Ransomware – Computer/Data Encrypted vs. Ransom – Employee Kidnapped. And,
both have demand for funds in common.
Total numbers are bleak since reporting to law enforcements may not necessarily be the 1st step and can compromise situation/safety or brand, etc. But kidnapping stats show an increase in hot spots including Nigeria, Mexico, Colombia, Venezuela and India ("for employees of consumer goods, mining and oil-services companies"); and respectively a spike shown with enterprises resulting from malware, spear phishing, etc. A popular ransomware program called CryptoWall recorded 600,000 computers affected in just 6 months of 2014 and held 5 billion files hostage which generated $1MM for the creators [researchers found].
While no situation is alike, response should be methodical and agile i.e. a common thread being, a strategy to prevention / detect / respond effectively. Based on an IT perspective, ensure detection capabilities, data backup, access of least-privileges, sound response policy and procedure (e.g. no payment of demands), eradication (isolation to forensics), and finally, notification of authorities / regulatory bodies. www.resilientsystems.com
Regarding the non-IT scenario (kidnapping), I'll leave that to the expects blogs.wsj.com
Total numbers are bleak since reporting to law enforcements may not necessarily be the 1st step and can compromise situation/safety or brand, etc. But kidnapping stats show an increase in hot spots including Nigeria, Mexico, Colombia, Venezuela and India ("for employees of consumer goods, mining and oil-services companies"); and respectively a spike shown with enterprises resulting from malware, spear phishing, etc. A popular ransomware program called CryptoWall recorded 600,000 computers affected in just 6 months of 2014 and held 5 billion files hostage which generated $1MM for the creators [researchers found].
While no situation is alike, response should be methodical and agile i.e. a common thread being, a strategy to prevention / detect / respond effectively. Based on an IT perspective, ensure detection capabilities, data backup, access of least-privileges, sound response policy and procedure (e.g. no payment of demands), eradication (isolation to forensics), and finally, notification of authorities / regulatory bodies. www.resilientsystems.com
Regarding the non-IT scenario (kidnapping), I'll leave that to the expects blogs.wsj.com
If you are faced with this ransomware and your files are encrypted, it's a big problem and you should solve it as fast as possible. Here is guide that will help you to clean computer from this virus http://removalbits.com/how-to-remove-cryptowall-ransomware-virus-from-your-computer/
ReplyDelete