Findings from the Comptroller and Auditor General from the NHS wannaCry Ransomware infection in 2017 Some interesting points “On Friday 12 May 2017 a global ransomware attack, known as WannaCry, affected more than 200,000 computers in at least 100 countries. In the UK, the attack particularly affected the NHS, although it was not the specific […]
Tag Archives: ransomware
WannaCry Ransomware
WannaCry ransomware — also known as WCry, Wana Decrypt0r, WannaCrypt, and WanaCrypt0r! With the ongoing attack which started last week and after receiving several calls and mails over the weekend for some advice on how best to protect against ransomware, I thought I would put together some advice. Backup With any form of Ransomware, the […]
Ransomware Part 3, Threats and Culture
In part three of the series of articles about Ransomware, we examine the threat of ransomware looking at some of the industries and look at some reasons why some areas are affected more than others. We also review culture and see if this has any effect on ransomware mitigation In previous articles we wrote about […]
Ransomware – Part 2: from Knights to the International Aids conference and beyond
In the last article available here http://tombrett.ie/ransomware-part-1-what-is-ransomware/ we looked at what ransomware is, this current article takes a brief look at the history of ransomware from its earliest forms to 1989 to some current attacks. The next article will look at variants of ransomware and then shouls we pay or not and methods to mitigate the risk […]
Ransomware – Part 1, What is Ransomware
This is part 1 of a multipart series! In this article we will look at what Ransomware is, where it originated and the increasing risks accordingly, this article will be followed up with subsequent articles looking at different forms of ransomware and targeted devices, how ransomware work and methods to minimise the risk prevent the […]
Incoming Fax Email Hoax
Computer users are warned to be on the lookout for messages in their email inbox, claiming to be an incoming fax. I have personally seen over 5 instances of this today alone. Included is a screenshot from a GMail account – the mail was not sent from that, but showing how it appeared in Gmail to […]
Certain Ransomware Victims may be able to decrypt files without paying ransomware
Certain Ransomware Victims may be able to decrypt files without paying ransomware It looks like one of the latest strains of ransomware may be flawed. Securelist.com explain the some facts about the Torlocker ransomware as follows “Our analysis has shown that Trojan-Ransom.Win32.Scraper was presumably written in assembler, which is unusual for this type of malware. […]
CryptoWall 3.0 – An even more advanced Encrypting Ransomware
CryptoWall 3.0 It looks like Cryptowall developers have started distributing a new and more powerful version of their CryptoWall encrypting Ransomware. This new version called CryptoWalll 3.0 passes traffic to a site where users can pay for their decryption keys through anonymity networks. For more details see the following links http://blogs.technet.com/b/mmpc/archive/2015/01/13/crowti-update-cryptowall-3-0.aspx https://isc.sans.edu/diary/Traffic+Patterns+For+CryptoWall+3.0/19203 http://sensorstechforum.com/remove-cryptowall-3-0-and-restore-the-encrypted-files/