cxo voice
  • Home
  • News
  • Expert Opinion
  • Leaders Talk
No Result
View All Result
  • Home
  • News
  • Expert Opinion
  • Leaders Talk
No Result
View All Result
Leaders Talk and Latest Tech News | CXO VOICE
No Result
View All Result
Home News Cyber Security

Demystifying ransomware – the cyber pandemic

Sharda Tickoo by Sharda Tickoo
June 22, 2020
Reading Time: 5 mins read
ransomware - the cyber pandemic

Image: Sharda Tickoo

Share on FacebookShare on Twitter

With an evolving digital landscape and the rapid proliferation of sophisticated cyberattacks, security can no longer be relegated as an afterthought by organizations. The world continues to witness numerous cyberattacks – from Wannacry to the latest Maze attack, with each attack being more unique and complex than the preceding one, and making businesses succumb to huge losses. What’s common between these attacks, you may ask – they are all ‘ransomware’. This ‘cyber pandemic’, as we would like to call it due to its inherent nature of spreading far and wide, has spread its wings across countries leading to concerns around the security of data.

Its enormity can be gauged from the fact that almost 62% of organizations globally have experienced a ransomware attack in the past year, as reported by an industry survey by CyberEdge. And, which will likely continue to do so in the foreseeable future, with newer and stealthier attacks underway.

A case in point is the recent Maze ransomware, which created headlines the world over. What’s unique about this ransomware is that it not only encrypts the data but steals it, and with the threat actors threatening to publish the data, which makes it exponentially more devastating. On why organizations should look at ransomware as the proverbial ‘elephant in the room’ and not just shelve the topic aside, let’s delve a bit in into demystifying few of the aspects, which include – ransomware transmission; whether it’s ever a good idea to pay up a ransom, and if ‘prevention’ might be the best ‘vaccine’ in dealing with it.

Infectious modes of transmission

How lethal is ransomware, and why do many of the cyber experts still consider it to be the numero-uno cyber threat even today? All the findings and the industry data validate this fact, with one such finding by Cybersecurity Ventures, a global cybersecurity research firm predicting that – ‘globally, businesses in 2021 will fall victim to a ransomware attack every 11 seconds, down from every 14 seconds in 2019.’ Its proliferation has further been accentuated because of the COVID-19 outbreak, as more and more employees continue to work remotely, and there is less protection due to remote access. It is likely that the users are more susceptible to falling prey to COVID-19 themed malicious emails.

What’s the modus operandi of a ransomware attack and its transmission? Phishing emails are the most common way through which ransomware penetrate an organization – as attachments masquerading as a file which victims tend to trust. However, there are several other vectors through which ransomware can also permeate, which includes endpoints, cloud workloads, networks, web gateways, files, mobile phones and even instances seen across Linux servers. 

Typically, ransomware encrypts data using different file formats or extensions with different Advanced Encryption Standard (AES) keys, and hence decryption becomes almost impossible.

ADVERTISEMENT

‘Ransom’ in ransomware – not a good thing

This is a perennial question, whether to comply with the demands of the ransomware actor or not. It’s important for an organization that has been breached to understand the attackers’ unseen motive, which in many cases is to get a quick return on investment. According to a joint study by PwC India and Data Security Council of India (DSCI), the data breach cost in India has gone up by 8% in 2 years, which is alarming. We notice that many-a-times organizations are ready to pay a ransom to speed up the recovery of their data and systems. However, it’s important to note that paying it does not guarantee that the users will get the decryption key or unlock tool required to regain access to the infected system or hostage files and may only further encourage threat actors to attack organizations. As long as the ransom scheme, or the ‘cyber heist’ as we like to call it, continues to be profitable, cybercriminals will continue to leverage it on vulnerable targets. 

Prevention and Remediation – Keys to defend

In the current parlance, to deal with ransomware an occasional intake of medicine won’t suffice, and a ‘vaccine’ is the order of the day. This is where ‘prevention’ could be the panacea or much needed vaccine that organizations should prescribe to rather than looking at knee-jerk reactive approach to ransomware attacks, which is the current practice. 

Despite the prevalent ideals of digital transformation, lack of basic security hygiene, legacy systems with outdated operating systems and unpatched vulnerabilities are still a reality. As per Gartner’s analysis of clients’ ransomware preparedness, globally, over 90% of ransomware attacks are preventable. There is no silver bullet when it comes to stopping ransomware. As part of a layered defense strategy against ransomware, organizations should have multiple security controls in place across email, endpoints, networks, and servers. Since these are correlated, centralized security visibility across all these layers from a single console helps to reduce IT complexity and to stay on top of the ransomware threat.

Let’s observe some of the best practices that organizations and users can adopt to strengthen their defenses against ransomware and mitigate risks:

  1. Back up important files using the 3-2-1 rule—create 3 backup copies on 2 different media with 1 backup in a separate location.
  2. Enable virtual patching, especially for operating systems that are no longer supported by the vendor.
  3. Ensure emails are safeguarded with sandboxing technology and anti-spam solution, and there is an advance scanning & detection technology in place for mail endpoint & network traffic.
  4. Implement multi-factor authentication and least privilege access policies to prevent abuse of tools that can be accessed via admin credentials, like RDP, PowerShell and developer tools.
  5. Regularly update software, programs, and applications to protect against the latest vulnerabilities.
  6. Increase awareness of how ransomware spreads, i.e., through spammed emails and attachments.
  7. Avoid opening unverified emails or clicking links embedded in them.

The hard question that CISOs, CTOs, CIOs and all the security and IT managers should ask themselves is that, in the eventuality of a newer ransomware threat, are they really prepared well enough to deal with it.


  • Security While Working Remotely [Interview]
  • Combating cyber threats: 10 security tips in the COVID-19 era
  • Security in the Cloud Remains Challenged by Complexity and Shadow IT: IBM

Sharda Tickoo

Sharda Tickoo

Sharda Tickoo, Director – Technical, Trend Micro India

Related Posts

Cybersecurity While Working from Home amid Coronavirus outbreak
Cyber Security

Hackers targeted Google, Microsoft products via zero-day exploitation in 2022: Report

March 22, 2023
AI chatbots
Cyber Security

Avoid AI chatbots that don’t appear on the company’s website or app: warn researchers

March 14, 2023
security
Cyber Security

US issued new cybersecurity strategy, puts onus on Big Tech firms

March 3, 2023
80% of Indian firms face cyber attacks due to miscommunication in IT security
Cyber Security

80% of Indian firms face cyber attacks due to miscommunication in IT security

February 20, 2023
Cyber Criminals
Cryptocurrency

Cyber agency warns of huge global attack

February 6, 2023
How to remove a virus from a phone?
Cyber Security

How to remove virus from phone?

January 23, 2023
Zero click attacks
Cyber Security

T-Mobile data breach, 37 mn customer’s data stolen

January 20, 2023
cyber security initiatives by Government of India
Cyber Security

Hackers accessed employees’ data in ransomware attack: The Guardian

January 12, 2023
Load More
Leave Comment
ADVERTISEMENT

Expert Views

SaaS Rising: India is Ready for its Next IT Moment
Opinion

SaaS Rising: India is Ready for its Next IT Moment

January 31, 2023
Technology remains the main driver for insurance companies to scale and grow in 2023
News

Technology remains the main driver for insurance companies to scale and grow in 2023

January 10, 2023
Supply Chain Attacks – The Open Source Effect
Cyber Security

Supply Chain Attacks – The Open Source Effect

January 3, 2023
Technology Trends to Watch in 2023
Opinion

Top Technology Trends to Watch in 2023

December 21, 2022
Startups should embrace a down-round and restructure their firms: Flipkart CEO
Business

Startups should embrace a down-round and restructure their firms: Flipkart CEO

November 22, 2022

Latest Updates

AI-driven B2B marketplace Fashinza raises $30 mn to enhance supply chain

AI-driven B2B marketplace Fashinza raises $30 mn to enhance supply chain

by IANS
22 hours ago

SUN Mobility and Zomato collaborate to power 50K electric 2-wheelers for food delivery

SUN Mobility and Zomato collaborate to power 50K electric 2-wheelers for food delivery

by IANS
2 days ago

Will never share US user data with China, says TikTok CEO

TikTok CEO says, will never share US user data with China

by IANS
5 days ago

China's smartwatch shipments declined by 9.3% in 2022: Report

China’s smartwatch shipments declined by 9.3% in 2022: Report

by IANS
6 days ago

Hybrid workplace

78% of professionals heading back to the office by choice

by IANS
6 days ago

Adobe

Adobe unveils generative AI to enhance customer experiences

by IANS
1 week ago

Get Latest Update

Subscribe to our mailing list to receives newsletter direct to your inbox!

ADVERTISEMENT

Leaders Inerviews

Rising cyber attacks pose a serious threat to Indian SMBs, says Zakir Hussain
Cyber Security

Rising cyber attacks pose a serious threat to Indian SMBs, says Zakir Hussain

-
Axis Bank's Cloud-driven digital banking solutions
Banking

Axis Bank doubles down on cloud based digital banking solutions

-
digital-first strategy
Banking

Jana Small Finance Bank’s digital-first strategy enhances customer experience

-
email security interview
Cyber Security

What is email security? and its importance in securing enterprise networks

-

Entrepreneur

Samsung Electronics appoints its first female president

Inspiring Women Entrepreneurs in India (2022)

Technology Adoption For Entrepreneurs

Volunteering management is the need of the Hour

We bring business leaders' opinions and unique ideas on what’s happening in the market and its impact. Also, get the daily news, analysis, and insights.

Connect with us

Easy Links

  • Cryptocurrency
  • Event
  • Blockchain
  • Press Release
  • Resources & Downloads

Write Us

contact@cxovoice.com
  • Home
  • About
  • Contact Us
  • Advertise
  • Privacy & Policy
  • Feedback

© 2023 CXO VOICE

No Result
View All Result
  • Home
  • News
  • Expert Opinion
  • Leaders Talk

© 2023 CXO VOICE

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

Our Spring Sale Has Started

You can see how this popup was set up in our step-by-step guide: https://wppopupmaker.com/guides/auto-opening-announcement-popups/