Q3 Quarterly Threats and Vulnerabilities Report 2020

Ransomware

Spike in Targeted Ransomware Attacks

Help AG’s digital forensics and incident response team has cited and responded to targeted ransomware attacks primarily aimed at Middle Eastern Insurance, Oil & Gas, and Construction companies with ransomware variants, specifically Mespinoza, Ryuk, and RobbinHood. The attackers have also compromised privileged accounts in these organizations.

Help AG Recommends

Having a good backup and recovery practice to recover from ransomware attacks is advisable. Ransomware attacks usually exploit a known vulnerability; hence timely patching of exploitable vulnerabilities can reduce the chances of ransomware infections. It is also recommended to restrict or avoid the use of remote management tools such as RDP (Remote Desktop Protocol).