This month we’re discussing yet another type of ransomware, this time though it’s a delayed attack and focussed on databases.
It appears that these unscrupulous extortionists have now got a new technique they are using to hold businesses to ransom…. Time…
What they are doing, is gaining access to websites through a known vulnerability (before it gets fixed), and inserting code that encrypts the traffic between the website and its database (which drives the site and stores all your information) using a special encryption key, which they put on the server.
Time passes, and backups overwrite and data gets updated, all unbeknown to anyone except the hackers as the site is still functioning correctly, until one day, maybe 6 months later in some reported instances, the hackers log in and remove the encryption key, the websites crash, and they send a ransom email.
The problem with this type of attack is that the backups are encrypted, and 6 months of data entry is quite often too long for most sites (especially e-commerce based ones) to re-enter. The reported ransoms at the moment range from $1,000USD to $50,000USD but seem to be totally dependent on the business compromised.
So how do we prevent this from happening?
Realistically everyone with a website needs to ensure that their web developer is retained to perform regular security updates and patching of their websites. Your ISP/Webhosting company may offer this, but these updates could break your website depending on how it was developed and customised, so it is better to approach your developer first.
Microsoft are planning to release the HoloLens to coincide with their new Windows 10 release, although many people are speculating that this is not going to happen for quite some time.
Check out the promo video from Microsoft below, it’s pretty impressive!
In response to this release though, Google has stopped developing their ‘Google Glass’ product which was aimed at consumers rather than business users like the HoloLens, in favour of going back to the drawing board and starting again.
It will be very interesting times ahead indeed!
As always, if you ever need any information/ advice / help with anything IT / Telephony related, please give us a call!