Secureworks: the ransomware threat is growing because of its material profits |
Secureworks, in its latest report on cyber threats, notes that ransomware remains the main threat because it monitors the intensity and frequency of ransomware jumps in September and October 2019 and continues to lead the trend of last year.
According to the company's Threat Implementation Report 2019, the Secureworks research team monitored the number of ransomware in infected systems, which more than doubled between 2018 and 2019. The number of organizations has increased, largely due to the sophistication of proven methods.
Secureworks Threat Control researchers expect to increase ransom threats in affected systems due to the good material benefits of ransomware.
Organizations can significantly reduce this risk by limiting the initial infiltration of the system. If the organization monitors the infiltration process, treatment must begin to remove all possible malware and infiltration services. ,
Hostile organizations use two methods to establish themselves in an infected system. The first is to use a system that was previously infected with common malware, for example B. Ryuk Ryuk ransomware, which has spread to systems infected with Trek-Bot malware. And use Bit Paymer Dridex Ransomware.
Usually, after starting a large spam campaign, malware is delivered to the system first, and the infection can continue long before ransomware is published.
The second method relies on finding and infiltrating open servers on the Internet to spread the primary infection. Hostile organizations usually use the remote desktop protocol to access the victim's network via the Internet and then use infiltration into the system, which is one of the known vulnerabilities that affect data issues. The affected system becomes anchor. How to enter the rest of the network.
Jopan Sivasankaran, senior manager of safe solutions solutions in the Middle East, Turkey and Africa, said the Middle East seems to keep pace with the global threats mentioned in the Secureworks report: We expect this trend to be in 2019. This is in line with current global trends and will continue to increase in 2020 Agencies must be careful to maintain their strongest defensive position. "
As attacks become more sophisticated and hostile organizations become more flexible, these agencies should be aware that most cyber security attacks are based on known malware programs and tools.
Corporate researchers recommend companies to constantly monitor their defenses to provide basic security controls over all systems. For example, multi-factor communication authentication tools can be used on devices connected to the Internet, which greatly reduces attacks. Agencies need to be aware of geopolitical events that can increase the risk of developing an enemy group.