Expert Advise After Dozens Of US News Sites Hacked In WastedLocker Ransomware Attacks

The Evil Corp gang hacked into dozens of US newspaper websites owned by the same company to infect the employees of over 30 major US private firms using fake software update alerts displayed by the malicious SocGholish JavaScript-based framework. The employees’ computers were used as a stepping point into their companies’ enterprise networks as part of what looks like a series of targeted drive-by attacks.


EXPERTS COMMENTS
Jamie Akhtar, CEO and Co-founder,  CyberSmart
July 03, 2020
Companies do not exist on their own. Even if a company is not a subsidiary, it is probably part of a supply chain.
Companies do not exist on their own. Even if a company is not a subsidiary, it is probably part of a supply chain. This breach highlights how interdependent these security systems are. One company failing to practice good security can have far-reaching effects. Luckily, basic cyber hygiene like keeping software up to date and having secure passwords can go a long way in preventing the majority of ....
[Read More >>]
Chris Hauk, Consumer Privacy Champion,  Pixel Privacy
July 03, 2020
The possible costs of network downtime, loss of income, and the cost of recovery easily outweigh the costs of employee education.
This is another case where the infection of these networks could have been prevented by educating employees and executives on how to avoid ransomware infections. I cannot stress enough that educating employees to the dangers of clicking links in browser popups, emails, and text messages is worth it, no matter the cost. The possible costs of network downtime, loss of income, and the cost of recover ....
[Read More >>]
Paul Bischoff, Privacy Advocate,  Comparitech
July 03, 2020
Downloads take place in the background and often don't require any interaction from the victim.
Drive-by downloads that use javascript to infect devices can be difficult for website visitors to avoid, especially if that website has been trustworthy in the past, in which case it won't be blacklisted. Downloads take place in the background and often don't require any interaction from the victim. Most people don't disable scripts in their web browsers because javascript is so common on the we ....
[Read More >>]
Javvad Malik, Security Awareness Advocate,  KnowBe4
July 02, 2020
Prevention controls can prevent the malicious code being deployed to sites.
With well-established criminals groups like Evil Corp, there is no lack of innovation when it comes to deploying the malware. In this case, the gang used a fake software update alert which popped up on users screens when browsing to particular websites. This demonstrates why a layered approach to security is essential so that if one area is bypassed, the next layer can stop it. Prevention controls ....
[Read More >>]
Niamh Muldoon, Senior Director of Trust and Security EMEA,  OneLogin
July 02, 2020
Ransomware brings organizations to a stop causing havoc and shutting down business function in the worst instances.
Ransomware brings organizations to a stop causing havoc and shutting down business function in the worst instances. Organizations can pro-actively defend against Ransomware by having crisis management in place that practice scenarios involving Ransomware. Key learnings come from crisis management table top exercises including business continuity gaps. That this particular ransomware uses an auctio ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article