Related
How AI is shaping the ransomware threat landscape
Rick Vanover 16 Jul 2024
Ransomware: What is an organisation's obligation to prevent fraud?
Karl Blom & Laone Setshedi 6 Nov 2023
Unlike other forms of malware, ransomware is directly focussed on financial gain. Once a corporate (or personal) system is infected with the malicious code, cyber criminals can encrypt data, demand payment that usually takes the form of bitcoins, and then release that data back to the organisation or individual.
According to Eset South Africa, paying for ransom is a dangerous option: “For starters, there is no guarantee your files will be returned or that the malware will be removed. Will the hacker exploit you again in six months’ time?"
So, is ransomware the new reality that organisations and individuals are faced with in the online world?
Fortunately, awareness against ransomware is growing. The Dutch National Police, Europol, Intel Security, and Kaspersky Lab have joined forces to launch an initiative called No More Ransom, a new step in the cooperation between law enforcement and the private sector to fight ransomware together. No More Ransom is an online portal that informs the public about the dangers of ransomware and helps victims recover their data without having to pay ransom to cyber criminals.
“The biggest problem with ransomware is that when users have precious data locked down, they readily pay criminals to get it back. That boosts the underground economy, resulting in an increase in the number of new players and a number of attacks. We can only change the situation if we coordinate our efforts to fight against ransomware. The appearance of decryption tools is just the first step on this road. We expect this project to be extended, and soon there will be many more companies and law enforcement agencies from other countries and regions fighting ransomware together,” states Jornt van der Wiel, security researcher at the Global Research and Analysis Team of Kaspersky Lab.
Increasingly, other large technology companies and government organisations are using special teams focused on not only better pro-active protection, but also on going on the offensive against malicious users and groups.
These so-called Red Teams or Red Forces act as independent groups that challenge all aspects of the cyber security of a company. This sees them carrying out trial attacks on themselves - and using the learnings/insights to try and take out the hackers directly by infecting their systems.
The battle lines have been drawn. Now is the time to act.