India is the most vulnerable to the SamSam Ransomware: report

SamSam ransomware has raked in almost $6 million.

    A new report from Sophos says that since its first appearance in December 2015, the SamSam ransomware has raked in almost $6 million by targeting organisations and individuals around the world, including those in India. According to the 47-page report, 74 percent of the known victims are based in the United States. Other regions known to have suffered attacks include Canada, the U.K. and the Middle East, with India ranking sixth among the top victim countries across the world.

    India is the most vulnerable to the SamSam Ransomware: report

    The cybersecurity firm also revealed in a separate survey that "90 percent of the businesses in India have been either hit or expected to be hit by ransomware," and it's expecting that Indian business will see an increase in cyber attacks in the near future. SamSam ransomware could be one of them.

    One Is Not Like the Others:

    Different from the traditional ransomware attacks, SamSam's thorough encryption renders not only personal and work data files unusable but also any program nonessential to Windows operation, most of which are not routinely backed up. Unlike nearly all other ransomware attacks, much of the attack process is manual.

    Once inside a system, the attacker spread a payload laterally across the network; a sleeper cell awaits instructions to begin encrypting. The result of SamSam attacks is often that numerous victims are unable to recover adequately or quickly enough and decide to pay the ransom.

    You Can't Secure What You Can't See:

    While the infection method of the SamSam ransomware is still unclear, as always, cyber hygiene practices should be the first line of defense. Preventing an attack (or being able to respond and isolate it quickly) requires a strong security foundation that is built on the complete visibility of the network. This pervasive visibility gives IT teams the ability to quickly identify potential exposures and attack paths.

    Skybox gives you that visibility by consolidating data from more than 120 networking and security technologies organizations have in use. The Skybox SecuritySuite uses this information to create a dynamic model of an attack surface, including physical, multi-cloud and OT networks where needed. The model provides context around all of the ingress/egress points and complexities of your network and assets, giving you a detailed understanding of what you're trying to defend.

    • After building the model of your environment, Skybox will conduct a risk analysis to identify and prioritize weaknesses and vulnerabilities such as unprotected ingress/egress points, misconfigured network devices, firewalls with overly permissive rules, exposed assets, exploitable attack vectors, etc.
    • Following the initial resilience assessment, the riskiest characteristics of the environment can be remediated to reduce risk quickly and in a demonstrable way - for example by addressing parts of the infrastructure for which there are no firewalls or where these are configured incorrectly; filling in vulnerability scanning blind spots; and recommending remediation and mitigation for high-risk vulnerabilities.
    • Acting on this insight, your environment will immediately be more secure and resilient. If an attack or malware outbreak does occur, you'll have a greater context to contain the attack quickly and eliminate the attack vectors.

    Read More About: hacking cyber security news
    India's LARGEST EVER political poll. Have you participated yet?
    Opinion Poll
    X

    Stay updated with latest technology news & gadget reviews - Gizbot

    We use cookies to ensure that we give you the best experience on our website. This includes cookies from third party social media websites and ad networks. Such third party cookies may track your use on Gizbot sites for better rendering. Our partners use cookies to ensure we show you advertising that is relevant to you. If you continue without changing your settings, we'll assume that you are happy to receive all cookies on Gizbot website. However, you can change your cookie settings at any time. Learn more