{"id":16028,"date":"2020-09-11T18:38:32","date_gmt":"2020-09-11T21:38:32","guid":{"rendered":"https:\/\/www.kaspersky.com.br\/blog\/?p=16028"},"modified":"2020-09-14T18:27:11","modified_gmt":"2020-09-14T21:27:11","slug":"spam-with-bomb-threat","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.br\/blog\/spam-with-bomb-threat\/16028\/","title":{"rendered":"Spam com amea\u00e7as de bomba\u00a0"},"content":{"rendered":"<p><span data-contrast=\"auto\">No final de agosto, nossas armadilhas de\u00a0<\/span><span data-contrast=\"auto\">e-mail\u00a0<\/span><span data-contrast=\"auto\">come\u00e7aram a captar algumas mensagens\u00a0<\/span><span data-contrast=\"auto\">de chantagem\u00a0<\/span><span data-contrast=\"auto\">incomuns. Nel<\/span><span data-contrast=\"auto\">a<\/span><span data-contrast=\"auto\">s, os cibercriminosos afirmam ter plantado uma bomba carregada com\u00a0<\/span><span data-contrast=\"auto\">Tetryl<\/span><span data-contrast=\"auto\"> em algum lugar do escrit\u00f3rio do destinat\u00e1rio e dizem que ser\u00e1 detonada a menos que um resgate seja pago ou se\u00a0<\/span><span data-contrast=\"auto\">qualquer\u00a0<\/span><span data-contrast=\"auto\">atividade policial for observada perto do pr\u00e9dio.<\/span><\/p>\n<p><span data-contrast=\"auto\">Na\u00a0<\/span><span data-contrast=\"auto\">verdade <\/span><span data-contrast=\"auto\">n\u00e3o h\u00e1 bomba <\/span><span data-contrast=\"auto\">nenhuma\u00a0<\/span><span data-contrast=\"auto\">\u2013 \u00e9 uma amea\u00e7a vazia enviada indiscriminadamente para empresas de todos os\u00a0<\/span><span data-contrast=\"auto\">portes<\/span><span data-contrast=\"auto\">. Os cibercriminosos contam com\u00a0<\/span><span data-contrast=\"auto\">o susto d<\/span><span data-contrast=\"auto\">a v\u00edtima para uma resposta autom\u00e1tica, porque com tempo para pensar,<\/span><span data-contrast=\"auto\"> perceber\u00e3o que pagar o resgate n\u00e3o resolve nada \u2013 se houver uma bomba no pr\u00e9dio, n\u00e3o vai a lugar nenhum.<\/span><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'><br>\n<\/span><\/p>\n<div style=\"width: 595px\" class=\"wp-caption aligncenter\"><img decoding=\"async\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2020\/09\/09074900\/bomb-threat-spam-letter.png\" alt=\"\" width=\"585\" height=\"493\"><p class=\"wp-caption-text\">Mensagem:\u00a0A pessoa que recrutei\u00a0escondeu uma bomba (Tetryl) no pr\u00e9dio onde seu neg\u00f3cio \u00e9 conduzido.\u00a0Ela foi montada\u00a0de acordo com minhas instru\u00e7\u00f5es.\u00a0\u00c9\u00a0pequena e\u00a0est\u00e1 muito bem coberta, \u00e9 imposs\u00edvel danificar a estrutura do edif\u00edcio por este artefato explosivo, mas haver\u00e1 muitos feridos no caso de sua explos\u00e3o.\u00a0 <i><span data-contrast=\"auto\">Minha equipe\u00a0<\/span><\/i><i><span data-contrast=\"auto\">est\u00e1 controlando a situa\u00e7\u00e3o ao redor do pr\u00e9dio.\u00a0<\/span><\/i><i><span data-contrast=\"auto\">S<\/span><\/i><i><span data-contrast=\"auto\">e ele\u00a0<\/span><\/i><i><span data-contrast=\"auto\">perceberem<\/span><\/i><i><span data-contrast=\"auto\">\u00a0qualquer atividade suspeita ou\u00a0<\/span><\/i><i><span data-contrast=\"auto\">de um\u00a0<\/span><\/i><i><span data-contrast=\"auto\">policial, o dispositivo explodir\u00e1.\u00a0<\/span><\/i><i><span data-contrast=\"auto\">P<\/span><\/i><i><span data-contrast=\"auto\">osso cancela<\/span><\/i><i><span data-contrast=\"auto\">r,\u00a0<\/span><\/i><i><span data-contrast=\"auto\">se voc\u00ea pagar<\/span><\/i><i><span data-contrast=\"auto\">\u00a0por isso<\/span><\/i><i><span data-contrast=\"auto\">. Voc\u00ea me paga 20.000 $ em bitcoin e o explosivo n\u00e3o detonar\u00e1, mas n\u00e3o tente trapacear, garanto\u00a0<\/span><\/i><i><span data-contrast=\"auto\">o cancelamento apenas<\/span><\/i><i><span data-contrast=\"auto\">\u00a0ap\u00f3s 3 confirma\u00e7\u00f5es na rede blockchain.<\/span><\/i><\/p><\/div>\n<p><span data-contrast=\"auto\"><br>\nEm termos de estrutura e m\u00e9todo de entrega, este tipo de chantagem \u00e9 a continua\u00e7\u00e3o l\u00f3gica das <\/span><a href=\"https:\/\/www.kaspersky.com.br\/blog\/extortion-spam\/11200\/\" target=\"_blank\" rel=\"noopener\"><span data-contrast=\"none\">mensagens\u00a0<\/span><span data-contrast=\"none\">fraudulentas que amea\u00e7am publicar informa\u00e7\u00f5es privadas dos usu\u00e1rios<\/span><\/a><span data-contrast=\"auto\">. Os\u00a0<\/span><span data-contrast=\"auto\">cibercriminosos<\/span><span data-contrast=\"auto\">\u00a0n\u00e3o est\u00e3o escolhendo alvos espec\u00edficos para tais amea\u00e7as; eles usam listas de\u00a0<\/span><span data-contrast=\"auto\">mailing\u00a0<\/span><span data-contrast=\"auto\">enormes e esperam que pelo menos alguns dos destinat\u00e1rios levem a amea\u00e7a a s\u00e9rio para pagar.<\/span><\/p>\n<p><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'>A<\/span><span data-contrast=\"auto\">\u00a0principal diferen\u00e7a na vers\u00e3o \u201cexplosiva\u201d \u00e9 o aumento do valor do resgate. <\/span><span data-contrast=\"auto\">A maioria recebe amea\u00e7as de aproximadamente<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">US$ 500 e US$\u00a0<\/span><span data-contrast=\"auto\">1.000 em bitcoin (o m\u00e1ximo que vimos foi em torno de US$ 5.000), para empresas supostamente\u00a0<\/span><span data-contrast=\"auto\">armadas\u00a0<\/span><span data-contrast=\"auto\">com explosivos a quantia sobe para cerca de US$ 20.000.<\/span><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">A maior parte dos e-mails fraudulentos \u00e9 escrita em alem\u00e3o, mas tamb\u00e9m encontramos vers\u00f5es em ingl\u00eas. Esse lote de ataques parece, at\u00e9 agora, ser obra de apenas uma entidade, mas se as v\u00edtimas sucumbirem \u00e0 amea\u00e7a e transferirem dinheiro, o m\u00e9todo certamente atrair\u00e1 imitadores.<\/span><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Outra caracter\u00edstica potencialmente distintiva dessa nova onda de e-mails de extors\u00e3o \u00e9 a puni\u00e7\u00e3o <\/span><span data-contrast=\"auto\">potencial: a chantagem \u00e9 um crime em si, mas alguns pa\u00edses t\u00eam leis\u00a0<\/span><span data-contrast=\"auto\">espec\u00edficas<\/span><span data-contrast=\"auto\">\u00a0para falsas amea\u00e7as de bomba.<\/span><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/p>\n<h2><span data-contrast=\"none\">O que fazer<\/span><span data-contrast=\"none\">?<\/span><span data-ccp-props='{\"201341983\":0,\"335559738\":40,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">Para evitar se tornar v\u00edtima de qualquer <\/span><span data-contrast=\"auto\">golpe<\/span><span data-contrast=\"auto\">\u00a0de ransomware, recomendamos ficar atento e seguir algumas dicas simples:<\/span><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">N\u00e3o entre em p\u00e2nico \u2013 e nunca pague<\/span><span data-contrast=\"auto\">\u00a0nada<\/span><span data-contrast=\"auto\">. Mesmo se a amea\u00e7a fosse real, ceder a ela n\u00e3o resolveria o problema.<\/span><span data-ccp-props='{\"134233279\":true,\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-aria-posinset=\"2\" data-aria-level=\"1\"><span data-contrast=\"auto\">Mesmo se voc\u00ea suspeitar ou saber que uma amea\u00e7a \u00e9 falsa, n\u00e3o responda; isso apenas confirmaria aos invasores que seu endere\u00e7o de e<\/span><span data-contrast=\"auto\">\u2013<\/span><span data-contrast=\"auto\">mail \u00e9 v\u00e1lido e que a mensagem foi lida. E isso apenas aumentaria o fluxo de mensagens fraudulentas e outros spams.<\/span><span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-aria-posinset=\"3\" data-aria-level=\"1\"><span data-contrast=\"auto\">Use solu\u00e7\u00f5es de seguran\u00e7a confi\u00e1veis \u200b\u200bque identificam automaticamente e-mails perigosos e os bloqueiam antes que cheguem \u00e0s caixas de entrada dos funcion\u00e1rios.<\/span><span data-ccp-props='{\"134233279\":true,\"201341983\":0,\"335559739\":0,\"335559740\":240}'>\u00a0<\/span><\/li>\n<\/ul>\n<p><span data-contrast=\"auto\">Nossas solu\u00e7\u00f5es de seguran\u00e7a de <\/span><span data-contrast=\"auto\">e-mail<\/span><span data-contrast=\"auto\">\u00a0corporativo usam algoritmos heur\u00edsticos para detectar esses e-mails. Particularmente bons nesta tarefa s\u00e3o\u00a0<\/span><span data-contrast=\"auto\">o <a href=\"https:\/\/www.kaspersky.com.br\/small-to-medium-business-security\/microsoft-office-365-security?icid=br_kdailyplacehold_acq_ona_smm__onl_b2b_kasperskydaily_wpplaceholder____kso365___\" target=\"_blank\" rel=\"noopener\">Kaspersky Security for Microsoft Office 365<\/a><\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">e o<\/span><span data-contrast=\"auto\"> Kaspersky Security for Mail Server,\u00a0<\/span><span data-contrast=\"auto\">parte do <a href=\"https:\/\/www.kaspersky.com.br\/small-to-medium-business-security?icid=br_kdailyplacehold_acq_ona_smm__onl_b2b_kasperskydaily_wpplaceholder_______\" target=\"_blank\" rel=\"noopener\">Kaspersky Total Security for Business<\/a><\/span><span data-contrast=\"auto\">.<\/span><br>\n<span data-ccp-props='{\"201341983\":0,\"335559739\":0,\"335559740\":240}'><input type=\"hidden\" class=\"category_for_banner\" value=\"kesb-trial\"><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cibercriminosos est\u00e3o\u00a0tentando extorquir dinheiro de empresas amea\u00e7ando explodir seus escrit\u00f3rios com bombas.<\/p>\n","protected":false},"author":2598,"featured_media":16030,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1119,1655],"tags":[218,131,1185,2436,1125,117],"class_list":{"0":"post-16028","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-business","8":"category-enterprise","9":"tag-ameacas","10":"tag-bitcoin","11":"tag-business","12":"tag-chantagem","13":"tag-e-mail","14":"tag-spam"},"hreflang":[{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/spam-with-bomb-threat\/16028\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/spam-with-bomb-threat\/21889\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/spam-with-bomb-threat\/17363\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/spam-with-bomb-threat\/8577\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/spam-with-bomb-threat\/23279\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/spam-with-bomb-threat\/21465\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/spam-with-bomb-threat\/20077\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/spam-with-bomb-threat\/23832\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/spam-with-bomb-threat\/22779\/"},{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/spam-with-bomb-threat\/8807\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/spam-with-bomb-threat\/36984\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/spam-with-bomb-threat\/15636\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/spam-with-bomb-threat\/13968\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/spam-with-bomb-threat\/25105\/"},{"hreflang":"zh","url":"https:\/\/www.kaspersky.com.cn\/blog\/spam-with-bomb-threat\/11973\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/spam-with-bomb-threat\/29198\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/spam-with-bomb-threat\/26070\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/spam-with-bomb-threat\/28183\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/spam-with-bomb-threat\/28015\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.br\/blog\/tag\/business\/","name":"Business"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/posts\/16028","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/users\/2598"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/comments?post=16028"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/posts\/16028\/revisions"}],"predecessor-version":[{"id":16031,"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/posts\/16028\/revisions\/16031"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/media\/16030"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/media?parent=16028"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/categories?post=16028"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.br\/blog\/wp-json\/wp\/v2\/tags?post=16028"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}