By Kimberly Goody, manager, cyber crime analysis at FireEye

 

“FireEye has tracked SamSam activity dating back to late 2015, impacting organizations across multiple industry verticals. Notably, the indictment highlights numerous healthcare and government organizations that have been targeted. It is possible that the operators chose to target these organizations since they provide critical services and believed their likelihood of paying was higher as a result.

Published in Opinion Pieces

By Mohammed Basheer, IT Security Practice Head, ISYX Technologies

 

The Petya ransomware attack that hit computers around the world recently, the second in two months, is yet another reminder that computers play key roles in most enterprises, and that it does not take much to disable those computers. Irrespective of how robust your information security systems are, users are still the weakest link in your company's cybersecurity.

Published in Opinion Pieces

By Rick Holland, VP Strategy at Digital Shadows

 

Late on 27 June, the New York Times reported that a number of Ukrainian banks and Ukrenergo, the Ukrainian state power distributor, had been affected by unidentified malware which caused significant operational disruption. Multiple security vendors and independent researchers subsequently identified the malware as a wormable ransomware variant with functional and technical similarities to Petya. Based on these similarities and continuing confusion, the malware has been dubbed Nyetya, Petna, ExPetr, and NotPetya, among others. It has been linked with a large number of infections, a significant proportion of which (around 60% according to statistics published by Kaspersky) affected machines in Ukraine, though at the time of writing the overall number of infections is not known. 

Published in Opinion Pieces