
FBI warned all businesses that hackers have begun a new ransomware attack wave.
Uncle Sam is now overrated. The Federal Bureau has recently asked the help of small business and internet security experts to combat the ever increasing ransomware attacks. As of now, every small firm should be on a lookout for suspicious activity over their network and update their malware protection programs.
In a recent statement, FBI requested the help of big and small business alike to fight against ransomware attack. According to a report posted by an online security expert, the number of attacks targeting vast network has increased in the last period
Unlike typical malware, ransomware can target entire networks of computers and render them useless. The group usually takes advantage of the situation to extort the targeted company.
After malware gets in the computer network, it encrypts all computers belonging to that network with a unique master key. When the attack is over, the group contacts the targeted company and ask for a sum of money in exchange for the unlocking code.
A similar case happened a couple of months ago when a group of hackers locked down the computers of a hospital from Hollywood. After a Mexican stand-off, which lasted more than a week, the FBI was unable to track down the culprits.
As a result, the manager of the hospital had to pay a whopping 17.000 dollars to the group to unlock the hospital’s computers. While the FBI warned the manager that such an action creates a precedent, the managed went ahead with his plan arguing that the hospital can’t stay crippled for too long.
Well, according to the FBI, it would seem that hackers have upgraded their weaponry making them more deadly and harder to trace. The new generation of malware weaponry is called MSIL/Samas.A and, according to the FBI, it was specifically made to target large business.
Now, the malware usually picks off targets which have an outdated version of the JBOSS application, software used mainly for managing small and large firms.
After finding a vulnerability in the program, a group can exploit it to remotely connect to the system and insert the MSIL/Samas.Malware. According to the feds, the thieves can access and upload the malware using a makeshift software called JexBoss.
Once the malware is inserted into the network, it begins encoding all operations. After that, the group comes forth to demand a sum of money in return for the unlock code.
FBI recommends that all companies using JBOSS should update their software to the latest version. Moreover, they should report any malware-related activity to the CYWATCH online security center.
Photo credits:flickr