Infecting insurance firms with ransomware… for dummies

Graham Cluley
Graham Cluley @

 @grahamcluley.com
 / grahamcluley

Infecting insurance firms with ransomware... for dummies

  1. Ransomware gang infects insurance company, but DOESN’T install ransomware. Instead it steals information about insurance company’s clients, learns which have cyberinsurance, and how much insurance cover they have.
  2. Gang takes list of insured companies and goes through it – it’s a rolodex of ransomware – infecting each one with ransomware. They tell the victims that they know how much cyberinsurance they have, and suggest they pay up quick.
  3. Once gang has gone through the entire list, it goes back to where it began – with the original hacked insurance company, and installs its ransomware there too.
  4. Gang finds a new insurance company to hack, and so it continues…

By the way, ransomware gangs are already doing this…

Graham Cluley
Graham Cluley

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and hosts the popular "Smashing Security" podcast. Follow him on LinkedIn, Bluesky and Mastodon, or drop him an email.

You may also like...

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.