cxo voice
  • Home
  • News
  • View Points
  • Leaders Talk
  • Cyber Security
  • AI
  • Blockchain
No Result
View All Result
  • Home
  • News
  • View Points
  • Leaders Talk
  • Cyber Security
  • AI
  • Blockchain
No Result
View All Result
Leaders Interview, IT and Technology News India | CXO VOICE
No Result
View All Result

Home » Cyber Security » Demystifying ransomware – the cyber pandemic

Demystifying ransomware – the cyber pandemic

Sharda Tickoo by Sharda Tickoo
June 22, 2020
Reading Time: 5min read
ransomware - the cyber pandemic

Image: Sharda Tickoo

Share on FacebookShare on TwitterShare on LinkedinShare via E-Mail

With an evolving digital landscape and the rapid proliferation of sophisticated cyberattacks, security can no longer be relegated as an afterthought by organizations. The world continues to witness numerous cyberattacks – from Wannacry to the latest Maze attack, with each attack being more unique and complex than the preceding one, and making businesses succumb to huge losses. What’s common between these attacks, you may ask – they are all ‘ransomware’. This ‘cyber pandemic’, as we would like to call it due to its inherent nature of spreading far and wide, has spread its wings across countries leading to concerns around the security of data.

Its enormity can be gauged from the fact that almost 62% of organizations globally have experienced a ransomware attack in the past year, as reported by an industry survey by CyberEdge. And, which will likely continue to do so in the foreseeable future, with newer and stealthier attacks underway.

A case in point is the recent Maze ransomware, which created headlines the world over. What’s unique about this ransomware is that it not only encrypts the data but steals it, and with the threat actors threatening to publish the data, which makes it exponentially more devastating. On why organizations should look at ransomware as the proverbial ‘elephant in the room’ and not just shelve the topic aside, let’s delve a bit in into demystifying few of the aspects, which include – ransomware transmission; whether it’s ever a good idea to pay up a ransom, and if ‘prevention’ might be the best ‘vaccine’ in dealing with it.

Infectious modes of transmission

How lethal is ransomware, and why do many of the cyber experts still consider it to be the numero-uno cyber threat even today? All the findings and the industry data validate this fact, with one such finding by Cybersecurity Ventures, a global cybersecurity research firm predicting that – ‘globally, businesses in 2021 will fall victim to a ransomware attack every 11 seconds, down from every 14 seconds in 2019.’ Its proliferation has further been accentuated because of the COVID-19 outbreak, as more and more employees continue to work remotely, and there is less protection due to remote access. It is likely that the users are more susceptible to falling prey to COVID-19 themed malicious emails.

What’s the modus operandi of a ransomware attack and its transmission? Phishing emails are the most common way through which ransomware penetrate an organization – as attachments masquerading as a file which victims tend to trust. However, there are several other vectors through which ransomware can also permeate, which includes endpoints, cloud workloads, networks, web gateways, files, mobile phones and even instances seen across Linux servers. 

Typically, ransomware encrypts data using different file formats or extensions with different Advanced Encryption Standard (AES) keys, and hence decryption becomes almost impossible.

‘Ransom’ in ransomware – not a good thing

This is a perennial question, whether to comply with the demands of the ransomware actor or not. It’s important for an organization that has been breached to understand the attackers’ unseen motive, which in many cases is to get a quick return on investment. According to a joint study by PwC India and Data Security Council of India (DSCI), the data breach cost in India has gone up by 8% in 2 years, which is alarming. We notice that many-a-times organizations are ready to pay a ransom to speed up the recovery of their data and systems. However, it’s important to note that paying it does not guarantee that the users will get the decryption key or unlock tool required to regain access to the infected system or hostage files and may only further encourage threat actors to attack organizations. As long as the ransom scheme, or the ‘cyber heist’ as we like to call it, continues to be profitable, cybercriminals will continue to leverage it on vulnerable targets. 

Prevention and Remediation – Keys to defend

In the current parlance, to deal with ransomware an occasional intake of medicine won’t suffice, and a ‘vaccine’ is the order of the day. This is where ‘prevention’ could be the panacea or much needed vaccine that organizations should prescribe to rather than looking at knee-jerk reactive approach to ransomware attacks, which is the current practice. 

Despite the prevalent ideals of digital transformation, lack of basic security hygiene, legacy systems with outdated operating systems and unpatched vulnerabilities are still a reality. As per Gartner’s analysis of clients’ ransomware preparedness, globally, over 90% of ransomware attacks are preventable. There is no silver bullet when it comes to stopping ransomware. As part of a layered defense strategy against ransomware, organizations should have multiple security controls in place across email, endpoints, networks, and servers. Since these are correlated, centralized security visibility across all these layers from a single console helps to reduce IT complexity and to stay on top of the ransomware threat.

Let’s observe some of the best practices that organizations and users can adopt to strengthen their defenses against ransomware and mitigate risks:

  1. Back up important files using the 3-2-1 rule—create 3 backup copies on 2 different media with 1 backup in a separate location.
  2. Enable virtual patching, especially for operating systems that are no longer supported by the vendor.
  3. Ensure emails are safeguarded with sandboxing technology and anti-spam solution, and there is an advance scanning & detection technology in place for mail endpoint & network traffic.
  4. Implement multi-factor authentication and least privilege access policies to prevent abuse of tools that can be accessed via admin credentials, like RDP, PowerShell and developer tools.
  5. Regularly update software, programs, and applications to protect against the latest vulnerabilities.
  6. Increase awareness of how ransomware spreads, i.e., through spammed emails and attachments.
  7. Avoid opening unverified emails or clicking links embedded in them.

The hard question that CISOs, CTOs, CIOs and all the security and IT managers should ask themselves is that, in the eventuality of a newer ransomware threat, are they really prepared well enough to deal with it.


  • Security While Working Remotely [Interview]
  • Combating cyber threats: 10 security tips in the COVID-19 era
  • Security in the Cloud Remains Challenged by Complexity and Shadow IT: IBM

Tags: Coronavirus DisruptionsCOVID-19cybersecuritycybersecurity and coronavirusRansomwareSecurity for remote employee
Sharda Tickoo

Sharda Tickoo

Sharda Tickoo, Director – Technical, Trend Micro India

Related Posts

Banking cybersecurity
Cyber Security

Why Banks and NBFCs must exercise extra cybersecurity measures during festival times?

December 11, 2020
impact of Covid-19 on retirement planning
Insurance

The impact of Covid-19 on retirement planning

December 1, 2020
Business productivity
Business

How Technology Can Help Leaders Boost Business Productivity During Pandemic Outbreak

November 27, 2020
Enterprises, and MSMEs IoT
Leaders Talk

IoT is now seen as an essential enabler for the enterprises to be future ready : Joyjeet Bose

November 30, 2020
Cyber Security Awareness
Cyber Security

Five Ways To Enhance Cyber Security Awareness

November 18, 2020
Cloud Security and Digital Transformation, the Top Priority for Enterprises as Pandemic Drags On
Cloud

Cloud Security and Digital Transformation, the Top Priority for Enterprises as Pandemic Drags On

November 17, 2020
Why digital India is vulnerable to new-age cyber attacks
Cyber Security

Why digital India is vulnerable to new-age cyber attacks

November 6, 2020
Endpoints security
Cyber Security

Endpoints, the New Data Security Frontier in the age of WFH

September 28, 2020
Load More
Next Post
Top 10 Data and Analytics Technology Trends for 2020

Top 10 Data and Analytics Technology Trends for 2020

Discussion about this post

ADVERTISEMENT

Expert Views

Key Fintech Trends to look out for in 2021
Finance

Key Fintech Trends to look out for in 2021

January 8, 2021
Banking cybersecurity
Cyber Security

Why Banks and NBFCs must exercise extra cybersecurity measures during festival times?

December 11, 2020
impact of Covid-19 on retirement planning
Insurance

The impact of Covid-19 on retirement planning

December 1, 2020
Cyber Security Awareness
Cyber Security

Five Ways To Enhance Cyber Security Awareness

November 18, 2020
Low Code: Transforming Banking, Today and Tomorrow
Banking

Low Code: Transforming Banking, Today and Tomorrow

November 9, 2020

Get Latest Update

Subscribe to our mailing list to receives newsletter direct to your inbox!

ADVERTISEMENT

Leaders Inerviews

Enterprises, and MSMEs IoT
Leaders Talk

IoT is now seen as an essential enabler for the enterprises to be future ready : Joyjeet Bose

-
Security While Working Remotely interview with Filip Coftas
Cyber Security

Security While Working Remotely [Interview]

-
Akita Security Device Help you Protect your Security During COVID-19 [Interview with Zakir Hussain]
COVID-19

Can Akita Security Device Help you Protect your Security During COVID-19 [Interview]

-
digital transformation and customer experience Newgen software
Interview

Digital Transformation Journey helps Newgen Software Improve Customer Experience [Interview]

-

Entrepreneur

Technology Adoption For Entrepreneurs

Volunteering management is the need of the Hour

Significance Of Ethical Entrepreneurship In The Post COVID-19 Economy

Five tips for entrepreneurs to tide over the coronavirus crisis

CXO VOICE is a premier resource for the enterprises, SMBs and Startups CXOs and business leaders, It enables CXOs and business executives gain access key insights, experts views, analysis, business strategy, and leaders interviews on what’s happening in the market and its impact.

Connect with us

Easy Links

  • Cryptocurrency
  • Event
  • Blockchain
  • Press Release
  • Resources & Downloads

Write Us

[email protected]

Newsletter

Subscribe to our mailing list to receives newsletter direct to your inbox!

  • Home
  • About
  • Contact Us
  • Advertise
  • Privacy & Policy
  • Feedback

© 2018 CXO VOICE

No Result
View All Result
  • Home
  • News
  • View Points
  • Leaders Talk
  • Cyber Security
  • AI
  • Blockchain

© 2018 CXO VOICE