Global Security Forum

 View Only
Expand all | Collapse all

What do you think about Ransomware? is it gonna be there forever?

  • 1.  What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Wed September 08, 2021 03:35 PM

    What do you think about Ransomware? is it gonna be there forever?

    Are we ever gonna totally eradicate Ransomeware or is this war gonna continue forever? also what you do think we need to, so at least we make it less powerful than  now



    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------


  • 2.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Thu September 09, 2021 01:59 AM
    1. Yes Ransomware will stay. There are to many businesses with low or none IT-Security. There are enough old systems out there with no protection like old virtual XP machines. And as long as hackers can earn money with that.
    2. To your second questions, i dont think ransomware is such a great threat when you have a good system protection and a good backup system. We had some ransomware attacks, but nothing very bad happens. We use gentoo fileservers, the most ransomware looks for windows intern systems to use. They dont work very good on other systems.
    ​

    ------------------------------
    Lukas Mannsfeld
    ------------------------------



  • 3.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Thu September 09, 2021 05:19 AM
    Edited by Noureldin Ehab Thu September 09, 2021 05:19 AM

    yeah but they don't target those they target multinational companies that have insurance because they are sure they gonna pay, a huge company like Apple had ransomware a few months ago and they paid if apple doesn't have good system protection and good backup system who will hahaha

    ps: i am really enjoying this conversation

    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 4.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Thu September 09, 2021 05:50 AM
    Then i think Apple need to change their environment. Yeah big companys can struggle, too. But in the most chases, its like one with too much rights clicks on the wrong email attachment, or some old vba macro programs have rights and aren´t forbitten per gpos, or the good old bring your own device. I dont know the truth about this chase. But if you build a good environment you will never have problems with ransomware. And if Apple have such problems, they should higher me, then i can helph them ;D

    ------------------------------
    Lukas Mannsfeld
    ------------------------------



  • 5.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Thu September 09, 2021 05:55 AM
    https://www.bloomberg.com/news/articles/2021-04-21/apple-targeted-in-50-million-ransomware-hack-of-supplier-quanta

    oh i found the chase, it wasn´t at apple. It was at one supplier. So you can have a good environment, but when your supplier have problems. You see IT-Security is complicated :)

    "Quanta added that its information security defense system was activated immediately, and it has resumed internal services affected by the incident. The company is upgrading its cybersecurity infrastructure to protect its data."

    ------------------------------
    Lukas Mannsfeld
    ------------------------------



  • 6.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Thu September 09, 2021 07:54 AM
    yeah and this is what I am talking about they start taking care and "upgrading" their cybersecurity infrastructure after the disaster happens

    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 7.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Thu September 09, 2021 07:51 AM
    I want to help them too ahahahah

    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 8.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Thu September 09, 2021 12:45 PM

    I agree with Lukas, ransomware will be around for a while. Many of these ransomware groups are well funded and target their victims intentionally.  The question for the future is who (victim) and what attacks are possible and which ones are probable. This is where a agree with Lukas again, windows OS traditionally has been less secure and have exploits written and readily available for use. So the work should be to identify the possible ransomware risks and then determine which risks are probable. The known probable risks should be prioritized for remediation based on financial loss and brand reputation impacts if realized due to an attack. Hopefully attacks written specifically to exploit mainframes wont be a common thing. 



    ------------------------------
    Mike Grimsley
    ------------------------------



  • 9.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Thu September 09, 2021 03:18 PM
    Thats scary

    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 10.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed January 05, 2022 09:03 AM
    Edited by Adeola Ogunkola Thu November 02, 2023 10:53 AM

    @Noureldin Ehab So far we continue using computers on daily basis and other technology. I Believe there will always be Ransomware â€‹. Attackers out there are always eager to milk away peoples money. What we need to do is to continue adopting best practices and new tools to stay updated.

    ------------------------------
    Adeola Ogunkola
    ------------------------------



  • 11.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Thu January 06, 2022 05:15 AM
    people don't care about security seriously until they get hacked

    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 12.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Fri January 07, 2022 02:43 PM

    It is difficult to get action (read money) as you mention until something bad happens.   Sad but true.

     

    I do think ransomware is here to stay.

     

    Dan

     

     

    _______________________________________________________________________

    If you received this email in error, please advise the sender (by return email or otherwise) immediately. You have consented to receive the attached electronically at the above-noted email address; please retain a copy of this confirmation for future reference.

    Si vous recevez ce courriel par erreur, veuillez en aviser l'expéditeur immédiatement, par retour de courriel ou par un autre moyen. Vous avez accepté de recevoir le(s) document(s) ci-joint(s) par voie électronique à l'adresse courriel indiquée ci-dessus; veuillez conserver une copie de cette confirmation pour les fins de reference future.






  • 13.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Sat January 08, 2022 04:18 AM
    Do you think it is gonna stay even with quantum computers getting more powerful?

    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 14.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Fri January 21, 2022 04:04 PM
    Yes, the ransomware will still exist, as long as the security system is weak and not fixed by IT Professionals.

    ------------------------------
    Erwin Lagu
    Musician
    www.laguindonesia.my.id
    Sidoarjo
    ------------------------------



  • 15.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Fri January 21, 2022 04:16 PM

    we don't know how quantum computers are gonna evolve and we don't know how cryptography gonna keep up with it too

    who knows maybe one day will have quantum phones



    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 16.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Mon January 24, 2022 10:00 AM
    as long as we have corrupt people with criminal intents, we have all forms of cybercrime that deliver good ROI. The aim is not to make everything 100% safe, the aim is to make it so complicated that there is no ROI. Same as everywhere, think of cybercrime as a businessmodel.

    ------------------------------
    Hans-Juergen Waack
    ------------------------------



  • 17.  RE: What do you think about Ransomware? is it gonna be there forever?

    IBM Champion
    Posted Tue January 25, 2022 04:32 AM
    Hans-Jürgen is absolutely right about the nature of criminal business models and no 100% security available out there. Ransomware will stay until its business model gets disrupted by us or replaced by something promising even more reveniew.
    BTW when Bitcoins and other crypto currencies drop by 50% these days, will the number of ransomware attacks increase by the same value? KPI anyone?

    ------------------------------
    [Karl] [Jaeger] [Business Partner]
    [QRadar Specialist]
    [pro4bizz]
    [Karlsruhe] [Germany]
    [4972190981722]
    ------------------------------



  • 18.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Tue January 25, 2022 09:58 AM
    Edited by Noureldin Ehab Tue January 25, 2022 09:58 AM
    That's an interesting question, idk if they have a profit target that they want to achieve, i thought  it was just random they just make money

    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 19.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Tue January 25, 2022 10:04 AM

    For as long as the "Public Internet" exists I believe it will. Things might change a bit when the concept of the "Internet 2.0" 

     



    ------------------------------
    Matthew Giannelis
    CEO
    Tech Business News
    Melbourne VIC
    +61431401041
    ------------------------------



  • 20.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Tue January 25, 2022 10:28 AM

    I didn't know that ransomware is that old



    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 21.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Tue January 25, 2022 10:50 AM
    Maybe we could try and find a record of the first published and recognised attack. That would be interesting data



    ------------------------------
    Matthew Giannelis
    CEO
    Tech Business News
    Melbourne VIC
    +61431401041
    ------------------------------



  • 22.  RE: What do you think about Ransomware? is it gonna be there forever?

    IBM Champion
    Posted Tue January 25, 2022 11:35 AM
    I love this discussion - someone said this in here before - cause it reminds me of the time we started our 1st security company back in 1995.
    AIDS (Trojan horse) details can be found here https://en.wikipedia.org/wiki/AIDS_(Trojan_horse) and background info on cryptovirology at https://en.wikipedia.org/wiki/Cryptovirology This is dating back to 1932 when Enigma code was broken 1st time. The algorithm got improved by Alan Turing in 1939 using the famous Bombe https://en.wikipedia.org/wiki/Bombe he and his team mates developed during wartimes at Bletchley Park. So the 1st cyberwarriors came from the UK.
    PS Great movie about Alans live if you like biopics. Movie trailer "the imitation game" can be seen at https://www.youtube.com/watch?v=nuPZUUED5uk

    ------------------------------
    [Karl] [Jaeger] [Business Partner]
    [QRadar Specialist]
    [pro4bizz]
    [Karlsruhe] [Germany]
    [4972190981722]
    ------------------------------



  • 23.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Tue January 25, 2022 03:46 PM

    This is sooo interesting maybe i should write a blog about AIDS (Trojan horse) and yesss the movie is soo good it is one of my favorites



    ------------------------------
    Noureldin Ehab
    Software Engineering Student | Cyber Security Enthusiast | Red Team 🔴 | CTF Addict 👾
    Twitter:https://twitter.com/Nouureldin_Ehab
    Linkedin:https://www.linkedin.com/in/noureldin-ehab-a57940190/
    ------------------------------



  • 24.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Mon February 14, 2022 05:04 AM
    The idea of ransomware was born in the moment when software was developed and data was kept. Cloud is the next level where you trust that the provider will do everything right. Why do you think there are so many customers that drive a hybrid infrastructure, partly with systems cut off the internet? Homo homini lupus est. The attacks you see are only those you can detect. There are more invisible attacks than most think.

    ------------------------------
    Hans-Juergen Waack
    ------------------------------



  • 25.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed January 26, 2022 10:17 AM
    Regarding meeting a profit target, yes, I have heard that many are run by business men who left big business and they running them the same way. 

    I had no idea ransomware has been around that long.

    ------------------------------
    Gwen Pekuri
    ------------------------------



  • 26.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed January 26, 2022 10:20 AM
    In my view,  ransomware is not the core problem at all.  The core problem is mostly basic design errors,  accompanied by a complete loss of security,  and completely inadequate verification of input. Ransomware is only a product of insecure infrastructure.  Ransomware is so effective because the infrastructure  usually makes it possible.
     
    Mit freundlichen Grüßen / Kind regards
    David Honisch
    IBM CIC Germany GmbH
    Senior Fullstack Developer

     
    E-Mail:  david.honisch@ibm.com  |  Mobile:  +49-173-5647515

     
     

    IBM Client Innovation Center Germany GmbH,
    Universitätsplatz 12, 39104 Magdeburg
    Geschäftsführung:
    Jörg Fleischer,
    Corneliu-Hary Olaru,
    Ingo Zimmermann
    Sitz der Gesellschaft: Magdeburg / Registergericht: Stendal, HRB 19455

    ibm.biz/cicgermany

     







  • 27.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Wed January 26, 2022 12:38 PM
    Edited by Noureldin Ehab Wed January 26, 2022 12:40 PM
    There is nothing 100% secure though
    --
    Noureldin ehab 





  • 28.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed January 26, 2022 01:01 PM
    That's actually a really good call. I like the angle. I think the human factor of "Choice" between right and wrong is also big social factor. 


    ------------------------------
    Matthew Giannelis
    CEO
    Tech Business News
    Melbourne VIC
    +61431401041
    ------------------------------



  • 29.  RE: What do you think about Ransomware? is it gonna be there forever?

    IBM Champion
    Posted Tue February 01, 2022 06:17 AM
    David, you are absolutely correct about the root cause of many attacks, but not all of them. In your quote the problem lies in the little word "only". Does this mean 100%? Is that what you are trying to say? If your answer is yes, you are on the wrong track called "false sense of security", at least partially
    Ransomware is only a product of insecure infrastructure. 
    Yes its much more effective f your infrastructure is a big peace of s... But smart targeted spear phishing attacks are getting better each day. What about your security measures? how do you make sure that nobody clicks on something he received in his personal mailbox? Looking exactly like an IBM message to meet compliance requirements? One day before end of month? Send to someone with access to critical assets? Like myself?

    All of your security measures will never meet 100%. So you need much more than a plan and security devices being setup. Sensitivity training, awareness, procedures, smart people at C-level etc. From our 40 year experience this is not the case at many customer sites. If it was there would be no need for our discussion in here, right?

    ------------------------------
    [Karl] [Jaeger] [Business Partner]
    [QRadar Specialist]
    [pro4bizz]
    [Karlsruhe] [Germany]
    [4972190981722]
    ------------------------------



  • 30.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Thu February 03, 2022 02:49 AM
    Dear Karl,
     
    there is of course never 1 factor that lead to high security hurdles. Hackz of the Bundestag in Germany were realized via active documents (PDF or Word with macros). As long as there is such an area, the people themselves must of course be sensitized.
     
    From my point of view, however, the hurdles that a hacker has to overcome are the best security measures.
    The natural person is the greatest weak point and should therefore also be limited with rights, which is unfortunately not the case with the Bundestag.
     
    Mit freundlichen Grüßen / Kind regards
    David Honisch
    IBM CIC Germany GmbH
    Senior Fullstack Developer

     
    E-Mail:  david.honisch@ibm.com  |  Mobile:  +49-173-5647515

     
     

    IBM Client Innovation Center Germany GmbH,
    Universitätsplatz 12, 39104 Magdeburg
    Geschäftsführung:
    Jörg Fleischer,
    Corneliu-Hary Olaru,
    Ingo Zimmermann
    Sitz der Gesellschaft: Magdeburg / Registergericht: Stendal, HRB 19455

    ibm.biz/cicgermany

     
     
     
    ----- Ursprüngliche Nachricht -----
     





  • 31.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed January 26, 2022 10:52 AM

    Modern ransomware attacks follow a "double extortion" scheme. Along with encrypting data, cybercriminals threaten companies to delete or leak critical data to the dark web. By doing so, attackers put pressure on their victims and force them to pay. For example, in 2021, the ransomware gang REvil posted engineering and manufacturing schemas of Apple products when the company refused to pay a $50 million ransom.

    As ransomware becomes an organized business, attacks are getting more sophisticated and devastating. More often than not, cybercriminals don't choose their victims randomly. Instead, they check the company's industry, finances and other information to get the most out of their attacks.



    ------------------------------
    Alex Tray
    ------------------------------



  • 32.  RE: What do you think about Ransomware? is it gonna be there forever?

    User Group Leader
    Posted Wed January 26, 2022 12:40 PM
    Edited by Noureldin Ehab Wed January 26, 2022 12:41 PM
    Thank God REvil got caught a few days ago, i read that they only target companies that have insurance because they are sure that the insurance company will pay
    --
    Noureldin ehab 





  • 33.  RE: What do you think about Ransomware? is it gonna be there forever?

    IBM Champion
    Posted Tue February 01, 2022 05:56 AM
    this proves again, that insurance companies can make things even worse. Of course it is their business model to sell contracts. In Germany most insurances require the customer to have  security check be made or security certificate applied already, e.g. ISO 27001 or TÃœV. From my personal view international and EU compliance standards should require companies NOT being insured against ransomware attacks, cause this leads to a fall sense of security, especially at C-level. Say "in case of attack we simply roll back infrastructure to backup copy, insurance will do the rest". This approach will lead to even more attacks out there and less security inside the companies and business processes. Just my 0.2 cent
    PS I vaguely remember that there are compliance requirements for not having a ransomware insurance contract, e.g. for service providers??

    ------------------------------
    [Karl] [Jaeger] [Business Partner]
    [QRadar Specialist]
    [pro4bizz]
    [Karlsruhe] [Germany]
    [4972190981722]
    ------------------------------



  • 34.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed January 26, 2022 12:51 PM

    As for Revil.6 of them were jailed. 

    Mikhail Golovachuk, Ruslan Khansvyarov, Dmitry Korotaev, Alexei Malozemov, Artem Zatz and Daniil Puzyrevsky

    .



    ------------------------------
    Matthew Giannelis
    CEO
    Tech Business News
    Melbourne VIC
    +61431401041
    ------------------------------



  • 35.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed February 23, 2022 07:44 AM
    Yes it is there to stay.
    The only solution is the idea of training people.

    ------------------------------
    Usama Nisar
    ------------------------------



  • 36.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Wed February 23, 2022 07:54 AM
    Edited by Adeola Ogunkola Thu November 02, 2023 11:00 AM

    That's true. There is need for continuous sensitization and awareness.

    ------------------------------
    Adeola Ogunkola
    ------------------------------



  • 37.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Tue March 08, 2022 07:50 AM
    As long as victims continue to pay ransom and threat actors keep making profit, it is very unlikely for ransomware to decrease. Another factor which mentioned above is the vast attack surface internet provides along with poorly secured organizations.

    ------------------------------
    THANASSIS DIOGOS
    ------------------------------



  • 38.  RE: What do you think about Ransomware? is it gonna be there forever?

    Posted Tue March 08, 2022 08:47 AM
    Edited by Hans-Juergen Waack Tue March 08, 2022 08:47 AM
    Imo the people need to be more educated and be aware of what can happen; we rely very much on machines and too little on brains imo. As in a song quoted actually "the phones get smart and the people get dumb". We need to get people to be aware and not only rely on external services from people who don't know the companies internal; the monitoring & machines need to be an addition, but not a replacement of thinking. "THINK!" was once the word in the entry of a big company.

    ------------------------------
    Hans-Juergen Waack
    ------------------------------