Following the news that Riviera Beach City Council, in Florida, has just paid a $600,000 ransom demand after falling victim to ransomware three weeks ago, please see below comments from security experts at HackerOne, Nozomi Networks and Outpost24.
Shlomie Liberow, Technical Program Manager at HackerOne:
This incident should act as a wake-up call to all organisations that anyone can fall victim to ransomware and the best defence is to continuously back up data. If Riviera Beach had carried out regular backups the damage would have been minimal and they could have recovered easily, without even considering paying the ransom.”
Edgard Capdevielle, CEO at Nozomi Networks:
For ransomware, prevention is always better than cure and this involves organisations deploying tools that will help them immediately identify when something ambiguous is happening within the infrastructure. Applying artificial intelligence and machine learning for real-time detection and response, organisations can monitor for malware to rapidly discover and act to remove malicious code and the risks posed before harm is done.”
Martin Jartelius, CSO at Outpost24:
“When it comes to ransomware, the golden rule is never pay, however it seems like Riviera Beach City Council ignored this. Only time will tell if the city actually gets its data back, however history has shown the odds are not in their favour.
While some attackers use ransomware to make money, other use the malware to cause destruction and damage. If the attackers are motivated by destruction, it is unlikely Riviera Beach will get its data back anytime soon.
As a result of this, the best defence against ransomware is to continuously back up data and keep employees educated on phishing and malicious emails, as well as ensuring a defence in depth strategy to limit exposure, where an impact on a single system or user should not have caused a substantial effect across the entire organization.”