27 Oct 2020
CERT NZ warns New Zealand businesses to be prepared for a Ryuk ransomware attack. Here's what you need to know.
CERT NZ has advised the public that they are aware of a spike in Ryuk ransomware attacks in the United States. These attacks are encrypting the systems of numerous organisations in the health care sector, and demanding ransoms, averaging over USD$100,000 to be paid in bitcoin for the decryption of information.
While this campaign is currently affecting organisations based in the United States, CERT NZ has begun to encourage New Zealand organisations to make sure they have the protections in place to help protect against an attack.
Currently Ryuk is affecting international organisations in the health care sector, however anyone can be targeted by Ryuk, including individuals, businesses and large organisations. The attack is targeting computers, networks and servers that have been infected with Emotet or Trickbot.
CERT NZ has advised there are three main ways these attacks are taking place.
The impacts of Ryuk are immediate. If you are affected:
As there are multiple ways a Ryuk ransomware infection can occur, CERT NZ recommends you take the following measures:
The expert team at Cybercraft works with businesses to define and implement a programme ideally suited to your organisation. Taking industry standards as a baseline, we enable your business to flourish in an integrated but volatile cyber environment.
Find out more about how you can understand, manage and reduce the risks of technology and user behaviours inside your business by reviewing our Cyber Resilience services.