Ransomware Attack On Accenture

Uploaded on 2021-08-16 in FREE TO VIEW, BUSINESS-Services-Consulting

The global business consulting firm Accenture has confirmed that it has become a victim of a LockBit ransomware attack. According to the company, LockBit was used in attempt to freeze various corporate databases, although the firm says that it has recovered all its data using backups. 

The LockBit ransomware-as-a-service (RaaS) gang has published the name and logo of Accenture, with a mischievous message and an implied threat to the security of even some of the world’s biggest, most powerful companies.

Ransomware Background

Ransomware is a subset of malware in which the data on a victim's computer is locked, typically by encryption, and payment is demanded before the ransomed data is decrypted and access is returned to the victim. The motive for ransomware attacks is usually monetary, and unlike other types of attacks, the victim is usually notified that an exploit has occurred and is given instructions for how to recover from the attack. Payment is often demanded in a virtual currency, such as bitcoin, so that the cyber criminal's identity is not known.

In May this year Colonial Pipeline paid almost $5 million to restore its systems after DarkSide used encryption to hold hostage the pipeline, which supplies nearly half of the East Coast’s fuel to 50 million people. 

The cybersecurity industry is stretched thin. Ransomware attacks are now so prolific that some companies simply cannot help every newly hacked victim get back online and a shortage of workers means no immediate help in sight. One of the biggest problems that organisations face in the battle against ransomware is a lack of expert guidance and attacks have become so prolific that organisations don’t have the internal expertise to address the risk and are unable to seek assistance from third parties.

The pace of attacks is seemingly relentless. President Biden has spoken about  the issue, stressing how much ransomware activity originates from Russia,where cyber criminals seem to work with impunity. In  of the most prolific ransomware gangs, REvil, carried out one of its boldest attacks on the Fourth of July weekend on Kaseya, a n IT services buisness which infected the customer supply chain. Experts say the hack permitted REvil to infect  more than 1,500 corporations in the US and around the world. 

Types of Ransomware

There are three main types of ransomware.

Scareware:   Scareware includes rogue security software and tech support scams. You might receive a pop-up message claiming that malware was discovered and the only way to get rid of it is to pay up. If you do nothing, you’ll likely continue to be bombarded with pop-ups, but your files are essentially safe. A legitimate cyber security software program would not solicit customers in this way. If you don’t already have this company’s software on your computer, then they would not be monitoring you for ransomware infection. If you do have security software, you wouldn’t need to pay to have the infection removed, you’ve already paid for the software to do that very job.

Screen Lockers:   When lock-screen ransomware gets on your computer, it means you’re frozen out of your PC entirely. Upon starting up your computer, a full-size window will appear, often accompanied by an official-looking like police  or Department of Justice seal saying illegal activity has been detected on your computer and you must pay a fine. However, the police would not freeze you out of your computer or demand payment for illegal activity. If they suspected you of piracy, child pornography, or other cyber crimes, they would go through the appropriate legal channels.

Encrypting Ransomware:   The hacking gangs steal your files and encrypt them, demanding payment in order to decrypt and redeliver. The reason why this type of ransomware is so dangerous is because once cyber criminals get ahold of your files, no security software or system restore can return them to you. Unless you pay the ransom, for the most part, they’re gone. Even if you do pay up, there’s no guarantee the cyber criminals will give you those files back.

The Future Of Ransomware 

As ransomware technology continues to advance, the technological margin between attackers and public targets has the potential to grow even wider. Within these targeted public sectors, specifically healthcare, attacks may be more costly in the coming years than ever before.

Predictions also indicate a growing focus on small businesses that run outdated security software. As the number of IoT business devices grows, small businesses can no longer think that they are too small to be attacked. This  attack vector is growing faster than effective the available security measure and the risk is that  domestic devices will become progressively more likely targets, alongside business.

NBC:     IEEE:      Oodaloop:        War on the Rocks:     ITGovernance:    Malwarebytes:      Techtarget:

CRN:        Threatpost:   Infosecurity Magazine:     

You Might Also Read:

No More Ransom Saves Victims:

 

« Suspected Russian Spy Arrested
Norton To Pay $8bn To Buy Avast »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CERT-FR

CERT-FR

CERT-FR is the French national government computer security incident response team.

UL Solutions

UL Solutions

UL Solutions is a safety, security and compliance consulting and certification company. Areas covered include cyber security.

NowSecure

NowSecure

NowSecure are the experts in mobile app security testing software and services.

Cyber Seguridad (Cyberseg)

Cyber Seguridad (Cyberseg)

Cyberseg provides specialized Cybersecurity services, including managed services (SOC / CERTs) and solutions for the protection of critical infrastructures.

BA-CSIRT

BA-CSIRT

BA-CSIRT is a center which is dedicated to assist and raise awareness among citizens and the Government of the City of Buenos Aires in everything related to information security.

Loki Labs

Loki Labs

Loki Labs provides expert cyber security solutions and services, including vulnerability assessments & penetration testing, emergency incident response, and managed security.

Cygenta

Cygenta

Cygenta brings a new approach to cybersecurity. We understand that true security means having digital, human and physical security working in harmony.

Telsy

Telsy

Telsy is a security partner for ICT solutions and services. We help you implement effective security solutions that increase your risk mitigation ability and your responsiveness.

DataSixth Security Consulting

DataSixth Security Consulting

DataSixth delivers Cybersecurity Intelligence. With our unique capabilities, we’re able to deliver value, deliver answers, and deliver actionable security intelligence.

Evanssion

Evanssion

Evanssion is a value added distributor specialized in Cloud Native & Cyber Security across Middle East & Africa.

Intelequia

Intelequia

Intelequia SOC is the Security Operations Center your company needs. 24x7 monitoring, protection and automated response to cyber threats.

Iolo

Iolo

Iolo develops patented technology and award-winning software that repairs, optimizes, and protects computers, to maximize system speed and performance while keeping them safe.

GitLab

GitLab

GitLab is a complete DevOps platform, delivered as a single application, fundamentally changing the way Development, Security, and Ops teams collaborate and build software.

The Aerospace Corporation

The Aerospace Corporation

The Aerospace Corporation is playing a key role in advancing space cybersecurity through innovative prototypes that can quickly detect and mitigate cyber threats.

Sphinx

Sphinx

Sphinx provide advanced security consulting services and cyber solutions to federal and private industry.

Rydal Group

Rydal Group

Rydal Group is an award-winning, fully pledged communications & managed IT, Security and Energy provider supporting over 1,500 businesses across the UK.