Eagle Eye Networks

SamSam Ransomare

3月 16, 2018 Eagle Eye Networks

ransomware-blog-image

The SamSam ransomware virus hit the Colorado Department of Transportation for the second time. In the first attack detected on February 21, 2018, over 2,000 computers running Windows and McAfee security software were taken offline after their files were encrypted. After approximately 20% of those systems had been restored, a variation of the original SamSam ransomware struck again, leaving all affected computers offline.

SamSam ransomware first showed up in early 2016 and was initially targeting healthcare systems. In one case, a healthcare organization paid $55,000 in ransom to get their files back. Unlike traditional ransomware, SamSam does not rely on malvertising or malicious email attachments. This ransomware appears to be distributed through unpatched servers and uses them to compromise additional machines that hackers use to identify key data systems to encrypt.

ransomware-blog-image

Relying on internal IT teams to ensure all machines are maintained and patched on a regular basis is a time-consuming, up-hill battle. Shifting the cyber-protection workload from internal IT teams to 3rd parties who specialize in cyber security is a more optimal solution.

Read More Cyber Security Blogs

あなたに興味があるかもしれない他の投稿

loading

Log4j Security Update

On Friday, Dec. 10, 2021 the A…

12月 13, 2021 Phillip Farr

The Dangers of Connecting Cameras Directly to the Internet

Dean Drako Dean Drako is the f…

3月 18, 2020 Eagle Eye Networks

Macy’s Hit in Cyber Data Breach

Macy's and Bloomingdales join …

8月 3, 2018 Eagle Eye Networks