Ransomware is a type of malware (malicious software) that denies access to your system and personal information, usually by encrypting it, and demands a payment (ransom) to get your access back. -Sources: Crowdstrike, NBT.
Business Email Compromise, or BEC, is a cyberattack in which criminals send and email message that appears to come from a known source making a legimate request. The attacker attempts to impersonate someone you know by taking over their email account or spoofing your email domain with the goal of stealing money from you or your customer. -Sources: FBI, NBT
Credential Stuffing is a cyberattack in which credentials obtained from a data breach on one service are used to attempt to log in to another unrelated service. Credential Stuffing relies on the fact the many people reuse the same password across accounts. -Sources: Cloudflare, NBT.
Drive by Download attacks specifically refer to malicious programs that install to your devices — without your consent. The download is unintentional and does not require you to press download, click or open an attachment. -Source: Kaspersky
Tech support scammers want you to believe you have a serious problem with your computer, like a virus. They want you to pay for tech support services you don't need, to fix a problem that doesn’t exist. They often ask you to pay by wiring money, putting money on a gift card, prepaid card or cash reload card, or using a money transfer app because they know those types of payments can be hard to reverse. -Source: FTC
Remote access scams are related to tech support scams in that the scammer may call you to report a computer or internet problem that they can help you with. Their goal is to get you to provide remote access to your computer via a legitimate remote access tool such as TeamViewer, LogMeIn, Go-To-Meeting, or a similar remote desktop software. Once given permission to take over the computer, the scammer attempts to steal personal and financial information which can later be used to defraud the victim. -Sources: Biocatch, Anydes
Phishing is the practice of sending emails purporting to be from reputable companies to induce individuals to reveal personal information, such as passwords and credit card numbers. Most cyber incidents start with malicious emails.