Large scale attacks have mushroomed in 2020 according to a new study by a cloud computing firm. According to this study, large scale attacks have seen an increase of 273% in the first quarter as compared to the previous year. As per another report, Ransomware is among the most common types of attacks and is up by 90%.
Memory-mapped I/O to encrypt files are being used by Ransomware operators, making it an arduous task for behavior-based anti-ransomware solutions to monitor malicious activities. WastedLocker Ransomware has been using this technique to encrypt cached documents in memory, which can shield it from behavior-monitoring software, without causing additional disk I/O.
A new element has been identified by researchers in the recent REvil campaigns, wherein compromised networks are scanned for PoS software to make additional money from payment information. In order to strip accounts or sell them on underground forums, attackers can directly use the payment information they have acquired from the attack.
Raising the Ransomware game
- Allegedly, the network of SK Hynix, the RAM and flash memory supplier, a has been infected by Maze Ransomware, and as a proof of infiltration leaked some of the stolen files on their website, holding the victim to ransom.
- A cloud-based warehouse management software provider, SnapFulfil’s services were also targeted by a ransomware attack, disrupting warehouse operations for a minimum of one of its customers. To restore its systems, the UK based organization is working in tandem with the National Cyber Security Centre (NCSC) and the National Crime Agency (NCA).
- One of the brands of British-American cruise operators, Carnival, also suffered due to a ransomware attack as hacker’s accessed guest and employee data and encrypted a portion of the IT systems.
- Forsee Power, a lithium-ion battery systems provider was attacked by the Netwalker ransomware operators and shared a few screenshots of folders containing sensitive data as evidence of the breach on their online blog.
- The makers of Jack Daniels, Brown-Forman lost 1TB of corporate data at the hands of REvil ransomware.
- Some other organizations that suffered security breaches due to ransomware attacks this month include Konica Minolta, SPIE group, R1 RCM, Boyce Technologies, LG, Xerox, and Canon.
While conventional signature-based solutions are used by many organizations to protect their data, files, and systems, to address the threats posed by evolving ransomware, they need to take a more comprehensive approach toward security.
To read more, please check eScan Blog
