Join The Conversation With Mishpacha's Weekly Newsletter



Defense Is Best Offense against Ransomware

Binyamin Rose

Ransomware attacks could be forestalled by timely downloads of Windows updates

Wednesday, July 05, 2017

 Mishpacha image

ON THE OFFENSIVE Much of the damage caused by ransomware attacks could be forestalled by timely downloads of Windows updates. But many individuals ignore notifications to download security updates

J ust as some infectious diseases mutate to fight off antibiotics, cagy cyber-criminals have developed the tools to modify the viruses and worms they unleash for computer cyber attacks, rendering the victims’ computers indefensible.

That was evident during last week’s global ransomware attack known as “Petya,” a worldwide threat that crippled tens of thousands of computer systems at banks, shipping companies, and utilities, mainly in the US, Europe, and Asia.

Petya attacked the same vulnerability in the Microsoft operating system that a previous cyber attack in May known as WannaCry targeted. “The difference is with WannaCry, someone found a kill switch to terminate the attack. The attackers have now modified this, so there’s no way to decrypt it, and files are irretrievable after they’ve been attacked,” said Yair Solow, CEO of CyGov, an Israeli company whose leading members were intimately involved in the development of Israel’s National Cyber Agency.

The Petya ransomware forced Maersk, the world’s largest operator of container ships, to close terminals around the world, including one in the Port of Los Angeles, for three days. It also shut down ATM machines and the decommissioned but still monitored Chernobyl nuclear plant in Ukraine, which was forced to move to manual operation.

The cyber attacks are dubbed ransomware because the attackers send a message to the users of the computer explaining that their files are locked, and demanding payment through Bitcoin — in this case $300 —to unlock the files.

“From research we’ve done, very few people have paid to unencrypt, and those who have paid found that they didn’t get their information back,” Solow says.

Much of the damage caused by ransomware attacks could be forestalled by timely downloads of Windows updates. But many individuals ignore notifications to download security updates that include protective patches. Even larger organizations that have cyber budgets and IT teams are often too focused on the technology side to notice other security threats.

“From research we’ve done, very few people have paid to unencrypt, and those who have, found that they didn’t get their information back” —Yair Solow

Solow recommends a holistic cyber strategy that includes the physical protection of buildings that hold servers and computers, and collecting intelligence — even on one’s own employees.

“Some 44% of the attacks today are originating from inside an organization,” Solow says. “Some are malicious and some are inadvertent, but in some cases, governments and companies are spending millions of dollars to put up these big walls, and they’re not alert to what’s going on inside their own walls.”

There is also no substitute for exercising good judgment by not clicking on a website or e-mail attachment from an unknown or suspicious source.

“There are constant battles with employees to educate them,” Solow says, citing the urgency now that ransomware programs, once the domain of state-sponsored terrorists, are now available for purchase on websites for as little as $39.

“It’s the equivalent of a fighter jet being in the hands of a terrorist group. It gives them the ability to disrupt lives at a very low cost. We hope these attacks will make people take a step back and take a good look in the mirror, and hit the reset button before the next cyber 9/11 hits,” Solow said. (Originally featured in Mishpacha, Issue 667)

Related Stories

Everything but a Smoking Gun

Omri Nahmias, Washington, D.C. and Gershon Burstyn

Trump Tries to Spin Comey Testimony in His Favor

Tight Security Win-Win for Jews and Arabs

Eliezer Shulman

IDF Response to Rioters Keeps Roads Open for Commuters

Tillerson in the Dark on Palestinian Payments?

Jacob Kornbluh

Payments to Terrorists Long-Term Capitol Hill Concern

Share this page with a friend. Fill in the information below, and we'll email your friend a link to this page on your behalf.

Your name
Your email address
You friend's name
Your friend's email address
Please type the characters you see in the image into the box provided.
CAPTCHA
Message


MM217
 
Weekly Struggle
Shoshana Friedman Cover text: promise big and deliver what we promise
Only Through You
Rabbi Moshe Grylak A response to last week’s letter, “Waiting in Passaic”
Are You Making a Kiddush Hashem?
Yonoson Rosenblum In communal affairs, “one bad apple…” often applies
Chance of a Lifetime
Eytan Kobre I identify with the urge to shout, “No, don’t do it!”
Work / Life Solutions with Bunim Laskin
Moe Mernick "You only get every day once"
Seeking a Truly Meaningful Blessing
Dovid Zaidman We want to get married. Help us want to date
Shivah Meditations
Rabbi Emanuel Feldman Equivalence between two such polar opposites is puzzling
Magnet Moment
Jacob L. Freedman Everyone’s fighting a battle we know nothing about
Secrets and Surprises
Riki Goldstein Top-secret suits Eli Gerstner just fine
Blasts of Warmth
Riki Goldstein Keeping the chuppah music upbeat in low temperatures
Behind the Scenes
Faigy Peritzman The intrinsic value of each mitzvah
Good Vision
Sarah Chana Radcliffe Good or bad, nice or not? What you see is what you get
Day of Peace
Mrs. Elana Moskowitz On Shabbos we celebrate peace within and without