Over 100 New Ransomware Families Discovered Last Year

100 New Ransomware Families

The world in 2016 sees a rapid rise of ransomware attacks that are increasingly targeting specific businesses and entire industries. A report by David Balaban for privacy-pc.com shows that ransomware attacks have occurred virtually on a daily basis in the past year. Moreover, ransomware groups develop attack techniques that use advanced methods applied in cyberespionage attacks. These attacks target specific industries or large organizations that use outdated cyber defense or are open for attacks.

Ransomware Attacks More Industries

According to a Symantec report, called Ransomware and Business, the services industry is most exposed to ransomware with 38 percent of organizational infections. Other industries that experience heavy ransomware attacks are manufacturing with 17 percent of infections followed by finance, insurance and real Estate and public administration that both account for 10 percent of ransomware infections. Nearly one third of all ransomware infections, 28 percent, occurred in the US. Other most attacked countries include Canada, Australia, India, Japan, Italy, the UK, Germany, the Netherlands, and Malaysia.

Another alarming trend is that the average ransom request now stands at $679 more than two-fold the $294 ransom demand at the end of 2015, according to the report. In 2016, some 100 new ransomware families are discovered while some ransomware groups provide ransomware-as-a-service, which greatly increases the availability of advanced attack techniques for virtually every cybercriminal.

Crypto-ransomware Is Most Common

A new trend shows that the shift towards crypto-ransomware continues and in 2016 only one variant of ransomware was not crypto-ransomware. According, to Symantec 80 percent of all ransomware was crypto-ransomware. A decade ago, the most widespread variants of ransomware were misleading applications such as fake antivirus programs that were used by the attackers to cheat the users to pay a fee for fixing non-existing infections or Malware.

At a later stage, the locker type of malware replaces fake antivirus apps but is now itself being replaced by crypto-ransomware. Crypto-ransomware uses encryption techniques that are unbreakable in practice and that is why it is considered the most effective type of ransomware.

A report by Gartner also finds that crypto-ransomware is the most used method to demand ransom from organizations worldwide. Since the crypto-ransomware encrypts is attacking files and data storage devices using unbreakable encryption methods, the best passive defense is to back up data on a regular basis and apply all available security patches on time.

Protection Is Mandatory

Endpoint protection platforms can provide acceptable level of security and protection and Gartner states that no single vendor leads in all functional areas. Therefore, selecting a platform that provides journaling and file backup capabilities is a good option for any business that wants to protect itself from encrypting malware. Another advanced method for protection includes malware sandboxing where any suspicious code is first executed in virtual environment to determine whether this is a malicious programming code. Any business should also take into account a vendor’s strategy for protecting workloads in public cloud Infrastructure-as-a-Service as well as what public cloud IaaS providers are supported by the vendor of the endpoint protection platform.

Furthermore, protection should include methods to detect attacks by malware where programming languages like JavaScript, PHP, Powershell, or Python are used. Attackers used these languages to create several new ransomware families in 2016 and each protection should envisage methods to detect such malicious code.

Ransomware is becoming more sophisticated rapidly and no business should take lightly the danger of ransomware attacks. With crypto-ransomware becoming so widespread, each organization should apply all required security measures and select a feasible endpoint protection platform to defend its data.

By Kiril V Kirilov

Eddie Segal

Kubernetes on AWS: Tips for Cloud-Native Development

Kubernetes AWS Tips Kubernetes is a container orchestration and management tool that automates container deployment. Kubernetes is mainly used in the cloud. A recent survey by CNCF showed that 83% of organizations deploy Kubernetes on ...
Gary Taylor

Addressing 5 Key Risks for the Hybrid Worker

Hybrid Worker Risks Organizations are under pressure to secure their remote workers, but they are also worried about the potential impact on user experience. Can they have it both ways without compromise? The pandemic has ...
Digital Theft

Cross-Site Scripting – Why Is It A Serious Security Threat For Big Data Applications?

Security Threat And Big Data Applications (Updated August 11th, 2020) IBM, Amazon, Google, Yahoo, Microsoft - and the list goes on. All these leading IT enterprises have been affected by Cross-Site Scripting (XSS) attacks in ...
Workforce Tech Talent

Is Remote Work Here To Stay?

Is Remote Work Here To Stay? For as long as I can remember there have been discussions about remote work and when that would become the reality for almost everyone on the planet. Tim Ferriss ...
Gary Bernstein

5 Popular Telemedicine Software Services

Telemedicine Software Since the beginning of the Covid-19 pandemic, telemedicine software services have become extremely popular, and every day more people are using this service instead of going to hospitals and emergency departments as they ...

PROXY SERVICES

The CloudTweaks technology lists will include updated resources to leading services from around the globe. Examples include leading IT Monitoring Services, Bootcamps, VPNs, CDNs, Reseller Programs and much more...

  • Smartproxy

    Smartproxy

    Smartproxy is a rising star in the constantly growing proxy market. Smartproxy offers awarded customer service, impressive performance, and is serious about your anonymity (yes, cybersecurity matters). The latest features developed by Smartproxy are 30 minute long sticky sessions and Google Proxies. Rumor has it, the latter guarantee 100% success rate

  • Bright Data

    Bright Data

    Bright Data’s network is one of the most robust of its kind globally. Here are its stark advantages: Extremely stable connection for long sessions (99.99% uptime guaranteed). Free to integrate with our Proxy Manager which allows you to define custom rules for optimized results. Send unlimited concurrent requests increasing speed, cost-effectiveness, and overall efficiency.

  • Rsocks

    Rsocks

    RSocks team offers a huge amount of residential plans which were developed for plenty of tasks and, most importantly, has been proved to be quite efficient. Such variety has been created on purpose to let everyone choose a plan for a reasonable price, online, rotation and other parameters.

  • Storm Proxies

    Storm Proxies

    Storm Proxies' network is optimized for high performance and fast multi-threaded tools. You get unlimited bandwidth. No hidden costs, no limits on bandwidth. Try Storm Proxies 100% Risk Free. If you are not happy with the service email us within 24 hours of purchase and we will refund you.