BotNet News

In a ransomware attack, cyber criminals extort a business by hijacking its computer systems, locking crucial files, and threatening to delete the data unless a payment is made. These attacks continue to escalate, as hackers are able to exploit security weaknesses with increasing speed and sophistication. Attacks on Colonial Pipeline, JBS Foods and other major organisations highlight the need to adopt robust cybersecurity postures across critical sectors.

Historically, ransomware attacks were limited in scope and sophistication [19]. Hackers typically targeted individuals, requesting a few hundred dollars for access to personal files like photographs and financial documents, often with a friendly approach, such as apologising for the inconvenience or offering support to fix the problem once a ransom had been paid.

But as ransomware developed into a mature, scalable business model, organised gangs entered the field, using advertising on the dark web to find victims and improving the malware by targeting vulnerabilities, developing wormable variants and avoiding detection by anti-malware scanners [20]. The result is an exponential increase in reported attacks.

The rapid rise of ransomware is a serious threat to public health, and not just because the cost of paying a ransom is estimated at hundreds of millions of dollars. For example, ransomware attacks on healthcare organizations can cause delays in diagnostics and treatment that may lead to aggravated conditions, resulting in longer-term costs and potentially increased deaths from heart disease, stroke and sepsis.

To reduce the likelihood of such attacks, we must shift our view of ransomware beyond technical exploits and countermeasures, to consider its impact on society as a whole. This includes addressing the underlying motivations of attackers by raising awareness about the threat and fostering stronger industry standards, as well as working together to identify and address the vulnerabilities that fuel these attacks.