Cyber-criminals kicked off a spam campaign earlier this month capable of delivering either Locky or FakeGlobe ransomware creating a situation where a single person could be victimised twice in the same attack.
The cyber-attack featured a rarely used trick that has the malicious actors rotating which ransomware is delivered with the initial spam email, Trend Micro reported. The danger here is a victim could end up being hit with both varieties by making a single mistake.
"The campaign is designed in such a way that a victim clicking on a malicious link from the spam email might deliver Locky one hour, and then FakeGlobe the next. This increases the likelihood of secondary infections due to the rotation," Ed Cabrera, Trend Micro's chief cyber-security officer for Trend Micro, told SC Media.
This could result in the victims having to pay twice or worse, lose their data permanently,Trend Micro researchers Julie Cabuhat, Michael Casayuran and Anthony Melgarejo wrote.