An unusual strain of virus-like hacker software that exploits computer server vulnerabilities - without requiring human interaction - is a leading example of a new generation of ransomware. 10 things that you need to know about the self-propagating ransomware, or cryptoworms:
1. Ransomware has become a new targeted attack, with thousands of variants emerging over the last six months.
2. Hackers use such ransomware to target large-scale networks and hold data hostage in exchange for bigger payments.
3. Most ransomware still requires a human to click a link or open an infected email attachment, but the age of self-propagating ransomware, or cryptoworms, is right around the corner. Worms are generally virus-like infections that are programmed to spread automatically, without human interaction.
4. In such attacks, hackers target backup files and records, encrypting them to make them an unreadable gobbledygook of characters.
5. To regain access, users without additional safe backups who don't want to lose critical files often pay the ransom, typically $10,000 to $15,000 for an entire network or hundreds to a thousand or so dollars for a single computer.
6. A cryptoworm strain, known as Samas or samsam, hit the MedStar Health hospital chain in the US last month. Samas exploits vulnerabilities giving hackers a way into JBoss application servers that are frequently used by some of the largest corporations. Once inside, the hackers sometimes implant a tool that steals credentials, allowing it to spread through the system, and encrypt scores of digital files along the way.
7. The ability to demand payment in bitcoin, a difficult-to-trace virtual currency not controlled by any country, was basically the birth of ransomware and has helped drive its success since the currency's introduction in 2009.
8. The semi-autonomous nature of this ransomware means that defences, such as maintaining updated and patched systems and safe backups, are more predictable than teaching users to safely use the Internet.
9. Ransomware has become an increasing threat over the last six months, with reported cases on pace to beat last year's numbers.
10. There were 2,453 reports of ransomware hackings to the FBI in 2015 and it totalled a reported loss of $24.1 million, making up nearly one-third of the complaints over the past decade.
(With inputs from AP)
Comments
0 comment