NHS Lanarkshire was attacked by a new variant of Bitpaymer last week. The cyber attack led to some appointments and procedures being cancelled. Staff worked over the weekend to reinstate IT systems, and are trying to establish how the malware was able to infiltrate the network without being detected.
This infection shows how disruptive Ransomware can be. It encrypts the data it finds on a host computer so that it can no longer be accessed, and then demands payment, often in Bitcoin, for its release.
This type of cyber attack can happen at anytime – to anyone. The people who carry out these disruptive acts are opportunists. We should all aim is to make their job harder – by making sure we have strong passwords in place, and by backing up all files.
Most malware looks like it has come from a trusted source. A simply click on a link is enough to cause widespread disruption. Being prepared with as many security measures in place, as well as being vigilant and alerting colleagues to any unusual e-mails etc, is the way forward.
There are many examples of individuals and organisations that have chosen to part with their cash – but there is no guarantee that by paying the ransom you will get your files/data back.
You are most welcome to give one of our consultants a call – to check that all has been done to keep a cyber attack at bay. Be prepared and be safe.
ADECS-Maple – 024 7699 5930
Research from Google suggests that cyber thieves have made in the region of £19m over the past two years.
‘It has become a very, very profitable market and is here to stay,’ said Elie Bursztein from Google who, along with colleagues Kylie McRoberts and Luca Invernizzi carried out the research.
Ransomware is a malicious software that infects a machine and then encrypts or scrambles files so they no longer can be used or read. The files are only decrypted when a ransom is paid.
The data gathered showed that there were 34 variants of ransomware, the most popular being Locky and Cerber.
Mr Bursztein said that the gangs behind the ransomware explosion were not likely to stop soon, even though there is competition from newer variants such as SamSam and SPora.
www.bbc.co.uk/technews (27the July 2017)
Google has been fined 2.42bn euros (£2.1bn) by the European Commission after it ruled the company had abused its power by promoting its own shopping comparison service at the top of search results. The ruling also orders Google to end its anti-competitive practices within 90 days or face a further penalty of payments of 5% of its parent company Alphabet’s average daily worldwide earnings. Based on the company’s most recent financial report, this amounts to about $14m a day.
The European Union’s Competition Commissioner, Margrethe Vestager, said ‘Google has denied other companies the chance to compete on their merits and to innovate, and most importantly it has denied European consumers the benefits of competition, genuine choice and innovation.’
A spokesperson for Google said, ‘We respectfully disagree with the conclusions. We will review the Commissioner’s decision in detail as we consider an appeal, and we look forward to continuing to make our case.’
Google shopping displays relevant products’ images and prices alongside the names of shops they are available from and review scores, if available.
www.bbc.co.uk/technews (27th June 2017)
Apple Mac users are being warned about new variants of malware that have been created specifically to target Apple computers. One is ransomware that encrypts data and demands payment before files are released. The other is spyware that watches what users do and scoops up valuable information. Experts have said that the threat is real due to the creators letting anyone use the two programs for free.
The two programs were uncovered by the security firms Fotinet and AlienVault which found a portal on the Tor ‘dark web’ network that acted as a shopfront for both. The creators behind the malware are thought to have extensive experience of creating working code.
Those wishing to use either of the programs had been urged to get in touch and provide details of how they wanted the malware to be set up. The malware’s creators had said that payments made by ransomware victims would be split between themselves and their customers.
Researchers at Fortinet contacted the ransomware writers pretending they were interested in using the product and, soon afterwards, were sent a sample of the malware. Analysis revealed that it used much less sophisticated encryption than the many variants seen targeting Windows machines, said the firm. They also said that any files scrambled with the ransomware would be completely lost because it did a very poor job of handling the decryption keys needed to restore data.
Aamir Lakhani from Fortinet said Mac users should make sure their machines were kept up to date with the latest software patches and be wary of messages they receive via email.
www.bbc.co.uk/technews (13th June 2017)
Peruvians have been getting online using Project Loon, the ambitious connectivity project from Google’s parent company, Alphabet.
Project Loon uses tennis court-sized balloons (about 20km above the ground) which contain a small box of equipment to beam internet access to a wide area below. Only small-scale tests of the technology have taken place so far.
Project Loon is in competition with other attempts to provide internet from the skies, including Facebook’s Aquila project which is being worked on in the UK. Project Loon have recently figured out how to use artificial intelligence to ‘steer’ the balloons by raising or lowering them to ride weather streams. This led to balloons being used to connect people in Lima, Chimbote, and Piura. The balloons were launched from the US territory of Puerto Rico before being guided south.
Over the course of three months the balloons were still providing access with users sending over 160GB worth of data (the equivalent of 2 million emails).
The connectivity (roughly covering an area of 40,000 square kilometres) was enabled with the help of Spanish telecoms giant Telefonica, which operates in Peru, and several other organisations who aided in setting up ground stations that enabled the balloons to connect to the internet.
The technology is still in its early stages, the concept still faces a number of challenges, most related to keeping the equipment in the air.
Some have questioned the motive of companies expanding into the developing world with such vigour – particularly over how both Facebook and Project Loon may be bale to collect data that could later be used to sell targeted advertising.
www.bbc.co.uk/technews (17th May 2017)
Vodafone has pulled the sale of its paging business to Capita and will shut it down after the competition watchdog threatened to investigate the deal. The Competition and Markets Authority said it was concerned customers may now face price rises. Vodafone said it was disappointed by the CMA’s decision, but made more sense to close the business due to the expense involved with a prolonged investigation. Vodafone said they would do their utmost to minimise the impact on the 1,000 or so customers still using the service.
Vodafone and Capita run the UK’s last two paging businesses and agreed the sale in February. Pagers, a decades-old technology, are still used by many people such as those working in the emergency services because of their reliability, coverage and battery life. They are used by the NHS and the Army as well as lifeboat services.
www.bbc.co.uk/technews (10th May 2017)