What you should know about Ransomware Malware
Ransomware Malware is capable of shutting down a business and many other things. It can cause loss of vital information. This happens to vulnerable system with outdated anti-virus and operating systems. This virus which was recently released on the web is geared towards hijacking the system of unsuspecting victims and have them buy their access back with ridiculous amounts of money. High profile organizations and rich individuals who have confidential data and money are mostly the targets.
According to Trend Micro, Ransomware is a type of malware that prevents or limits users from accessing their system, either by locking the system's screen or by locking the users' files unless a ransom is paid. More modern ransomware families, collectively categorized as crypto-ransomware, encrypt certain file types on infected systems and forces users to pay the ransom through certain online payment methods to get a decrypt key.
Ransom prices vary depending on the ransomware variant and the price or exchange rates of digital currencies. Thanks to the perceived anonymity offered by cryptocurrencies, ransomware operators commonly specify ransom payments in bitcoins. Recent ransomware variants have also listed alternative payment options such as iTunes and Amazon gift cards. It should be noted, however, that paying the ransom does not guarantee that users will get the decryption key or unlock tool required to regain access to the infected system or hostaged files.
Users may encounter this threat through a variety of me
ans. Ransomware can be downloaded onto systems when unwitting users visit malicious or compromised websites. It can also arrive as a payload either dropped or downloaded by other malware. Some ransomware are known to be delivered as attachments from spammed email, downloaded from malicious pages through malvertisements, or dropped by exploit kits onto vulnerable systems.
Once executed in the system, ransomware can either lock the computer screen, or, in the case of crypto-ransomware, encrypt predetermined files. In the first scenario, a full-screen image or notification is displayed on the infected system's screen, which prevents victims from using their system. This also shows the instructions on how users can pay for the ransom. The second type of ransomware prevents access to files to potentially critical or valuable files like documents and spreadsheets.
Ransomware is considered "scare-ware" as it forces users to pay a fee (or ransom) by scaring or intimidating them. Ransomware captures infected systems or encrypt files.
According to CNN report on 23rd
of March 2017, Atlanta's mayor on Thursday urged anyone with personal
information in city information systems to check their financial records
as an investigation continues into a ransomware attack on the city.
Ransomware is a malicious
software that prevents or limits users from accessing their system by
locking them out until a ransom is paid. NBC affiliate WXIA reported that
the city received a ransom demand in bitcoin for $6,800 per unit or
$51,000 to unlock the entire system. CNN has not independently confirmed
the report.
Mayor Keisha Lance Bottoms
advised city employees to contact credit agencies and monitor their bank
accounts in case their personal data was compromised. She urged the
public to take the same precautions while investigators work to
determine the scope of the attack.
"We don't know the extent so we just ask
that you be vigilant," Bottoms said in a Thursday news conference. "All
of us are subject to this attack, if you will. Many of us pay our bills
online, we have direct deposit, so go online and check your bank statements."
Atlanta Chief Operating Officer Richard
Cox confirmed that the city received a written demand related to the
attack. When asked in the news conference if the city was going to pay a
ransom, Bottoms said, "We can't speak to that right now."
"We will be looking for guidance from,
specifically, our federal partners on how to best navigate the best
course of action," she said.
The Federal Bureau of Investigation and
Department of Homeland Security are investigating the cyberattack, which
Atlanta Information Management officials learned of Thursday at 5:40
a.m., Cox said. DHS spokesman Scott McConnell said the agency offered
technical expertise and support and referred questions to the city.
The city announced outages earlier
Thursday to various customer-facing applications, including those used
to pay bills and access court-related information.
This is one of the Highest and most
dangerous forms of Cyber attacks as Data Security breach can lead to so
many losses and dangerous exposures.