IISPEastMids, profile picture
Uploaded byIISPEastMids
929 views

Ransomware - Mark Chimely

The document provides an overview of ransomware, its types, and methods of prevention. It highlights the prevalence of ransomware attacks, particularly in the UK, where many businesses and universities have been targeted. Mitigation strategies include data recovery options, anti-virus software, and robust information security management practices.

Embed presentation

Download to read offline
Ransomware What it is and how to avoid becoming a victim Mark Chimley 13 October 2016
(c) Genus One Ltd 2016 Contents 1. Introduction 1. Background and history 2. Technical Information 1. How Ransomware operates 2. Statistics & classification 3. Mitigation 1. Prevention and cure
(c) Genus One Ltd 2016 Introduction Cryptovirology A study of cryptography in malware Aug 2013
(c) Genus One Ltd 2016 Introduction Observations “The researchers consulted during this study widely hold the opinion that cryptography is no longer being used for obfuscation of modern malware and is of decreasing relevance” ● [What if] more complex cryptography were used - along the lines described in this report? ● Why isn't there more ransomware?
(c) Genus One Ltd 2016 Introduction
(c) Genus One Ltd 2016 Introduction New Age of Ransomware ● In Britain 54% of surveyed businesses have been targeted with ransomware {Malwarebytes} ● Over 120 separate families of ransomware ● “... businesses which have spent hundreds of millions of dollars on end-point security … are still getting hit by [ransomware]” {Bromium} ● 56% of UK universities suffered a ransomware attack in the past year {SentinelOne}
(c) Genus One Ltd 2016 Technical Details Ransomware Types Lockers Disable parts of the computer operating system Data Extortion Copies data and threatens to expose it Cryptographic Ransomware Encrypts data so it cannot be accessed
(c) Genus One Ltd 2016 Technical Details Symmetric Cryptography
(c) Genus One Ltd 2016 Technical Details Asymmetric Cryptography
(c) Genus One Ltd 2016 Technical Details Cryptographic Ransomware
(c) Genus One Ltd 2016 Technical Details
(c) Genus One Ltd 2016 Technical Details Categorisation ● Recoverable ● Weak Cryptography ● Poor implementation ● Fake (no encryption) ● Obtain keys e.g. server 'take-down' ● Non-Recoverable ● Well designed ● Uses a robust crypto- library ● Not yet analysed
(c) Genus One Ltd 2016 Mitigation Data Recovery ● Ransomware 'decryptor' tool – Recovers data from poor or compromised ransomware ● Pay up! – But this proliferates the attacks ● Restore data from backups – Assuming backups not encrypted too!
(c) Genus One Ltd 2016 Mitigation Anti-Virus Software ● On-access scanning – For signatures of known malware ● Web browser plug-in – Warns of known risky or compromised sites ● Keep it up to date ● Not a panacea
(c) Genus One Ltd 2016 Mitigation Information Security Management ● Awareness – Security training ● Backup ● Anti-malware ● Email – Links – Attachments ● Software Updates – OS and Apps ● Data Separation ● Trusted Applications
(c) Genus One Ltd 2016 Questions For more information about cyber security and how to protect your data please visit our website: http://www.genusone.co.uk/ http://www.trendmicro.com/

More Related Content

PDF
Safe Browsing in 2016
byGabor Szathmari
 
PDF
The Slow Death of Passwords
byForgeRock Identity Tech Talks
 
PPTX
Information on Brute Force Attack
byHTS Hosting
 
PDF
RSA Cybercrime Statistics : November 2013
byEMC
 
DOCX
Randall granlund resume
byRandall Granlund
 
PPT
Cyber Security Awareness - file 1 of 2
byMohammad Ashfaqur Rahman
 
PPT
Cyber Security Awareness - file 2 of 2
byMohammad Ashfaqur Rahman
 
PDF
WCBham Beginner WordPress Security
byGerroald Barron
 
Safe Browsing in 2016
byGabor Szathmari
 
The Slow Death of Passwords
byForgeRock Identity Tech Talks
 
Information on Brute Force Attack
byHTS Hosting
 
RSA Cybercrime Statistics : November 2013
byEMC
 
Randall granlund resume
byRandall Granlund
 
Cyber Security Awareness - file 1 of 2
byMohammad Ashfaqur Rahman
 
Cyber Security Awareness - file 2 of 2
byMohammad Ashfaqur Rahman
 
WCBham Beginner WordPress Security
byGerroald Barron
 

Viewers also liked

PDF
Ransomware: History, Analysis, & Mitigation - PDF
byAndy Thompson
 
PDF
How to recover from ransomware
byDatabarracks
 
PDF
Mike Gillespie - The Internet of Everything
byIISPEastMids
 
PPTX
Ransomware: Mitigation Through Preparation
byHostway|HOSTING
 
PDF
Managing and insuring cyber risk - a risk perspective
byIISPEastMids
 
PDF
Qonex - Securing the IoT
byIISPEastMids
 
PDF
Econocom - identifying funding for success
byIISPEastMids
 
PPTX
IISP Sept 2014 presentation
byIISPEastMids
 
PDF
Investigation of CryptoLocker Ransomware Trojans - Microsoft Windows
byAaron ND Sawmadal
 
PDF
Cloud services and it security
byEast Midlands Cyber Security Forum
 
PDF
How to avoid becoming the next victim of ransomware
byIISPEastMids
 
PDF
NTXISSACSC4 - Ransomware: History Analysis & Mitigation
byNorth Texas Chapter of the ISSA
 
PPTX
Dissecting Cryptowall
byCyphort
 
PDF
Webroot - self-defending IoT devices & gateways
byIISPEastMids
 
PDF
The Impact of the General Data Protection Regulation - 10th May 2016
byIISPEastMids
 
PPTX
Redscan - Insider threat case study
byIISPEastMids
 
PDF
Internet of Things - how secure is it?
byIISPEastMids
 
PPTX
Acromobile Presentation Deck for Visa FinTech Asia 2014
byAcromobile
 
PPTX
IISP East Midlands Sept 2014 - Jim Shields presentation
byIISPEastMids
 
PDF
Governance - the Role of the Board
byQonex
 
Ransomware: History, Analysis, & Mitigation - PDF
byAndy Thompson
 
How to recover from ransomware
byDatabarracks
 
Mike Gillespie - The Internet of Everything
byIISPEastMids
 
Ransomware: Mitigation Through Preparation
byHostway|HOSTING
 
Managing and insuring cyber risk - a risk perspective
byIISPEastMids
 
Qonex - Securing the IoT
byIISPEastMids
 
Econocom - identifying funding for success
byIISPEastMids
 
IISP Sept 2014 presentation
byIISPEastMids
 
Investigation of CryptoLocker Ransomware Trojans - Microsoft Windows
byAaron ND Sawmadal
 
Cloud services and it security
byEast Midlands Cyber Security Forum
 
How to avoid becoming the next victim of ransomware
byIISPEastMids
 
NTXISSACSC4 - Ransomware: History Analysis & Mitigation
byNorth Texas Chapter of the ISSA
 
Dissecting Cryptowall
byCyphort
 
Webroot - self-defending IoT devices & gateways
byIISPEastMids
 
The Impact of the General Data Protection Regulation - 10th May 2016
byIISPEastMids
 
Redscan - Insider threat case study
byIISPEastMids
 
Internet of Things - how secure is it?
byIISPEastMids
 
Acromobile Presentation Deck for Visa FinTech Asia 2014
byAcromobile
 
IISP East Midlands Sept 2014 - Jim Shields presentation
byIISPEastMids
 
Governance - the Role of the Board
byQonex
 

Similar to Ransomware - Mark Chimely

PDF
Your Money or Your Data: Ransomware, Cyber Security and Today’s Threat Landsc...
byRoger Hagedorn
 
PPTX
Defend Your Company Against Ransomware
byKevo Meehan
 
PDF
Get Smart about Ransomware: Protect Yourself and Organization
bySecurity Innovation
 
PPTX
Web Security.pptx
byAnnMichelleDiaz
 
PDF
Ransomware ly
byLisa Young
 
PPTX
Ransomware - Friend or Foe
bySrinivas Thimmaiah
 
PPSX
Security Awareness Training
byWilliam Mann
 
PPT
Ransomware: Prevention, privacy and your options post-breach
byGowling WLG
 
PPTX
2nd Class PPT.pptx
bySibyJames1
 
PDF
Week3-CyberSecurity 8th Semester important.pdf
byMArshad35
 
PPT
Cyber-Security.ppt
bySeniorGaming
 
PPT
Cyber-Security-CIT good for 1st year engineering students
byDrPraveenKumar37
 
PPT
Cyber-Security-.ppt
bykarthikvcyber
 
DOCX
External threats to information system: Malicious software and computer crimes
bySouman Guha
 
PDF
Trendlabs 1h-2016-security-roundup-en
byAndrey Apuhtin
 
PPTX
Ransomware Review 2017
byDryden Geary
 
PPTX
Industry reactions to wanna cry ransomware attacks
bykevinmass30
 
PDF
5 Ways to Protect Your Healthcare Organization from a Ransomware Attack - HIM...
byClearDATACloud
 
PDF
Ransomware Trends 2017 & Mitigation Techniques
byAvinash Sinha
 
PPT
Safe Computing At Home And Work
byJohn Steensen, MBA/TM, CISA, CRISC
 
Your Money or Your Data: Ransomware, Cyber Security and Today’s Threat Landsc...
byRoger Hagedorn
 
Defend Your Company Against Ransomware
byKevo Meehan
 
Get Smart about Ransomware: Protect Yourself and Organization
bySecurity Innovation
 
Web Security.pptx
byAnnMichelleDiaz
 
Ransomware ly
byLisa Young
 
Ransomware - Friend or Foe
bySrinivas Thimmaiah
 
Security Awareness Training
byWilliam Mann
 
Ransomware: Prevention, privacy and your options post-breach
byGowling WLG
 
2nd Class PPT.pptx
bySibyJames1
 
Week3-CyberSecurity 8th Semester important.pdf
byMArshad35
 
Cyber-Security.ppt
bySeniorGaming
 
Cyber-Security-CIT good for 1st year engineering students
byDrPraveenKumar37
 
Cyber-Security-.ppt
bykarthikvcyber
 
External threats to information system: Malicious software and computer crimes
bySouman Guha
 
Trendlabs 1h-2016-security-roundup-en
byAndrey Apuhtin
 
Ransomware Review 2017
byDryden Geary
 
Industry reactions to wanna cry ransomware attacks
bykevinmass30
 
5 Ways to Protect Your Healthcare Organization from a Ransomware Attack - HIM...
byClearDATACloud
 
Ransomware Trends 2017 & Mitigation Techniques
byAvinash Sinha
 
Safe Computing At Home And Work
byJohn Steensen, MBA/TM, CISA, CRISC
 

Recently uploaded

PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PDF
How to Evaluate a High Performance Database
byScyllaDB
 
PDF
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
PPTX
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
PPTX
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
PPTX
Gemini vs ChatGPT : Comparing Top AI Models
byDigicarrom
 
PDF
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 
PPTX
Session 2 - Solving Unstructured & Complex Documents with UiPath IXP
byDianaGray10
 
PDF
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
PPTX
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
PDF
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
PDF
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
PDF
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Exam Prep Plan Overview: Amazon Web Services (AWS) Certified
byVICTOR MAESTRE RAMIREZ
 
PDF
Day 4 - Access, Deployments, and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
How to Evaluate a High Performance Database
byScyllaDB
 
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
Gemini vs ChatGPT : Comparing Top AI Models
byDigicarrom
 
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 
Session 2 - Solving Unstructured & Complex Documents with UiPath IXP
byDianaGray10
 
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Exam Prep Plan Overview: Amazon Web Services (AWS) Certified
byVICTOR MAESTRE RAMIREZ
 
Day 4 - Access, Deployments, and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 

Ransomware - Mark Chimely

  • 1.
    Ransomware What it isand how to avoid becoming a victim Mark Chimley 13 October 2016
  • 2.
    (c) Genus OneLtd 2016 Contents 1. Introduction 1. Background and history 2. Technical Information 1. How Ransomware operates 2. Statistics & classification 3. Mitigation 1. Prevention and cure
  • 3.
    (c) Genus OneLtd 2016 Introduction Cryptovirology A study of cryptography in malware Aug 2013
  • 4.
    (c) Genus OneLtd 2016 Introduction Observations “The researchers consulted during this study widely hold the opinion that cryptography is no longer being used for obfuscation of modern malware and is of decreasing relevance” ● [What if] more complex cryptography were used - along the lines described in this report? ● Why isn't there more ransomware?
  • 5.
    (c) Genus OneLtd 2016 Introduction
  • 6.
    (c) Genus OneLtd 2016 Introduction New Age of Ransomware ● In Britain 54% of surveyed businesses have been targeted with ransomware {Malwarebytes} ● Over 120 separate families of ransomware ● “... businesses which have spent hundreds of millions of dollars on end-point security … are still getting hit by [ransomware]” {Bromium} ● 56% of UK universities suffered a ransomware attack in the past year {SentinelOne}
  • 7.
    (c) Genus OneLtd 2016 Technical Details Ransomware Types Lockers Disable parts of the computer operating system Data Extortion Copies data and threatens to expose it Cryptographic Ransomware Encrypts data so it cannot be accessed
  • 8.
    (c) Genus OneLtd 2016 Technical Details Symmetric Cryptography
  • 9.
    (c) Genus OneLtd 2016 Technical Details Asymmetric Cryptography
  • 10.
    (c) Genus OneLtd 2016 Technical Details Cryptographic Ransomware
  • 11.
    (c) Genus OneLtd 2016 Technical Details
  • 12.
    (c) Genus OneLtd 2016 Technical Details Categorisation ● Recoverable ● Weak Cryptography ● Poor implementation ● Fake (no encryption) ● Obtain keys e.g. server 'take-down' ● Non-Recoverable ● Well designed ● Uses a robust crypto- library ● Not yet analysed
  • 13.
    (c) Genus OneLtd 2016 Mitigation Data Recovery ● Ransomware 'decryptor' tool – Recovers data from poor or compromised ransomware ● Pay up! – But this proliferates the attacks ● Restore data from backups – Assuming backups not encrypted too!
  • 14.
    (c) Genus OneLtd 2016 Mitigation Anti-Virus Software ● On-access scanning – For signatures of known malware ● Web browser plug-in – Warns of known risky or compromised sites ● Keep it up to date ● Not a panacea
  • 15.
    (c) Genus OneLtd 2016 Mitigation Information Security Management ● Awareness – Security training ● Backup ● Anti-malware ● Email – Links – Attachments ● Software Updates – OS and Apps ● Data Separation ● Trusted Applications
  • 16.
    (c) Genus OneLtd 2016 Questions For more information about cyber security and how to protect your data please visit our website: http://www.genusone.co.uk/ http://www.trendmicro.com/