Ransomware is the most profitable cybercrime

Cisco report finds that encrypting victim’s data makes a lot of money

Ransomware has fast become the dominant form of malware as it makes the most profit for gangs, according to new research.

Cisco's 2016 Midyear Cybersecurity Report found that fragile infrastructure, poor network hygiene, and slow detection rates are the main reasons this type of malicious attack is effective.

The networking firm said it expects the upward trend in ransomware to continue with even more destructive variants that can spread by themselves and hold entire networks and companies hostage appearing.

Advertisement - Article continues below

It said new modular strains of ransomware will be able to quickly switch tactics to maximise efficiency and future ransomware attacks will evade detection by being able to limit CPU usage and refrain from command-and-control actions.

The report also found a growing number of ransomware attacks using server vulnerabilities specifically within JBoss servers of which, 10 per cent of those connected to the internet worldwide were found to be compromised. Many of the JBoss vulnerabilities used to compromise these systems were identified five years ago, meaning that basic patching and vendor updates could have easily prevented such attacks, according to Cisco.

Cyber criminals are also getting better at keeping a low profile when carrying out ransomware attacks, with an increased use of cryptocurrency, Transport Layer Security and Tor, which enables anonymous communication across the web.

Advertisement
Advertisement - Article continues below

The report said  many companies do a lousy job of keeping software up to date as a means of defending against ransomware attacks. It reported that 20-25 per cent of Chrome users were on the latest version of the browser, and Java sees slow migrations with one-third of the systems examined running Java SE 6, which is being phased out by Oracle (the current version is SE 10).

Advertisement - Article continues below

In Microsoft Office 2013, 10 per cent or less of users are using the newest service pack version.

"As organisations capitalise on new business models presented by digital transformation, security is the critical foundation. Attackers are going undetected and expanding their time to operate. To close the attackers' windows of opportunity, customers will require more visibility into their networks and must improve activities, like patching and retiring ageing infrastructure lacking in advanced security capabilities," said Marty Roesch, vice president and chief architect of the Security Business Group at Cisco.

Featured Resources

Top 5 challenges of migrating applications to the cloud

Explore how VMware Cloud on AWS helps to address common cloud migration challenges

Download now

3 reasons why now is the time to rethink your network

Changing requirements call for new solutions

Download now

All-flash buyer’s guide

Tips for evaluating Solid-State Arrays

Download now

Enabling enterprise machine and deep learning with intelligent storage

The power of AI can only be realised through efficient and performant delivery of data

Download now
Advertisement

Recommended

Visit/security/29204/how-can-you-protect-your-business-from-crypto-ransomware
Security

How can you protect your business from crypto-ransomware?

4 Nov 2019
Visit/security/cyber-security/355185/165-million-britons-experienced-a-cyber-crime-in-the-past-year
cyber security

Report: 16.5 million Britons fell victim to cyber crime in the past year

1 Apr 2020
Visit/cloud/amazon-web-services-aws/355183/aws-launches-amazon-detective
Amazon Web Services (AWS)

AWS launches Amazon Detective for investigating security incidents

1 Apr 2020
Visit/security/privacy/355182/government-to-launch-coronavirus-contact-tracking-app
privacy

UK government to launch coronavirus 'contact tracking' app

1 Apr 2020

Most Popular

Visit/security/privacy/355155/zoom-kills-facebook-integration-after-data-transfer-backlash
privacy

Zoom kills Facebook integration after data transfer backlash

30 Mar 2020
Visit/security/data-breaches/355173/marriott-hit-by-data-breach-exposing-personal-data-of-52-million
data breaches

Marriott data breach exposes personal data of 5.2 million guests

31 Mar 2020
Visit/security/cyber-crime/355171/fbi-warns-of-zoom-bombing-hackers-amidst-coronavirus-usage-spike
cyber crime

FBI warns of ‘Zoom-bombing’ hackers amid coronavirus usage spike

31 Mar 2020
Visit/data-insights/data-management/355170/oracle-cloud-courses-are-free-during-coronavirus-lockdown
data management

Oracle cloud courses are free during coronavirus lockdown

31 Mar 2020