Sophos: Ransomware is still one of the most dangerous threats and it’s evolving. The three new areas where the malware is starting to reach are “Public cloud”, “MSPs” and “Encryption”
Ransomware is still one of the most dangerous threats for companies and users, and it’s evolving. According to Sophos cyber security experts, there are three new areas where the malware is starting to reach: “Public cloud”, “MSPs” and “Encryption”. In the first case, the malicious code targets and encrypts data stored in public cloud services like Amazon Web Services (AWS), Microsoft Azure (Azure) and Google Cloud Platform (GCP). While the public cloud offers lots of advantages, confusion about security responsibilities creates gaps in protection that hackers are quick to exploit. In addition, weak configuration and open public access to cloud resources (be that storage buckets, databases, user accounts, etc.) make it easier for criminals to breach data storage.
The cyber security experts: Beware of Service provider and Encryption-free attacks
The cyber security experts warn also on Service provider attacks. As technology and threats become ever more complex, companies are increasingly outsourcing their IT to specialist managed service providers (MSPs). Cybercriminals have realized that targeting MSPs enables them to hold multiple organizations hostage with a single attack. One attack, many ransoms. MSPs offer a level of security expertise that is hard to match in many organizations. If you use a MSP, make security one of your selection criteria. A good MSP will be happy to share how it secures both its own and its customers’ organizations. Finally, there are the Encryption-free attacks. The ability to encrypt files was one of the original core capabilities needed to make ransomware a viable cybercrime. Today cybercriminals no longer need to encrypt your files to hold you hostage. Why? Because they believe you’ll pay up just to stop your data going public.