![]() SamSam Ransomware spread via RDP (Remote Desktop Protocol) Meanwhile, employees are forbidden from accessing the internet until the problem is solved. Teams will continue to monitor the situation closely and will be working into the night,” said David McCurdy, State Chief Technology Office. The state has robust backup and security tools and has no intention of paying ransomware. “This Ransomware virus was a variant and the state worked with its antivirus software provider (McAfee) to implement a fix. The State’s Office of Information Technology, which reached out to the FBI for assistance, are still investigating the attack and have not paid a cent to attackers. The malicious group demanded an undisclosed amount of bitcoin from CDOT to have their files back. The new password requirements are more stringent to prevent the use of insecure passwords.The Colorado Department of Transportation has shut down over 2,000 computers after systems have been infected with the SamSam ransomware on Wednesday, February 21. “The staff went to the correct URL, authenticated themselves with Mobile BankID, and were instructed to set a new password. Using the Mobile BankID, stored in an Active Directory attribute, Kalix was able to rollout Specops uReset, allowing a seamless experience for Kalix employees. ![]() And from IT’s point of view, we know that the process is secure.” “Everyone is familiar with BankID, so it was very easy for them to authenticate themselves and reset their passwords. “We locked all accounts and informed our staff that they would need to authenticate with Mobile BankID to set a new password,” Kenneth says. Kenneth Björnfot, Head of IT for Kalix, explains the password reset operation using Specops uReset: Additionally, Specops uReset helps alleviate the tremendous burden on the IT helpdesk with a mass password reset operation so the helpdesk can be involved with other matters related to ransomware cleanup operations.Īs noted in a case study following a ransomware attack on the municipality of Kalix in Sweden, Specops uReset was instrumental in allowing some 2000 passwords to be quickly reset using the self-service uReset portal. It allows organizations to handle mass password reset operations following a ransomware attack seamlessly. Specops provides a Self-service Password Reset (SSPR) solution called Specops uReset. Seamlessly handle password resets with Specops uReset RDP servers exposed to the Internet can be an easy entry point to launch a ransomware attack. SamSam typically utilizes brute-force attacks against weak passwords used on servers and other critical resources. ![]() However, the event ended up costing taxpayers an estimated $17 million. The attackers demanded $51,000 in Bitcoin to unlock the encrypted resources. The ransomware used was the notorious SamSam ransomware. In March 2018, attackers launched a ransomware attack on Atlanta, Georgia’s computer networks and resources. Note the following recent ransomware attacks targeting city governmental entities, the results, and events leading up to compromise: Unfortunately, many city governments have been ill-equipped to deal with these attacks, making the damage and fallout even more severe. Governmental entities, such as city governments, have been the target of many attacks. Ransomware attacks on governmental entitiesĪs mentioned earlier, commercial businesses are not the only targets of high-profile ransomware attacks.
0 Comments
Leave a Reply. |