Share

SA firms face ransomware spike

Cape Town – Cyber criminals have upped the ante by targeting local companies with ransomware, says a security company.

Fortinet says that cyber crooks target South African companies with malicious email attachments.

“In both cases, the ransomware came in via email attachments that looked legitimate to the users who received them. The malware could be hidden in an Excel spreadsheet or docx file, and the only clue that the mail was suspicious would come from analysing the sender address,” said Paul Williams, major account manager at Fortinet about two recent attacks.

He added that the ransomware is on the increase in SA though few companies are willing to reveal details of attacks.

“Many businesses from all verticals - these business will not be vocal about this as it could compromise their stature in the market place,” Williams told Fin24 about companies’ response to ransom demands.

Decryption keys

Ransomware is a scam where criminals will lock down computers and demand a ransom, usually paid in virtual currency. For some, paying the ransom is an easier option than trying to beat the encryption.

Some advised that you should not pay ransom to cyber criminals.

"Paying for ransom is a dangerous option. For starters, there is no guarantee your files will be returned or that the malware will be removed. Will the hacker exploit you again in six months’ time?" said Eset South Africa of ransomware scams.

Security company Kaspersky Lab announced recently that it was sharing a website to decryption keys obtained from busted cyber criminal rings.

“If you pay, you keep the criminal business model rolling. If you don’t, there is no business model for them anymore. Moreover, paying up will not guarantee that your files will be retrieved,” said Jornt van der Wiel, security researcher at Kaspersky Lab’s Global Research and Analysis Team.

Williams said that cyber crooks will “cyber bully” company executives in order to extract a ransom payment.

“This trend for hackers to make targeted attacks demanding something of the victim extends to cyber bullying. We now see attackers hacking the devices or social media accounts of individuals in order to bribe them or make demands of them.”

Increasing problem

Most of the attacks against South African companies originate from Africa, Eastern bloc countries or Asia, Fortinet noted.

“In many cases, hackers target a company’s website in order to make demands, or to use the portal as a gateway to the company’s back end systems. These targeted attacks are done for the purposes of espionage, theft and fraud, or to demand a ransom,” said Williams.

Despite the lack of hard data on the scale of the attacks, Williams argued that the problem was on the increase as companies turned to security professionals when they experienced attacks.

“We are seeing more and more targeted attacks happening locally.”


- Follow Duncan on Twitter

We live in a world where facts and fiction get blurred
Who we choose to trust can have a profound impact on our lives. Join thousands of devoted South Africans who look to News24 to bring them news they can trust every day. As we celebrate 25 years, become a News24 subscriber as we strive to keep you informed, inspired and empowered.
Join News24 today
heading
description
username
Show Comments ()
Rand - Dollar
18.94
-0.2%
Rand - Pound
23.91
-0.1%
Rand - Euro
20.43
+0.2%
Rand - Aus dollar
12.34
+0.1%
Rand - Yen
0.13
-0.2%
Platinum
910.50
+1.5%
Palladium
1,011.50
+1.0%
Gold
2,221.35
+1.2%
Silver
24.87
+0.9%
Brent Crude
86.09
-0.2%
Top 40
68,346
+1.0%
All Share
74,536
+0.8%
Resource 10
57,251
+2.8%
Industrial 25
103,936
+0.6%
Financial 15
16,502
-0.1%
All JSE data delayed by at least 15 minutes Iress logo
Company Snapshot
Editorial feedback and complaints

Contact the public editor with feedback for our journalists, complaints, queries or suggestions about articles on News24.

LEARN MORE
Government tenders

Find public sector tender opportunities in South Africa here.

Government tenders
This portal provides access to information on all tenders made by all public sector organisations in all spheres of government.
Browse tenders