doing in that phishing attacks typically distribute malware via email.....Read More
Such an attack could and should be blocked by a security solution at each and every stage: pre-delivery, when the fake page is being browsed, when the executable is downloaded to the computer and when the executable begins operating. Without such a solution in place, it is imperative that users be especially careful when clicking any link they receive. This approach is unique to what other cybercriminals are currently doing in that phishing attacks typically distribute malware via email rather than being sent directly by fraudulent websites. Security solutions, which are designed seek out this more ‘traditional’ approach form of phishing, are much less likely to detect this kind of attack. The scam is also presented to be highly alluring and appear credible to the unsuspecting and unprotected user.  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.