Ransomware attacks are getting more common and disrupt companies from running day to day pressuring them to pay to retain access.
What Is Ransomware?
Blocking access to systems which can include servers, online storage or even accounts is the main factor of ransomware it allows the attacker to sell access back. There are cases where a company does pay out to their attacker to get the details back and protect themselves.
Real World Ransomware
After Nvidia fell victim to ransomware in late February 2022, Instead of letting Lapsus$ get away with it Nvidia installed ransomware on the perpetrator’s own machines. Nvidia was targeted by the ransomware group known as Lapus$, which stole the company’s source code, including a proprietary hash rate limiter that reduces the usefulness of Nvidia’s chips for cryptocurrency mining.
Training
Consistent training and revisions of security is important as this allows weaknesses and possible risks to be highlighted. Knowing who might be a risk or need training can assist in prevention alongside knowing where the issue could originate from.
Back-ups
Backing up servers and storage is a excellent practice when possible as being locked out this is often one of the only resolutions. Back-ups frequently and having them accessible from a different means will allow a quicker resolution.
How to prevent an ransomware attack.
Generally companies and individuals need to be on top of keeping their security up to date and infrastructure. Its fine having policies and standards in place but how do you know they are being followed? Frequent training and tests are a key part of ensuring attacks like these are unlikely to happen
This weeks article around case studies is available here.