Cybervore is a cybersecurity company. We combine fragmentation and encryption to make data secure. Cybervore offers a game-changing cybersecurity software that augments the existing security landscape and renders your data useless to cybercriminals. Introducing Fragglestorm™ - reinforcing perimeter and encryption tools to systematically protect actual data further no matter where it resides.
Even if you are not a cybersecurity expert or IT professional, you probably have heard about ransomware. The information about ransomware attacks is emerging now and then from newspapers, the internet, TV, etc. You could have noticed that 2020 has been especially abundant in such news: “unprecedented rise of ransomware”, “ransomware is the biggest cybersecurity threat”, “top ransomware attacks”, “companies paralyzed by ransomware attacks”, etc. So what monster is that? Who can be affected? How to get rid of it or maybe to prevent it?
What is ransomware?
Ransomware is malware (a.k.a. malicious software) infecting your computer or any other devices with a code, locking your device, or encrypting your files (making them unreadable for you). After your device is infected, the cybercriminals will demand you to pay a ransom (that’s why it is called “ransomware”) to give you access to your own data. Ransomware can affect a single file, a PC, an entire network, and even a server. Imagine what a headache is losing access to your own data. No double, triple, quadruple it multiple times for the companies.
A ransomware attack is a complete nightmare especially for companies dealing with large databases (for example in finance and healthcare industries) as hackers threaten to sell that data unless the ransom is paid. Will the cybercriminals keep their word? Not obvious at all: many companies asserted that the criminals have published the data, even after the “deal” was made.
Any device can be infected, ransomware attacks can cause downtimes, compromise your clients’ data and as a result, affect your company’s reputation. It’s not surprising that ransomware is considered one of the biggest cybersecurity threats.
How ransomware infects your devices?
There are several ways to “catching” ransomware, and it is important to be aware of all of them.
Ransomware is spread through:
· Phishing e-mails — such e-mails contain malicious files (word, pdf) or links to malicious websites. This is the most popular method: researches show that 65% of ransomware is delivered via phishing e-mails.
· Social media — similarly to spammy e-mails, the encrypted files or malicious links can be sent through instant messaging apps.
· Fake websites — often hackers misspell the address of the website to fool the users. If you enter such a website, your computer can catch malware. How does it work? The cybercriminals usually change one or two letters, so the fake site name looks similar to the original one. For example, they can replace “g” with “q”, “i” with ”I”, letter “o” with number “0”, etc.
· Drive-by downloading — it occurs when you visit a website infected by malware and it’s downloaded into your device automatically (even if you didn’t click anywhere) and infects the endpoint. Of course, this happens mostly on fake websites, but it’s not necessary at all: the hackers can insert the malware script on any website (for example, they often compromise video streaming portals)
· Malvertising (a.k.a. malicious advertising) — as the name implies, it is malicious online advertising (online advertising infected with malware, mostly ransomware). Such advertising can appear on any reputable website and can infect your computer even without your interaction (drive-by-download). Even the sites with strict advertising criteria are at risk (the criminals can start with good ads, and then switch them to ads delivering ransomware).
· Dangerous Pop-Ups — there are different types of such pop-ups, for example, pop-up ads containing malware, fake pop-up messages “warning” you that your computer is infected with ransomware (in reality it is not, but they keep bombarding you), fake pop-ups inserted by criminals on reputable sites and requiring people to share their personal data (for example on banking sites).
Ransomware in 2020; Covid-19 impact
Ransomware dates back to the 1980s. It all started from an infected floppy disk: the first ransomware, AIDS Trojan (a.k.a. PC Cyborg) was spread among thousands of healthcare professionals. It was quite easy to beat, but it clearly became a catalyst for future events. During the next decades, ransomware developed massively (especially starting from the 2000s) creating havoc in hundreds of thousands of companies all over the world.
2020 was unprecedentedly successful for ransomware attackers. How did cyber-criminals take advantage of Covid-19 pandemics?
· With millions of employees forced to shift to work-from-home because of lockdowns, cyber-criminals used the opportunity to attack vulnerable networks.
· The cyber-criminals targeted mostly the industries dealing with large amounts of personal data (especially in pandemic period): government, banking, manufacturing, healthcare, etc.
· The criminals kept sending phishing e-mails with content related to Covid-19. Such e-mails are real-looking and include the hottest topics: scams associated with economic impact payments, free downloads of conferencing platforms, any information concerning COVID-19 (vaccines, sanitizers, masks, etc.). They are mostly targeting anxious users, who will click the malicious links or will download malicious files.
· Cyber-criminals aim to make you enter infected websites offering COVID-19 information. Either they build sites on “covid19” or “coronavirus” related domains, or hack such legitimate sites and infect them with ransomware.
As a result, ransomware became especially nasty, and successful ransomware attacks have grown drastically in 2020.
· In March 2020, ransomware attacks increased by 148% over February 2020, due to COVID-19. The financial sector was especially affected (52% of ransomware attacks )
· In Q3 2020, global ransomware attacks have grown by 40% (199.7 million cases); the US saw a 139% ransomware growth (145.2 million cases)
· Ryuk ransomware (5,123 attacks in Q3 2019), has grown to 67.3 million in Q3 2020. This is one of the most popular types of attacks (33.7% of global ransomware attacks in 2020)
· In 2020, new organizations fell victim to ransomware attacks every 10 seconds. Cybersecurity Ventures predicts that in 2021 there will be ransomware attacks on businesses every 5 seconds.
· In 2020, cybercriminals got approximately $370 million from known ransomware profits (which means 336% increase compared to 2019)
· Ransomware costs are predicted to cost $20 billion in 2021 (57 times more than in 2015).
How to prevent ransomware in 2021
As we can see, ransomware is definitely the fastest-growing type of cybercrime, and it’s not planning to go anywhere in 2021. Moreover, the more successful and profitable the ransomware “business” becomes, the more new ransomware criminals emerge (and they are using more and more sophisticated approaches).
What to do if your device is already infected by ransomware? First of all, never pay the ransom! As announced by the FBI, paying a ransom is a bad idea, primarily because even if you pay, there’s no guarantee that criminals will unlock your device/files; or they may give you access to your files, but publish the data anyway.
Getting rid of ransomware often requires serious technical skills, time, and money. According to cybersecurity experts, to protect from ransomware, you must… prevent it.
· Back up your data regularly. You can use highly protected cloud storage or an external hard drive (disconnected from the computer after each backup)
· Regularly update and patch your software/systems to close them for attackers. Enabling automatic updating is a good idea.
· Use strong passwords, update them regularly, use two-factor authentication when possible.
· Never click untrusted, suspicious links, e-mails, attachments, pop-ups. Stay vigilant while opening any site (read carefully the URLs).
· Stay tuned, educate yourself (as well as your employees, end-users), learn how to detect fake websites, phishing e-mails, etc. Make security your company’s second nature, organize cybersecurity awareness trainings to fully cover the topic (investing in Cybersecurity Awareness is a must, especially if you have a big company dealing with lots of personal data.)
· Never disclose your personal data (contact details, banking information, etc.) without carefully verifying the sources asking for such information.
· Use email protection systems to prevent ransomware attacks (this will reduce the criminals’ chances)
· Invest in computer security software blocking ransomware. With the sophisticated techniques used by cyber-criminals today, using perimeter cybersecurity products is not enough. Remember that the ransomware criminals aim to lock your data, this means you should always stay at least one step ahead of them: make your data unreadable and useless for the criminals even if it’s breached!
For example, with Fragglestorm™, you can protect your data no matter where it is stored. The patented technique called Smart Data Fragmentation™ is a secure solution: your data is shredded into multiple Smart Fragments™, so only the allowed user can reassemble those fragments and use the data!
E-commerce businesses have grown massively over the past years: many buyers all over the world tended to shop online more or less regularly. In 2020, the COVID-19 pandemic has completely changed the situation in the shopping industry…forever. Both e-commerce and brick-and-mortar were somehow affected, as the interest in online shopping has soared dramatically.
E-commerce Gone Wild
Let us have a look just at some of the drastic and unprecedented statistics for 2020:
As for 2021, e-commerce will obviously keep its glorious march, regardless of pandemic and vaccination developments. eMarketer predicts the US online shopping sales to grow to $843.15 billion (up from $794.5B in 2020).
What About Security?
The lockdowns and restrictions have forced most of the consumers to adjust their way of leaving choosing internet shopping from home, in a safe and familiar environment. But is it safe to shop online? Online retail was always accompanied by some risks: damaged or unexpectedly low-quality goods, dishonest sellers unwilling to refund, etc.
However, we will concentrate on the most important problem faced by e-commerce business owners and their customers: cybersecurity. Online retail has always been and will always stay the hottest target for cybercriminals, and of course, the unprecedented success faced by e-commerce businesses in 2020 could not elude the hackers’ attention. Why? Simply because personal data is becoming one of the most valuable assets. The convenience of online shopping was particularly important during 2020 lockdowns, but the more people shop online, the more it attracts hackers. According to Cyberpion, 83% of the top 30 US retailers are vulnerable to cyber-attacks.
Apparently, both the online stores and the customers are affected. To buy something online, the customers need to provide their personal data to the online store. They must entrust their credit card information, e-mails, usernames, passwords, etc. Cybercriminals can steal that information from the online store database to make money. At the same time, if the clients’ personal data is compromised, it can ruin completely the company’s reputation, as it will be held accountable both to the clients and to the entities regulating the industry.
Cybersecurity is a big responsibility. E-commerce business owners need to be very serious about online safety. They just cannot afford to lose their customers’ data and their company’s reputation. Of course, many online retailers are aware of cybersecurity threats and are taking the necessary measures to guard against those. According to the VMWare Carbon Black 2020 Cybersecurity Outlook Report, 77% of eCommerce business owners have acquired new security tools, while and 69% of them have invested in the cybersecurity workforce.
However, cybercriminals are on the constant quest for new vulnerabilities and are working harder on their skills. Thus, online retailers need to stay constantly ahead: keeping up with the newest e-commerce cybersecurity threats is a must.
So which are the biggest security threats for e-commerce businesses?
1. DDoS (Distributed Denial of Service) Attacks
DDoS attackers send simultaneously a large amount of requests from hundreds or thousands of compromised IPs, to take your web resource down. When your online store is flooded with such a big amount of traffic, your customers are not able to make purchases.
DDoS attacks disable your online store for several hours or even days, which is especially annoying during peak seasons. If your site is attacked during holidays, you lose a huge share of income (and sometimes customers), as your competitors…win.
This is a type of fraud, aiming to access the buyers’ personal data (logins, passwords, bank card details). Phishing attackers often use mass mailing on behalf of popular companies with links to fake online stores that are outwardly indistinguishable from real ones (the site usually looks identical, but the URL may slightly differ from the original one). Naturally, after paying, the buyer receives nothing.
3. Malware (malicious software)
Any software trying to infect a computer or mobile device is considered malicious. Cybercriminals insert the malware on victims’ websites for various purposes: obtaining personal data and passwords, stealing money, blocking the device owner. They can automatically redirect the website to another page or open multiple pop-up windows to mislead the consumers.
Ransomware is one of the biggest cyber-disasters. It’s a specific type of malware locking the device from its user. To access his own data, the user needs a key, which can be provided only by the hacker. The user is blackmailed until he pays the ransom. The ransomware can be injected into your device through phishing e-mails, pop-ups, fake sites.
You have probably heard about skimming devices used to hack ATMs. Now the cybercriminals use a more sophisticated technique called e-skimming: they insert a skimming code in your e-commerce site, right into the pages processing the payment cards. Thus, they steal the card data in real-time, while the user is paying.
To shop or not to shop?
E-commerce cybercrimes are not limited to the aforementioned list. Does this mean that shopping online is always dangerous, and you should avoid it? Of course not! Shopping online is very comfortable, practical, and sometimes inevitable. Good news: you can make it completely safe!
Secure online shopping is a mutual responsibility. Both the organizations and the consumers must make some steps towards a safe environment.
Here are some conclusions and steps a regular user can do to avoid cyber-dangers while shopping online:
· Shop only on trusted sites
· Update your computer OS and Antivirus
· Use strong passwords, change them from time to time, don’t save them on pcs and websites and vary them from site to site
· Don’t open suspicious e-mails (i.e. promising you an award), sites, pop-ups, payment pages
What an online shop owner can do to avoid data breaches?
· Invest in your employees’ education: everyone should be aware and responsible
· Keep your e-commerce site, devices and systems updated
· Take additional security steps during holiday shopping seasons, when cyber-criminals become especially active!
· Secure your site with HTTPS
· Back up your data
· Keep investing in cyber-security to protect your company’s and consumers’ data at maximum. Buying cybersecurity software is not enough. Remember that today any site can be breached, any data can be stolen. Think about making your online data useless to cybercriminals!