Email Held To Ransom

December 14th, 2006: Email security specialist Websense is warning of a new form of cyber-extortion that steals mail and contact data from online email accounts and demands payment to return it.

Dubbed “ransomware” the attacker compromises an online email account such as Hotmail, empties its mail and contacts and leaves a message behind with instructions on how to get the data back after an unspecified payment.

Internet ransom isn’t new by any means, however, previously cases usually involved malware or other malicious code that would be used to infect and lock a victim’s computer before demanding payment for the “cure”.

These new attacks are most likely to happen through phishing, keylogging or other forms of identity theft rather than a piece of malicious code, and highlight the growing problem of identity theft facing the online world.

Cyber-criminals are stepping up their campaigns as Christmas approaches, and as always prevention is better than the cure. Regular password changes, vigilance against spam and caution when using public facilities such as wireless hotspots and internet cafés can all help protect your inbox.

Comment on this story