RYUK Ransomware “Still Strong But Not For Long” – LTS Secure Warning And Prevention

Pune – April 30, 2019

Ransomware is not only about weaponizing encryption, its more about bridging the fractures in the mind with a weaponized message that demands a response from the victim. Unlike the revolution of most of the ransomware which is circulated and distributed via massive mail-spam campaigns and exploits kits, RYUK ransomware is widely used for tailored attacks. Ransomware is more about manipulating vulnerabilities in human psychology than the adversary’s technological sophistication. Ryuk ransomware is still running rampant and this threat is especially lethal for businesses given the ransomware’s targeted nature, high ransom demand, and bad decryptor that have already caused several businesses to shut down.

The encryption scheme is highly developed to affect the small-scale operations which might cause potential harm to the critical assets and resources in each desired network being carried out manually by attackers. Encrypted files which are not appended with any extension use Robust algorithms like AES – 256 and RSA – 4096 to encrypt the victim’s file.

When it comes to ransomware, in order to keep pace with attackers we must work together against threats – whether that’s coordination between public and private organizations, sharing of threat intelligence or education within individual businesses. LTS Secure Integrated SOC Solution recommends you to regularly update and perform malware scans and prohibit access to certain mapped drives based on the role requirements.

For more Information click here

About LTS Secure:

LTS Secure is an Integrated Security Platform (SIEM + UEBA + CASB + IDM) that enables continuous monitoring & detection of Threats, Vulnerabilities and Risk of IT Network, Applications and by Users in a single pane based on Security Orchestration, Automation and Response.

Tel : +91-20-2689 9853