Warning over ‘BazarCall’ ransomware threat

Cyber insurance provider CFC has warned of an emerging method of ransomware attack – dubbed ‘BazarCall’ – which is targeting small businesses.

According to CFC’s in-house cyber threat analysis team, the BazarCall attack method has been growing in use among well-known ransomware groups and is responsible for an increasing number of malware infections observed over the past three months.

The BazarCall method subverts common cyber security controls by utilizing a phishing email that tricks the victim into phoning a call centre rather than clicking a link and instructing them to download malicious software and infect their own computers. From there, the hackers can carry out their ransomware attacks undetected.

Tom Bennett, CFC’s cyber threat analysis team leader, said: “Making the victim do all the heavy lifting is a notable shift from the more traditional hacking attack vectors. Unfortunately, most workplace education around phishing emails doesn’t warn about this type of social engineering, so it represents a significant new threat.”

Bennett revealed that BazarCall accounted for nearly 10% of the malware incidents CFC has detected across its own portfolio over the last three months but the company has so far been able to prevent cyber claims stemming from these infections.

“To date we have detected and removed every case of this malware within our impacted customers, at no cost to them,” added Bennett. “But we must all remain vigilant – cyber criminals are motivated, well-funded and well-organized. And they are constantly revising their attacks. That’s why we’ve built our dedicated cyber security team to help our customers protect themselves and prevent incidents before they happen.”

    Share Story:


Cyber risk in the transportation industry
The connected nature of the transport and logistics industries makes them an attractive target for hackers, with potentially disruptive and costly consequences. Between June 2020 and June 2021, the transportation industry saw an 186% increase in weekly ransomware attacks. At the same time, regulations and cyber security standards are lacking – creating weak postures across the board. This podcast explores the key risks. Published April 2022.

Political risk: A fresh perspective
CIR’s editor, Deborah Ritchie speaks with head of PCS at Verisk, Tom Johansmeyer about the confluence of political, nat cat and pandemic risks in a world that is becoming an increasingly risky place in which to do business. Published February 2022.