Thursday, April 9, 21:05
Home security Industrial control systems are the new target of Ransomware

Industrial control systems are the new target of Ransomware

Lately, it seems that malicious agents have turned the attacks on ransomware they carry on systems industrial control (ICS). Security researchers say malicious file encryption software to infect computer networks that control functions in manufacturing environments and utility applications is something that has only recently been observed.

Such as he says Cyber-Security Dragos, the ransomware called Ekans (also known as Snake), first appeared in December 2019 and is designed to attack systems Windows used in industrial environments.

Of course there have also been some malware targeting ICS in the past. But the researchers concluded that Ekans appears to be the work of a government criminal group involved in the site and that it represents "a unique and specific risk to industrial businesses not previously observed in malware ransomware."

Researchers have found that Ekans contains a list of commands and processes related to various functions of the industrial control system designed to disrupt these functions.

The encrypted files are renamed to a random five-character file extension, and a prompt appears ransom with a contact email address to negotiate the amount with the victim.

- Advertisement -

The attackers behind Ekans may need to infect the network before executing the ransomware attack. This follows the same procedure as ransomware variants such as Ryuk and Megacortex. Dragos reports also note that Ekans may be related to ransomware Megacortex.

Some reports have linked Ekans to Iran, but after analyzing the malware, Dragos concluded that there is no "strong or unambiguous evidence" linking this campaign to its strategic interests. Iran.

At present it is not certain how Eksans is distributed to victims, but to protect them from ransomware attacks, it is recommended to isolate ICS systems from the rest of the network, so even if a standard Windows machine is hacked, an attacker will not be able to move to systems that control it infrastructure.

Organizations should also ensure that they keep backups that are stored offline. Backups must include the latest known configuration data to ensure its fast recovery.

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LEAVE ANSWER

Please enter your comment!
Please enter your name here

LIVE NEWS

loopfs: Could it be the new Linux file system?

Linux supports several file systems, such as EXT4, F2FS, Btrfs and XFS. These systems are sufficient when ...

Research: Teenagers prefer iPhones to Samsung phones

According to research conducted every six months in order to record the habits of teenagers, young people do not choose Samsung phones ....

Bill Gates: Schools open in the fall and the economy collapses

Bill Gates believes schools will be able to open in the fall, he told Becky Quick on CNBC.

OTE Group Telecommunications Museum: Educational programs and entertainment activities from home for children aged 4-12 and the whole family

Educational programs and entertainment activities for children and families, in which they can participate from home, are offered by the Group's Telecommunications Museum ...

Microsoft: The April 2020 update for Office has been released

Microsoft released the non-security updates of April 2020 for Microsoft Office, which include corrections for errors as well as improvements ...

Tesla's new Cheetah mode offers top performance

The new Cheetah mode in the Tesla S model pushes the electric car from 0 to 100 km / h faster than ...

Tails 4.5: The new, safer version has been released!

Tails 4.5: The new, safer version has been released - Tails, is a live operating system based on ...

Windows 10 feature helps to delete useless files and apps

Windows 10 will make it easier to delete useless files and apps by displaying them in a list.

Cloudflare: Stops using Google's reCAPTCHA!

Cloudflare has announced that it will stop using Google's reCAPTCHA and switch to a new bot detector that ...

Google Stadia Pro is available for free for two months! Time for video games!

The situation we are experiencing lately due to corona, is one of the most difficult situations of ...