U.S Tax Payers Targeted By Mount Locker Ransomware

Ransomeware-detected Blogs | IEMLabs
Background of many US dollars banknotes

Ransomware attacks have become very common in 2020. The ransomware group named Mount Locker first came into action in July and it is now preparing to take advantage of the tax season in the U.S. Mount Locker operators have been observed specifically targeting Turbo Tax returns. Turbo tax is a software used for the preparation of American income tax returns.

Cybercriminals responsible for this Mount Locker operation used the double extortion tactic. This is a very common tactic among almost all ransomware families in which the attackers threaten the victims that their data will be leaked online if the ransom is not paid.
Mount Locker had targeted and stolen data from Swedish Tax Agency as well as Sweden’s national legislation and supreme decision-maker Riksdag. Mount Locker specifically targets taxpayers by encrypting files that have specific file extensions, including .tax, .tax2009, .tax2013, and .tax2014—which are all associated with the TurboTax software.

As these attacks have become very common, experts have suggested taxpayers keep backups of TurboTax files and other important documents. They have also warned taxpayers to stay alert always while receiving an email asking for tax details.

By Hrithik Lall

IEMLabs is an ISO 27001:2013 and ISO 9001:2015 certified company, we are also a proud member of EC Council, NASSCOM, Data Security Council of India (DSCI), Indian Chamber of Commerce (ICC), U.S. Chamber of Commerce, and Confederation of Indian Industry (CII). The company was established in 2016 with a vision in mind to provide Cyber Security to the digital world and make them Hack Proof. The question is why are we suddenly talking about Cyber Security and all this stuff? With the development of technology, more and more companies are shifting their business to Digital World which is resulting in the increase in Cyber Crimes.

Leave a comment

Your email address will not be published.

This site is under maintenance,
some features might not work!!!