"Insurance Giant CNA Hit With Novel Ransomware Attack"

A novel ransomware attack forced insurance giant CNA to take systems offline and temporarily shutter its website.  The Chicago-based company is the seventh-largest commercial insurance provider in the world. The company stated that the attack caused a network disruption and impacted certain CNA systems, including corporate email.  The attack occurred earlier this week and leveraged a new variant of the Phoenix CryptoLocker malware.  Cryptolockers are an oft-used type of ransomware that immediately encrypt files on the machines they attack and demand a ransom from the victims in exchange for the key to unlocking them. The threat actors behind Phoenix CryptoLocker are likely the cybercrime group Evil Corp, which recently resurfaced after taking a short hiatus from cybercriminal activity.  

Threatpost reports: "Insurance Giant CNA Hit With Novel Ransomware Attack"