Ransomeware is quite possibly the most damaging online threat. Although there are numerous defences against it, DREW VAN VUUREN, data protection officer at ESET South Africa, believes the best is user education.
Ransomware is a very real threat to businesses and individuals alike, and when it comes to online security, it is arguably the most damaging threat. Yet, many people still don’t know what ransomware is, even though this type of cyber threat has been aggressively spreading over the internet, with results that can impact both a company’s finance and reputation.
And the threat is only going to get more hostile.
The simple fact is that there is limited protection against ransomware, with no antivirus or end-point security solution technology able to protect you. Protection comes down to user-education and good business practice, and for any business, it is a must have that disaster recovery is in place if they hope to come out of a ransomware breach relatively unscathed.
Ransomware is a malware that infects a computer and encrypts all its files. Cybercriminals then offer an ultimatum to their victim: pay the demanded ransom or lose your data forever. If you are susceptible and become a target you have no choice, either you pay or rebuild your system – there is no third option. However, if you take option number one and you pay the ransom, the chances are you will again be targeted and you end up perpetuating the cycle of infection and victimization.
There are two different types of ransomware – opportunistic and targeted. The principle is that targeted ransomware will look for individuals who have access to critical and valuable information, for example, a CEO or CFO of an organization.
If you are a business that has mitigating controls in place, and you are targeted by a successful attack, then it will be a matter of invoking the disaster recovery process. This will be based on the the businesses information classification criteria and management principles.
Every organisation will have information that is deemed to be valuable – and without access to this information, a business could suffer inadvertent loss and eventually begin losing money. Therefore, the disaster recovery controls around the businesses critical information will need to allow for that data to be readily available within a certain timeframe, for business to continue.
So, what is best practice for Ransomware attacks?
- Back Up is key
The best defense against ransomware is to reduce your vulnerability in the first place. This means backing up the company’s critical and valuable information on a regular basis. Hence, if your businesses become a target of a ransomware attack, having to pay the ransom may not bear consideration as the business will have access to its valuable information that has been backed up. It is important that the companies maintain offline back-ups so that the back-ups are not readily accessible to an attacker.
- Trusted sources
Businesses should exercise good email and website safety practices – ensuring that individuals download attachments, click URLs or execute programs only from trusted sources.
- Trust warnings
When you get a security message from a web browser, take heed of it.
- Administrator Rights
Manage administrator rights accordingly. Many businesses still use the default administrator account on their network. Instead you should delete or rename the administrator account or create an account with administrator privileges.
- Educate! Educate! Educate
It should be an executive management imperative for businesses to educate their employees about the challenges around ransomware making staff aware of any security issue that arises, or is currently topical – this could be ransomware, PoPI, encryption – your people need to be aware of it.
In summary, organisations should prepare themselves for the likelihood that they may be targeted by a ransomware attacker by implementing the mitigating controls of back-up and more especially user awareness. If they maintain the vigilance outlined above they will be able to reduce the impact of the ransomware as recently evidenced by the WannaCry attack that was so effective.
CES: So long, and thanks for all the beer!
Last week, the Las Vegas expo showed off its fun side with state-of-the-art technologies for enjoying beer, writes BRYAN TURNER
From craft beer-making machines to robots that pour beer, CES had more beer than usual in Las Vegas last week. And even free beer if you found the right stand. Stampede’s saloon-style booth offered beer to visitors who tried out its latest drones, virtual reality, and other gaming products. No beer tech, though.
Here are some of the beer technologies that stood out:
LG HomeBrew – Craft beer made at home
LG’s HomeBrew craft beer-making machine, debuted at CES 2019, brings the brewing process home thanks to single-use capsules, a self-cleaning feature, and an algorithm optimised for fermentation.
Like a Nespresso coffee machine, the beer maker uses capsules, which contain malt, yeast, hop oil and flavouring. At the press of a button, LG HomeBrew automates the whole procedure from fermentation and carbonation to ageing. A companion app lets users check HomeBrew’s status at any time during the process, from their handsets.
The beer machine not only offers a simple way to make craft
Designed with discerning beer lovers in mind, HomeBrew allows for in-home production of batches of more than 4 litres of beer in a variety of styles. The following five distinctive, flavoured beers are available now:
- Hoppy American IPA
- Golden American Pale Ale
- Full-bodied English Stout
- Zesty Belgian-style Witbier
- Dry Czech Pilsner
The only catch? It takes about two weeks to make, depending on the beer type.
“LG HomeBrew is the culmination of years of home appliance and water purification technologies that we’ve developed over the decades,” said Dan Song, president of LG Electronics Home Appliance & Air Solutions Company. “Homebrewing has grown at an explosive pace, but there are still many beer lovers who haven’t taken the jump because of the barriers to entry, like complexity, and these are the consumers we think will be attracted to LG HomeBrew.”
Click here to read about the party speaker that holds beer and robots that pour beer.
CES: Alienware gets Legend-ary
At CES in Las Vegas last week, Dell’s Alienware released a family of high-end, thin, light, and affordable machines for both amateur and professional gamers – and a new identity.
Alienware marked CES 2019 as a brand milestone with the debut of a new design identity, Alienware Legend. It aims to set a new bar of excellence for what gamers want most – performance and function. Alienware says it evaluated multiple concepts and chose one that was the biggest and boldest departure from its current look.
Alienware Legend, says the company, stays true to the brand’s core design tenets, taking cues from its deep roots in sci-fi culture and its early industrial designs, to distinguish the brand from the rest of the industry. The new Legend design is optimised with cutting-edge thermal cooling technology to achieve and sustain overclocking power, improved AlienFX lighting, and ultra-thin screen borders. It also unveiled a new “three-knuckle hinge” design that reduces the overall dimension while creating a stronger assembly, all combining to yield a better gaming experience.
“We’re excited to come to this year’s CES with some truly groundbreaking products, next-gen software and strategic partnerships that will bring more people to experience PC gaming and advance the industry,” said Frank Azor, vice president and general manager of Alienware. “The legend design answers the call for more and better from our gaming community, and the new G Series laptops will make PC gaming even more accessible to those looking for high-performance gaming at a cost they can appreciate.”
Click here to read about Alienware Legend in action with the Area-51m and m-series laptops