Weekly Threat Report - 20th April 2018
Report's are drawn from recent open source reporting, see the latest report here:.
Cost of ransomware attack on Atlanta
As reported in the Weekly Threat Report of 6 April 2018, the US city of Atlanta recently fell victim to an attack by the SamSam ransomware, which exploits a vulnerability in Java servers.
New reports indicate the city spent in the region of $2.66m responding to the attack. Costs included incident response, recovery and crisis management, but the city did not pay the ransom demand, reported to be approximately $55,000. There was also a broader cost in terms of the disruption the attack brought to city-wide services, with residents unable to pay bills and parking tickets as the city’s self-service portal was taken offline.
This case highlights the costs to organisations of ransomware attacks. However, paying a ransom does not guarantee that data will be returned and access to files restored. Nor does paying a ransom prevent a future attack; indeed, it may encourage further attacks.
Investment in cyber security can reduce the likelihood of malware infection and prevent the need for costly clean-up operations.
The NCSC has issued guidance on mitigating ransomware and other forms of malware.
Iran and India ban cryptocurrencies
Iran’s central bank has banned Iranian banks, credit institutions and currency exchanges from selling or purchasing digital currencies. It says cryptocurrencies, like Bitcoin, are used in money-laundering and financing terrorism, and that they are inherently unreliable and risky.
The same concerns are expressed widely around the world, including by the Chief of the International Monetary Fund, but many also believe digital currencies and the technology behind them could have a positive effect as a low-cost payment method.
Iran’s actions follow similar decisions by other central banks, such as the Reserve Bank of India’s decision in April to serve three months’ notice for entities they regulate to cease dealing in digital currencies.
The central bank decisions have been concerning for digital currency users in these countries (reportedly around five million in India), but it is too early to say whether these actions will last, have any long-term impact on the wider cryptocurrency market or whether other countries will follow suit.
Some countries are debating the regulation of digital currencies: Japan has recently created a regulatory body for its cryptocurrency exchanges, for example, and others have considered creating their own state-backed digital currencies.
The future of digital currencies is still unknown, which is a major contributing factor to their price volatility, but they are likely to be with us for the foreseeable future.
National Cyber Security Centre Threat Reports