Information Technology

News and Updates

Ransomware

Ransomware is malicious code that is used by cybercriminals to launch data kidnapping and lockscreen attacks.
The motive for ransomware attacks is monetary, and unlike other types of security exploits, the victim is usually notified that an attack has occurred and is given instructions for how to recover data.
Payment for recovery instructions is often demanded in virtual currency to protect the criminal’s identity.

Ransomware malware can be spread through:

  1. malicious e-mail attachments
  2. infected software apps
  3. infected external storage devices
  4. compromised websites.

In a lockscreen attack, the malware may change the victim’s login credentials for a computing device; in a data kidnapping attack, the malware may encrypt files on the infected device as well as files on other connected network devices.

Ransomware kits on the dark web have allowed cybercriminals with little or no technical background to purchase inexpensive ransomware-as-a-service (RaaS) programs and launch attacks with very little effort.
Attackers may use one of several different approaches to extort digital currency from their victims. For example:

To protect against ransomware attacks and other types of cyberextortion, experts urge users to backup computing devices on a regular basis and update software — including anti-virus software — on a regular basis. End users should beware of clicking on links in emails from strangers or opening email attachments and victims should do all they can to avoid paying ransoms.