Join The Conversation With Mishpacha's Weekly Newsletter



Defense Is Best Offense against Ransomware

Binyamin Rose

Ransomware attacks could be forestalled by timely downloads of Windows updates

Wednesday, July 05, 2017

 Mishpacha image

ON THE OFFENSIVE Much of the damage caused by ransomware attacks could be forestalled by timely downloads of Windows updates. But many individuals ignore notifications to download security updates

J ust as some infectious diseases mutate to fight off antibiotics, cagy cyber-criminals have developed the tools to modify the viruses and worms they unleash for computer cyber attacks, rendering the victims’ computers indefensible.

That was evident during last week’s global ransomware attack known as “Petya,” a worldwide threat that crippled tens of thousands of computer systems at banks, shipping companies, and utilities, mainly in the US, Europe, and Asia.

Petya attacked the same vulnerability in the Microsoft operating system that a previous cyber attack in May known as WannaCry targeted. “The difference is with WannaCry, someone found a kill switch to terminate the attack. The attackers have now modified this, so there’s no way to decrypt it, and files are irretrievable after they’ve been attacked,” said Yair Solow, CEO of CyGov, an Israeli company whose leading members were intimately involved in the development of Israel’s National Cyber Agency.

The Petya ransomware forced Maersk, the world’s largest operator of container ships, to close terminals around the world, including one in the Port of Los Angeles, for three days. It also shut down ATM machines and the decommissioned but still monitored Chernobyl nuclear plant in Ukraine, which was forced to move to manual operation.

The cyber attacks are dubbed ransomware because the attackers send a message to the users of the computer explaining that their files are locked, and demanding payment through Bitcoin — in this case $300 —to unlock the files.

“From research we’ve done, very few people have paid to unencrypt, and those who have paid found that they didn’t get their information back,” Solow says.

Much of the damage caused by ransomware attacks could be forestalled by timely downloads of Windows updates. But many individuals ignore notifications to download security updates that include protective patches. Even larger organizations that have cyber budgets and IT teams are often too focused on the technology side to notice other security threats.

“From research we’ve done, very few people have paid to unencrypt, and those who have, found that they didn’t get their information back” —Yair Solow

Solow recommends a holistic cyber strategy that includes the physical protection of buildings that hold servers and computers, and collecting intelligence — even on one’s own employees.

“Some 44% of the attacks today are originating from inside an organization,” Solow says. “Some are malicious and some are inadvertent, but in some cases, governments and companies are spending millions of dollars to put up these big walls, and they’re not alert to what’s going on inside their own walls.”

There is also no substitute for exercising good judgment by not clicking on a website or e-mail attachment from an unknown or suspicious source.

“There are constant battles with employees to educate them,” Solow says, citing the urgency now that ransomware programs, once the domain of state-sponsored terrorists, are now available for purchase on websites for as little as $39.

“It’s the equivalent of a fighter jet being in the hands of a terrorist group. It gives them the ability to disrupt lives at a very low cost. We hope these attacks will make people take a step back and take a good look in the mirror, and hit the reset button before the next cyber 9/11 hits,” Solow said. (Originally featured in Mishpacha, Issue 667)

Related Stories

Everything but a Smoking Gun

Omri Nahmias, Washington, D.C. and Gershon Burstyn

Trump Tries to Spin Comey Testimony in His Favor

Tight Security Win-Win for Jews and Arabs

Eliezer Shulman

IDF Response to Rioters Keeps Roads Open for Commuters

Tillerson in the Dark on Palestinian Payments?

Jacob Kornbluh

Payments to Terrorists Long-Term Capitol Hill Concern

Share this page with a friend. Fill in the information below, and we'll email your friend a link to this page on your behalf.

Your name
Your email address
You friend's name
Your friend's email address
Please type the characters you see in the image into the box provided.
CAPTCHA
Message


MM217
 
The Fortunes of War
Rabbi Moshe Grylak We’re still feeling the fallout of the First World War
Some Lessons, But Few Portents
Yonoson Rosenblum What the midterms tell us about 2020
Vote of Confidence
Eyan Kobre Why I tuned in to the liberal radio station
5 out of 10
Rabbi Dovid Bashevkin Top 5 Moments of the Kinus
Day in the Life
Rachel Bachrach Chaim White of KC Kosher Co-op
When Less is More
Rabbi Ron Yitzchok Eisenman How a good edit enhances a manuscript
It’s My Job
Jacob L. Freedman “Will you force me to take meds?”
They’re Still Playing My Song?
Riki Goldstein Yitzy Bald’s Yerav Na
Yisroel Werdyger Can’t Stop Singing
Riki Goldstein Ahrele Samet’s Loi Luni
Double Chords of Hope
Riki Goldstein You never know how far your music can go
Will Dedi Have the Last Laugh?
Dovid N. Golding Dedi and Ding go way back
Battle of the Budge
Faigy Peritzman Using stubbornness to grow in ruchniyus
The Challenging Child
Sarah Chana Radcliffe Strategies for raising the difficult child
Bucking the Trend
Sara Eisemann If I skip sem, will I get a good shidduch?
The Musician: Part 1
D. Himy, M.S. CCC-SLP and Zivia Reischer "If she can't read she'll be handicapped for life!"