Abnormal Security reported on a new form of malicious ransomware activity whereby the attacker solicits an organization’s inner staff, bribing them to install malware on critical systems. Solicitation emails, Abnormal Security noted, seemingly originate with the DemonWare ransomware group.
The website noted that users have been offered as much as $1 million in bitcoin – or 40 percent of a supposed $2.5 million ransomware demand – in exchange for infecting work servers and networks with the dangerous software, either in-person or remotely.
Abnormal Security noted that the threat actor is especially seemingly targeting users who are “not very familiar with digital forensics or incident response investigations.” Individuals are, obviously, advised against responding if contacted.