IT is changing. Companies try to keep pace with rising cyber security threat levels, but advanced black-hat hacking will reach your virtual doorstep sooner or later.
These worries resonate following news this morning that the Luas website was compromised by malicious ransomware.
The incident began with a message that appeared on the Luas website this morning, reading:
“You are hacked… some time ago i wrote that you have serious security holes… you didn’t reply… the next time someone talks to you, press the reply button… you must pay 1 bitcoin in 5 days… otherwise I will publish all data and send emails to your users.”
Speaking to The Irish Times about the attack, Evros CIO Joe Brady explains that attacks like these are on the up rise: “Ransomware came to the forefront as a serious risk in 2016 before reducing somewhat in pervasiveness through 2017 as organisations came to terms with the early versions of this threat.
“We are now starting to see an increase in these types of attacks with more aggressive behaviours and delivery mechanisms, often targeting backup data as well as production files and seeking to propagate itself throughout the network.”
Joe adds: “To mitigate these types of attacks, it is important to have protection in place for all systems – but equally important is ensuring an adequate level of security awareness in your users.”
It’s time to assess your environment’s security standards by asking if your company:
- Implements Endpoint Detection and Response (EPR)/ Endpoint Protection (EPP)?
- Has installed Anti-malware/phishing/Anti-spyware/Antivirus Software/Anomaly Detection?
- Has administered an Intrusion Detection System/Intrusion Prevention System (IPS)?
- Enforces Data Classification and Governance?
- Implements Data Encryption & Information Protection?
- Secures your mailboxes against advanced threats and unsafe attachments?
- Protects your environment when users click malicious links?
- Gains critical trace capability and reporting on your attacks?
- Implements company-wide education on security best practices?
It’s critical to have a partner that understands how to implement security in this ever-changing environment. Our skilled 24/7 security operation centre delivers full support to your organisation in each area of Information Security: design, implementation, monitoring, and incident response to any risk that might affect your business.
Are you struggling with resources to maintain your security efforts? It might be time to talk to us. Schedule your security assessment with Evros today.