The IRS has issued an alert after a recent ransomware phishing scam surfaced. According to their statement, the email impersonates the IRS and FBI with a link to download a questionnaire. However, the link contains a ransomware payload and will encrypt your critical business data rendering it useless.
There are no reports yet on the specific ransom amount, but as we found in Datto’s State of the Channel Ransomware Report, even if you pay the ransom (which the IRS advises against), there’s no guarantee your data will be returned.
Therefore, your first line of defense should include understanding how to detect a phishing email and avoid falling victim to attacks. According to the IRS, victims should report any ransomware attempt or attack to the FBI at the Internet Crime Complaint Center and forward any IRS-themed scams to email@example.com.
In addition, the IRS has a few recommendations for dealing with cybersecurity threats like these:
Ensure employees are aware of ransomware
Update security patches and antivirus software
Back up data regularly and verify the integrity of those backups
To learn more about all things cybersecurity and how to avoid attacks, check out our Cybersecurity Made MSPeasy Toolkit. This resource features tips and templates for total data protection, including the best practices from leading MSPs with all things IT security.