Scammers Shift Focus to Personally Identifiable Information (PII) Theft
Scammers are adapting their tactics and moving away from bitcoin scams to target Personally Identifiable Information (PII) theft. This shift in focus is evident in the rise of traditional technology support scams, as reported by Malwarebytes’s Cybercrime tactics and techniques: Q2 2018. The implementation of the General Data Protection Regulation (GDPR) is believed to be a contributing factor to this trend, with stolen PII becoming more valuable on the black market.
Phishing Scams on the Rise
One alarming case highlighted in the report involved a victim falling for a phishing scam, allowing the scammer access to their computer and resulting in stolen email credentials. This serves as a stark reminder of the dangers posed by cybercriminals seeking to exploit individuals for their personal information.
Evolving Phone Scam Tactics
While awareness of phone scams has increased among the public, scammers are finding new ways to target unsuspecting victims. Tactics such as routing calls directly to voicemail to prompt a callback, abruptly hanging up on skeptical victims, and requesting a small upfront payment before executing the scam are still prevalent. It is crucial for individuals to remain vigilant and cautious when receiving unsolicited calls.
Debunking the GDPR Theory
Contrary to the belief that GDPR has made PII more attractive to steal, cybersecurity expert Eerke Boiten argues that the notion is unfounded. Boiten points out that data retention limitations have long been a part of data protection regulations, dating back several decades. He believes that the value of stolen personal data remains consistent for criminals, regardless of regulatory changes.
Decline in Cryptomining Detections
Malwarebytes’s report also highlights a decrease in cryptomining detections, despite the prevalence of this threat in both business and consumer environments. Criminals are reportedly not reaping the expected rewards from cryptomining activities, leading to a decline in its prominence. The market trends in cryptocurrency are expected to influence the future of cryptomining activities.
Enterprise Systems at Risk
Although cryptomining detections fluctuated throughout 2018, enterprise systems remain vulnerable to these attacks. The report suggests that ongoing campaigns may attempt to spread cryptomining tools in the coming months. However, a decline in business detections is anticipated as we progress into the next quarter, mirroring the observed trend in consumer environments.
Android Cryptominers Decline
In addition to the overall decrease in cryptomining detections, Android cryptominers also saw a decline in May, with a 16% drop from the previous month. Despite this decrease, there were still 244% more miner detections compared to the first quarter of the year. This indicates that mobile devices are not immune to the threat of cryptomining activities.
Overall, the evolving landscape of cybercrime demands constant vigilance and proactive measures to safeguard personal information and digital assets from malicious actors.