Request Information

Request Information

or Call 1.877.459.4347
Upcoming Events
HITRUST & Cybersecurity 2018 | 11/14/2017
2018 CIO Strategy Forum at Gartner | 12/06/2017

Global Ransomware Virus Hits Europe Hard, US More Gently

Global Ransomware Virus Hits Europe Hard
June 28, 2017 / Dave McCrystal

Here’s some sound ransomware virus protection advice:

“The best way to protect yourself and your organization is to have a backup of your data, maintain it, and disconnect it from your computer.”

The sentiment in this quote, which appeared on the FBI website just 4 days ago, was echoed by security experts today in light of a global ransomware virus attack that occurred today, primarily in Europe. Among the directly impacted were the Ukrainian power grid, banks and government offices, Russia’s Rosneft oil company, and Danish shipping giant A.P. Moller-Maersk. With critical infrastructure such as power and water resources under attack, it is hard to ignore the severity of this ransomware virus and threat of cyberattacks in general. This incident serves as the latest evidence that the entire world should be preparing for the worst when it comes to the proposition that servers, systems and data can be rendered inaccessible any moment.

While the US was not as severely hit, several organizations, most notably a Pennsylvania-based healthcare organization (Heritage Valley Healthcare System) and pharmaceutical giant Merck, were impacted by this ransomware virus attack. According to a statement from the HITRUST organization (who provides the world’s most comprehensive security framework for the healthcare industry), this is a “serious incident.” This judgment is based on the fact that that many healthcare firms have been impacted; there are reports that care delivery was impacted and that the ransomware virus was rapidly spreading to other systems and other countries.

Security companies agree that this ransomware virus strain, called Petya uses the same exploit in Microsoft products as WannaCry. It locks computers and encrypts the files on them preventing any user access. Instead of their normal access view, users are presented with the message, “If you see this text, then your files are no longer accessible, because they have been encrypted.” The ransom demanded to unencrypt the files is 300 bitcoin. Further, HITRUST confirmed that:

  • This ransomware virus is using NSA’s EternalBlue code.
  • This ransomware worm variant does not seem to have a “KillSwitch” like WannaCry v2.0.
  • Organizations who having implemented the HITRUST CSF (Common Security Framework) controls (inclusive of Evolve IP as part of our HIPAA compliance and HITRUST certification efforts) would appropriately address the threat.

Get the facts on ransomware with our Ransomware is Dead Webinar:

 

Ransomware is Dead

As with WannaCry, only outdated computing networks were vulnerable. There were widely available patches that could have prevented the attack. But as pointed out by Chris Wysopal, Chief Technology Officer at the security firm Veracode, 100 percent of computers must be patched the new malware has a backup mechanism that allows it spread to patched computers within the network as well. Wysopal says the attack seems to be hitting large industrial companies that “typically have a hard time patching all of their machines because so many systems simply cannot have down time.”

Issuing a dire outlook based on today’s attack, former CIA chief Leon Panetta said, “we are now living at a time when the use of a sophisticated virus in the cyber arena can virtually cripple our country.” While in agreement with that concern, cybersecurity expert Leeza Garber explained that business continuity is possible even in the face of such attacks, when organizations exercise a level of proactivity. Specifically, she said companies should have:

  • Proactive protection of systems against such attacks, and
  • Proactive and complete backups of your systems and data – this includes plans on how can you recover those backups and get back to business

Categories: Business Continuity & Disaster Recovery
Our LinkedIn page is a great place to keep up to date with all our latest news, releases, and updates.
Click to follow us:

Clients We Work With

  • Association Resource Group is an award-winning technology consulting and brokerage firm with over 25 years as an industry-leader.

    We have been Evolve DaaS clients for just about 2 years. What execs really need to know is how much productivity DaaS brings to an organization. We have estimated that each employee saves 10 minutes a day in startup and shutdown time. Probably another 5 minutes a day in work from home productivity - i.e. more likely to log in from their home PC than if they had to carry a laptop home every night and no clunky VPN or Citrix session to dissuade them from getting on.

    So, 15 minutes a day, that is 3% of their day back. 3% of an $80,000 a year employee is $2,500.

    DaaS has a 300% return, with no capital at risk. That is what I would tell your execs. Feel free to ask questions.

    Best!

    Steve Murphey, Vice President

  • Based in Northern New England, ClearChoiceMD treats urgent, non-life-threatening medical needs.

    "With Cloud Connect, we have eliminated intermittent phone and internet service drops, increased the reliability of daily business tasks like writing e-prescriptions. We’ve even resolved printing issues. We have zero down time now as a result of connectivity because we’re always up and running.”

    Alex Fuchs, IT Director for CCMD

  • CCI Health & Wellness Services is a group practice, empowering patients to partner with staff for an unparalleled healthcare experience.

    “Usability is one of the most important factors in selecting technology solutions. We needed a solution that our staff could learn quickly and rely upon each day through high call volumes. Evolve IP emerged as best choice and the deployment has been very successful.”

    John Torontow, MD, MPH Chief Operating Officer - CCI Health and Wellness Services

Awards & Recognition

View More

Compliance & Certifications

View More

Latest Blog Posts

Tape vs. disk vs. cloud: A comparison of data backup options
Tape vs Disk vs Cloud: A comparison of Data Backup Options
November 20, 2017 / Evolve IP
Business continuity plans are a must in today’s environment, where even a few hours of downtime could be very costly…
Selecting a Cloud Computing Services Partner: Considerations for Cloud Success
Selecting a Cloud Computing Services Partner: Considerations for Cloud Success | Part 2
November 14, 2017 / Dave McCrystal
As explained in Part 1 of this 2-part blog, cloud-based services implementations work best when companies view the cloud as a…
7 Security Risks of Consumer-Grade File Sync Services
7 Security Risks of Consumer-Grade File Sync Services
November 9, 2017 / Erika von Hoyer
Consumer-grade file sync solutions (i.e. Dropbox, Box, and Google Drive) pose many challenges to businesses executives concerned about the control…
View More

Latest Press Releases

Evolve IP Honored with 2017 Cloud Computing Security Excellence Award
November 7, 2017 / Evolve IP
WAYNE, Pa.—November 7, 2017—Evolve IP, The Cloud Strategy Company™, announced today that TMC, a global, integrated media company, has named The Evolve IP Compliance Cloud™ as a 2017 Cloud Computing Security Excellence…
Evolve IP Named in Gartner’s 2017 Magic Quadrant for Contact Center as a Service, North America
October 30, 2017 / Evolve IP
WAYNE, Pa. — October 30, 2017 — Evolve IP, The Cloud Strategy Company™, today announced that Gartner has named it to the 2017 Magic Quadrant for Contact Center as a…
Evolve IP Acquires Clearlogin
October 17, 2017 / Rob Flores
The Inquirer recognizes Evolve IP’s recent acquisition of Clearlogin, an identity authentication provider based in Mountainside, N.J. This move enables Evolve IP to offer identity management software integrated into its…
View More
close

Contact Us

or Call 1.877.459.4347