The SamSam ransomware virus hit the Colorado Department of Transportation for the second time. In the first attack detected on February 21, 2018, over 2,000 computers running Windows and McAfee security software were taken offline after their files were encrypted. After approximately 20% of those systems had been restored, a variation of the original SamSam ransomware struck again, leaving all affected computers offline.
SamSam ransomware first showed up in early 2016 and was initially targeting healthcare systems. In one case, a healthcare organization paid $55,000 in ransom to get their files back. Unlike traditional ransomware, SamSam does not rely on malvertising or malicious email attachments. This ransomware appears to be distributed through unpatched servers and uses them to compromise additional machines that hackers use to identify key data systems to encrypt.
Relying on internal IT teams to ensure all machines are maintained and patched on a regular basis is a time-consuming, up-hill battle. Shifting the cyber-protection workload from internal IT teams to 3rd parties who specialize in cyber security is a more optimal solution.
Read More Cyber Security Blogs
Other posts that might interest you
The Dangers of Connecting Cameras Directly to the Internet
Dean Drako Dean Drako is the founder and CEO of Eagle Eye Networks, the global leader in cloud video security. Eagle Eye Networks ranked #133 in Deloitte’s 2019 Technology Fast…
March 18, 2020
A Victim of the Recent Petya Ransomware Virus
One of Brivo’s large international customers (who shall go nameless due to confidentiality) was a victim of the recent Petya Ransomware virus. The virus infected a large number of their Windows…
July 18, 2017
Devil’s Ivy Likely Widespread
A recently discovered vulnerability labeled “Devil’s Ivy” is expected to impact millions of cameras that support the ONVIF protocol. The initial exploit was discovered on an Axis Camera and then…
July 24, 2017
