SPONSORED CONTENT

Ransomware 2.0: India and Australia logged the highest number of incidents across APAC region

December 24, 2020 23:30 IST
Tennis player James Blake
Cyber Security Weekend (CSW logo)

New Delhi [India], December 24 (ANI/ Bloomingdale): Global cybersecurity company Kaspersky recently revealed in a virtual conference that 2020's cybersecurity "disease" is targeted ransomware.

Also dubbed as "Ransomware 2.0", this type of attack goes beyond kidnapping a company's or an organization's data. These groups are now utilizing the increasingly valued digital reputation to force their preys to pay hefty ransom.

Vitaly Kamluk, Director of Global Research and Analysis Team (GReAT) for APAC at Kaspersky, revealed that at least 61 entities from the region were breached by a targeted ransomware group in 2020. India and Australia logged the highest number of incidents across APAC.

In terms of industries, Kaspersky's data shows that the following segments were compromised:

* Light Industry - includes the manufacturing of clothes, shoes, furniture, consumer electronics and home appliances

* Public service

* Media and Technology

* Heavy Industry - includes oil, mining, shipbuilding, steel, chemicals, machinery manufacturing

* Consulting

* Finance

* Logistics

"Targeted ransomware has been a problem for many Asian enterprises. Over 61 companies were breached this way in Asia alone. In some cases, Maze ransomware gang claimed responsibility and published stolen data from the compromised companies," said Kamluk.

Maze group stands out as the most active and the most damaging of all. Formed in summer 2019, it took them about half a year to prepare and launch full scale campaign against many businesses. The first victims appeared in November 2019, when they leaked 700MB of victim's internal data online.

Many other cases followed and within a year Maze breached at least 334 companies and organizations. This is one of the first groups which started the use of "pressure tactic". This refers to cybercriminals threatening victims that they will publicly leak most sensitive data stolen from their compromised systems via the group's own website.

"Pressure tactic is a serious threat to public and private organisations. This attack plays on companies' digital reputation as it threatens to divulge data of a breached entity, compromising its security and its name at the same time," he added.

Kamluk noted that digitalisation has birthed different pressure points for a company. Before, enterprises' main concerns only included business continuity and, depending on the industry, government regulation. Now, surviving in the era of digital reputation economy means that they should also be aware of business trust - with their partners and customers - as well as public opinion.

A recent survey conducted by Kaspersky proved Vitaly's points. Results showed that 51 per cent of users in APAC agree that a company's online reputation is essential. Almost half (48 per cent) also admitted that they avoid companies who were involved in a scandal or had received negative news coverage online.

"Maze group just announced that they are closing down, but this gang just triggered the beginning of this trend. A successful targeted ransomware attack is a PR crisis which can damage an organisation's reputation, online and offline. Financial toll aside, fixing one's name is quite a harder task to take which is why we urge public and private entities to take their security seriously," said Kamluk.

To remain protected against these threats, Kamluk suggests enterprises and organisations to:

* Stay ahead of your enemy: make backups, simulate attacks, prepare action plan for disaster recovery.

* Deploy sensors everywhere: monitor software activity on endpoints, record traffic, check hardware integrity.

* Never follow demands of the criminals. Do not fight alone - contact Law Enforcement, CERT, security vendors like Kaspersky.

* Train your staff while they work remotely: digital forensics, basic malware analysis, PR crisis management.

* Follow the latest trends via premium threat intelligence subscriptions, like Kaspersky APT Intelligence Service.

* Know your enemy: identify new undetected malware on premises with Kaspersky Threat Attribution Engine.

This story is provided by Bloomingdale. ANI will not be responsible in any way for the content of this article. (ANI/Bloomingdale)

DISCLAIMER


(This story has not been edited by Business Standard staff and is auto-generated from a syndicated feed.)

 

Dear Reader,


Business Standard has always strived hard to provide up-to-date information and commentary on developments that are of interest to you and have wider political and economic implications for the country and the world. Your encouragement and constant feedback on how to improve our offering have only made our resolve and commitment to these ideals stronger. Even during these difficult times arising out of Covid-19, we continue to remain committed to keeping you informed and updated with credible news, authoritative views and incisive commentary on topical issues of relevance.
We, however, have a request.

As we battle the economic impact of the pandemic, we need your support even more, so that we can continue to offer you more quality content. Our subscription model has seen an encouraging response from many of you, who have subscribed to our online content. More subscription to our online content can only help us achieve the goals of offering you even better and more relevant content. We believe in free, fair and credible journalism. Your support through more subscriptions can help us practise the journalism to which we are committed.

Support quality journalism and subscribe to Business Standard.

Digital Editor

Ransomware 2.0: India and Australia logged the highest number of incidents across APAC region

New Delhi [India], December 24 (ANI/ Bloomingdale): Global cybersecurity company Kaspersky recently revealed in a virtual conference that 2020's cybersecurity "disease" is targeted ransomware.

Also dubbed as "Ransomware 2.0", this type of attack goes beyond kidnapping a company's or an organization's data. These groups are now utilizing the increasingly valued digital reputation to force their preys to pay hefty ransom.

Vitaly Kamluk, Director of Global Research and Analysis Team (GReAT) for APAC at Kaspersky, revealed that at least 61 entities from the region were breached by a targeted ransomware group in 2020. India and Australia logged the highest number of incidents across APAC.

In terms of industries, Kaspersky's data shows that the following segments were compromised:

* Light Industry - includes the manufacturing of clothes, shoes, furniture, consumer electronics and home appliances

* Public service

* Media and Technology

* Heavy Industry - includes oil, mining, shipbuilding, steel, chemicals, machinery manufacturing

* Consulting

* Finance

* Logistics

"Targeted ransomware has been a problem for many Asian enterprises. Over 61 companies were breached this way in Asia alone. In some cases, Maze ransomware gang claimed responsibility and published stolen data from the compromised companies," said Kamluk.

Maze group stands out as the most active and the most damaging of all. Formed in summer 2019, it took them about half a year to prepare and launch full scale campaign against many businesses. The first victims appeared in November 2019, when they leaked 700MB of victim's internal data online.

Many other cases followed and within a year Maze breached at least 334 companies and organizations. This is one of the first groups which started the use of "pressure tactic". This refers to cybercriminals threatening victims that they will publicly leak most sensitive data stolen from their compromised systems via the group's own website.

"Pressure tactic is a serious threat to public and private organisations. This attack plays on companies' digital reputation as it threatens to divulge data of a breached entity, compromising its security and its name at the same time," he added.

Kamluk noted that digitalisation has birthed different pressure points for a company. Before, enterprises' main concerns only included business continuity and, depending on the industry, government regulation. Now, surviving in the era of digital reputation economy means that they should also be aware of business trust - with their partners and customers - as well as public opinion.

A recent survey conducted by Kaspersky proved Vitaly's points. Results showed that 51 per cent of users in APAC agree that a company's online reputation is essential. Almost half (48 per cent) also admitted that they avoid companies who were involved in a scandal or had received negative news coverage online.

"Maze group just announced that they are closing down, but this gang just triggered the beginning of this trend. A successful targeted ransomware attack is a PR crisis which can damage an organisation's reputation, online and offline. Financial toll aside, fixing one's name is quite a harder task to take which is why we urge public and private entities to take their security seriously," said Kamluk.

To remain protected against these threats, Kamluk suggests enterprises and organisations to:

* Stay ahead of your enemy: make backups, simulate attacks, prepare action plan for disaster recovery.

* Deploy sensors everywhere: monitor software activity on endpoints, record traffic, check hardware integrity.

* Never follow demands of the criminals. Do not fight alone - contact Law Enforcement, CERT, security vendors like Kaspersky.

* Train your staff while they work remotely: digital forensics, basic malware analysis, PR crisis management.

* Follow the latest trends via premium threat intelligence subscriptions, like Kaspersky APT Intelligence Service.

* Know your enemy: identify new undetected malware on premises with Kaspersky Threat Attribution Engine.

This story is provided by Bloomingdale. ANI will not be responsible in any way for the content of this article. (ANI/Bloomingdale)

DISCLAIMER


(This story has not been edited by Business Standard staff and is auto-generated from a syndicated feed.)

image
Business Standard
177 22