Ransomware Attack

Ransomware Attack

November 14, 2017 0 By Nitikesh Pattanayak

INTRODUCTION
In the world of digitization, where every information is stored digitally, information can be accessed 24X7,can be
accessed via internet and easily retrieved at cheaper rate. Everything is done smoothly on one click, effortlessly and
efficiently maintained. Digitization has improve the life style of the computer users. But as it is said “Every pillar
has two sides”. Digitization has helped in decreasing crime if applied on whole, getting things done easily and has
decrease documentation work. But still it creates a problem of security for personal and confidential information of an individual. Many thefts or cyber-attacks like spyware, malware, Trojan, phishing, intruders, spam, virus occurs.
Ransomware is also a theft. It is a kind of infection that if transmitted, it’s difficult to get out. It infects all essential
data and file in user’s computer system. If ransomware get activated in user’s system, it encrypts file like
.doc,.xls,.mp3, etc. by the public key –private key combination. A ransom is demanded pay ransom for your
data and then only you will get those files. It becomes difficult to detect that the data or files has been hijacked. At
that time user has only 2 options that is Pay ransom to them but it does not guarantee that we will get our file back (in decrypted format) or Format the PC and disconnect the Internet. Fig. 1.1 Ransom Attack below shows how a user
computer has been locked and a user is paying ransom for his data.

WannaCry Ransomware Attack 2017 was the worst attack that ever had before. WannaCry Ransomware is a type of
malicious software that blocks user access to files or systems, holding files or entire devices hostage using
encryption until the victim pays a ransom in exchange for a decryption key, which allows the user to access the files or systems encrypted by the program.It may be difficult to imagine. The first ransomware in history emerged in 1989
(that’s 27 years ago). It was called the AIDS Trojan but, seems rudimentary nowadays. It spread via floppy disks and
involved sending $189 to a post office box in Panama to pay the ransom[9].There are many types of ransomware like
Reveton, CryptoLocker, CryptoLocker.F and TorrentLocker, CryptoWall, CryptoTear, Fusob and WannaCry. Ransomware Wannacry attacked many hospitals, companies, universities and government organization across at least 150 universities, havingmore than 2, 00,000 victims. It locked all computers and demanded ransom.

a. Effect of Ransomware Attack 2017 :Encrypting
ransomware works by obscuring the contents of user files, through the use of strong encryption algorithms. Victims
have no other alternative, than paying the attacker to reverse this process.Wannacry Ransomware attack 2017 was one of the largest attacks that were ever carried out.It grabbedthe world by storm. According to eScan antivirus reports 2017; India was one of the worst affected by cyber-attack. Interestingly, Madhya Pradesh was the worst affected region in the country with around 32.63% of total ransomware attacks detected within country followed by Maharashtra at 18.84% and Delhi at third position with 8.76% share. Companies like FedEx, Nissan, railway companies in Germany, Russian Railways, Interior ministry, telecommunication company like megaforTelefonica in
spain, At least 16 NHS organisation in UK were badly effected. Some systems were caught by malware.Lot of
colleges and students computer were hit by attack in china.

b. Preventive Measures: Prevention is essential in keeping
computer safe. Its a recommendation for users to keep their operating system and software updated. Make use of
multilayers protection security solutions that is reliable. Back up all important and valuable data offline regularly.
Ransomware can be sent through various sources like Emails, Advertisement, by creating websites and many more
things that can share the ransomware to the computer users. Ransomware restricts the use of the system in various ways after intruding the system. It is mainly classified into the following three types: Scareware, Lock-Screen, and
Encrypting [8][9]. WannaCryransomware virus attacked the whole world and no one knows how to decrypt these files. Ransomware is a type of Malicious software designed to block access to computer system until some of money is paid. Following are some of the preventive measure to avoid ransomware:

• Antivirus should always have a last update.
• Spam messages should not be opened or replied.
• Back up the data. To
• defeat, regularly updated backup
• Personalize the anti-spam settings the right way.
• Apply patches and keep the operating system, antivirus,  browsers, Adobe Flash Player, Java, and other software
up-to-date.
• Keep the Windows Firewall turned on and properly configured at all times.
• Enhance the security of your Microsoft Office components (Word, Excel, PowerPoint, Access, etc.).
• Think of disabling remote services.
• .Filter EXEs in email.
• Use a reputable security suite.
• Use System Restore to get back to a known-clean state.
• Use System Restore to get back to a known-clean state.
• Sure to disable file sharing.
• Switch off unused wireless connections, such as Bluetooth or infrared ports.
• Exercise caution before using Wi-Fi network.
• Do not click on harmful links in your email.
• Do not visit unsafe and unreliable websites. Rather than clicking any web links, type out web address on address bar. A novel practise to protect against ransomware attack is to back all files completely on another system frequently to avoid loss of data.

 

for more similar blogs visit: https://blog.nitikesh.info