Wrapping up the end of Q2, 93% of all ransomware phishing emails contained some sort of encryption to extract privileged information. That number is up 53% from the fiscal year ending last December in 2015, according to a report released today by PhishMe.

The Growing Threat of Ransomware

Ransomware tools are easier than ever to access and send to your inbox in the blink of an eye. There are varieties of ransomware that have seen considerable growth. Locky and TeslaCrypt, but recently PhishMe is reporting increased popularity in “soft target” messages that reach users through unpatched servers directly targeting businesses and organizations. One of the more notable victims, MedStar Health experienced their very own malicious attack and came extremely close to forfeiting over $18,000 USD to restore their entire network.

These phishing messages go unnoticed because of how general they appear in your inbox, and they’re not targeting a particular job title or industry. One of the more popular emails contains an attached resume and salutation just like any other hopeful candidate, and even billing and shipment information for a fake purchase.

Who Are the Targets of Ransomware?

End Users

With so many possibilities of vulnerability to devices, end-users are the most heavily targeted. The ways users can be reached digitally are endless. End users who aren’t inclined to learn about potential threats are putting your business at risk. Compromising your daily operations, with just a simple exchange of sensitive data on an unsecured network. System downtime becomes an increasingly real consequence.

Healthcare Organizations

Perhaps a threat where ransomware could cost lives, emergency service cyber-attacks can handcuff medical centers. MedStar Health, a network of 10 hospitals was seized in an outbreak from opening just one web application. Avoiding questionable websites and upgrading your firewall ensures you are guarded against the latest threats.

The targeted healthcare hack represents a new trend that engages users in a different sequence of events. Instead of downloading the virus through an attachment, unpatched applications distributed by Red Hat JBoss have been affected.