Ransomware has been a new passion these days and the infection made by ransomware in increasing at rapid rate. Recently hospitals has been targeted by ransomware. A new ransomware targets hospital servers.
Due to the growth of technology, these days the patient details has been stored in the central database and the data are stored in #Electronic Media Records (#EMR). Compromising the server or taking them down for few days will result in the death of patient due to the loss of medical records.
A new ransomware named #Samsam targeted a hospital and demanded a huge amount of bitcoins but the hospital refused to pay. They have a copy of data in backup server and they are getting their data back without paying them.
Few good things implemented by the hospital is that they detect the intrusion earlier and they shutdown their internal network thus preventing the spreading of infection and also maintaining the backup helps at right time.
#Samsam ransomware if landed will first test for vulnerability in the JBoss application by using the JexBoss, pen testing tool and then after gaining root access infect all the system running windows and it will start spreading the infection.
Once the server has been compromised no communication takes place between the system and the C&C.
Due to the increase in ransomware, maintaining backup data has been moved from optional choice to mandatory choice.
P.S: The post is to create awareness and not to be misused.
No comments:
Post a Comment