Zephyrnet Logosu

Haftanın Olayı: Equinix, Uzun Bir Fidye Yazılımı Kurbanları Sırasının Sonuncusu

Tarih:

[Records Exposed: Undisclosed  |  Industry: Internet  |  Type Of Attack: Ransomware]

Equinix is the latest victim in a long line of ransomware targets. The data center and colocation service provider released a short statement on September 9 that read,

“Equinix is currently investigating a security incident we detected that involves ransomware on some of our internal systems. Our teams took immediate and decisive action to address the incident, notified law enforcement and are continuing to investigate. Our data centers and our service offerings, including managed services, remain fully operational, and the incident has not affected our ability to support our customers. Note that as most customers operate their own equipment within Equinix data centers, this incident has had no impact on their operations or the data on their equipment at Equinix. The security of the data in our systems is always a top priority and we intend to take all necessary actions, as appropriate, based on the results of our investigation.”

The threat actors are demanding $4.5 million in exchange for a decryptor and the promise that they won’t release stolen data. However, Equinix updated their statement on September 14 to reiterate that customers’ data and operations remain safe.

İlgili: Siber Güvenlik Standartları ve Çerçeveleri

It appears the guilty party is the young cybercriminal group known as NetWalker who first burst on the scene in August of 2019. Their success lies in their ability to automate ransomware attacks, including a countdown clock and prefab ransom note that populates at just the right time during the operation. Ransomware-as-a-Service (RaaS) poses an increasing threat across the cyber security landscape, as it allows inexperienced or less technical hackers purchase the automation software needed to execute such a hack.

With NetWalker acting as the gatekeeper, hacker groups go through a screening process before gaining access to a web portal that holds NetWalker’s ransomware, which can then be customized to fit their specific needs. NetWalker’s commission of 20% has earned the group $25 million between March 1 and July 27.

Dersler öğrenildi:

If it seems like ransomware attacks have been in the news a lot lately, it’s because they have. In fact, a report by koalisyon discovered that in the first half of 2020, 41% of cyber insurance claims were ransomware incidents. It was also reported that, while ransomware attacks are becoming slightly less frequent, their rate of success and size of target are growing. In other words, the increasingly sophisticated strategies of these threat actors poses real risks to even the most developed enterprise.

İlgili: Kimlik Avı Kampanyalarını Önleyici Olarak Nasıl Takip Edebilirsiniz?

While ransomware attacks are specific in their execution, the vulnerabilities exploited to make them possible are the same as most other cyber threats. Specifically, 54% of cyber attacks are achieved through email (malware) and phishing schemes.

Hızlı ipuçları:  

Fidye yazılımı saldırıları kısmen gevşek siber protokollere dayanır. Kuruluşunuzu bu büyüyen tehditten en iyi şekilde korumak için aşağıdakileri göz önünde bulundurun:

  1. Verileri akıllıca yedekleyin - Siber suçluların şirketleri fidye ödemeye ikna etme yollarından biri, verilerini şifreleyerek rehin tutmaktır. Çoğu kuruluş verilerini yedeklerken, genellikle orijinal verilerle aynı tehlikeye atılmış altyapıda bulunur. Verileri harici sürücülere veya ikinci bir bulut hizmeti sağlayıcısına yedeklemeyi düşünün.
  2. Saygın bir güvenlik paketi seçin - Standart antivirüs yazılımı ve temel güvenlik duvarları meslekten olmayan kişi için yeterli olabilir, ancak işletmeler, fidye yazılımını tespit etmek ve mümkünse kaldırmak için akıllı araçlar ve gelişmiş algoritmalar kullanan bir güvenlik paketine yatırım yapmalıdır. Araç, 24/7 arka planda çalışabilmelidir.
  3. Yazılım Güncellemelerini Yükleyin - Siber suçlular en az direniş yolunu ararlar. Böyle bir yol genellikle en güncel yamaları, hata düzeltmelerini ve diğer yeni tasarlanmış özellikleri indirmemiş eski yazılımlarda bulunur. Tüm uygulamaları, eklentileri ve üçüncü taraf yazılımlarını da güncel tutmayı unutmayın.

Daha fazla oku: Haftanın Olayı

Source: https://www.cshub.com/attacks/articles/incident-of-the-week-equinix-is-the-latest-in-a-long-line-of-ransomware-victims

spot_img

En Son İstihbarat

spot_img