Expert Comments

EXPERT COMMENTS: SNAKE Ransomware Targets Organizations’ Entire Corporate Networks

Expert(s): Security Experts January 9, 2020

Expert(s): Security Experts January 9, 2020

In response to the news that SNAKE ransomware is targeting entire corporate networks, expert offers perspective.

SNAKE Ransomware is The Next Threat Targeting Business Networks – by @LawrenceAbrams https://t.co/U6b9Pfs0zJ

— BleepingComputer (@BleepinComputer) January 8, 2020

Experts Comments

Dot Your Expert Comments

Javvad Malik

January 09, 2020

Security Awareness Advocate

KnowBe4

Organisations should focus on the root cause on how ransomware enters the network.

Ransomware has proven to be very lucrative for cybercriminals and it appears some of their ill-gotten gains have funded advancements in ransomware tools. The Snake ransomware is one such example where criminals are trying to cause extra disruption by attempting to encrypt the entire network. Organisations should focus on the root cause on how ransomware enters the network. This is primarily through social engineering (mainly phishing), or by exploiting unpatched public-facing software. So if.....Read More

Ransomware has proven to be very lucrative for cybercriminals and it appears some of their ill-gotten gains have funded advancements in ransomware tools. The Snake ransomware is one such example where criminals are trying to cause extra disruption by attempting to encrypt the entire network. Organisations should focus on the root cause on how ransomware enters the network. This is primarily through social engineering (mainly phishing), or by exploiting unpatched public-facing software. So if they place resources into addressing these entry points, it is more likely they will prevent ransomware, and many other attack techniques. Read Less

Tarik Saleh

January 10, 2020

Senior Security Engineer and Malware Researcher

DomainTools

It then proceeds to encrypt the machine’s files while skipping over important Windows folders and system files.

Security researchers have observed samples of the new SNAKE ransomware family targeting organizations’ entire corporate networks. Discovered by MalwareHunterTeam and analyzed by Vitali Kremez, SNAKE is written in Golang and contains a high level of obfuscation. Upon successful infection, the ransomware deletes the machine’s Shadow Volume Copies before terminating various processes associated with SCADA systems, network management solutions, virtual machines and other tools. It then.....Read More

Security researchers have observed samples of the new SNAKE ransomware family targeting organizations’ entire corporate networks. Discovered by MalwareHunterTeam and analyzed by Vitali Kremez, SNAKE is written in Golang and contains a high level of obfuscation. Upon successful infection, the ransomware deletes the machine’s Shadow Volume Copies before terminating various processes associated with SCADA systems, network management solutions, virtual machines and other tools. It then proceeds to encrypt the machine’s files while skipping over important Windows folders and system files. As part of this process, it appends “EKANS” as a file marker along with a five-character string to the file extension of each file it encrypts. Read Less

Dot Your Expert Comments

Only for registered and approved experts. Please register before providing comments. Register here

Your Comments Headline (max 150 Char)

Your Comments:

Your Email:

* By using this form you agree with the storage and handling of your data by this web site.

Submit

Saryu Nayyar, CEO, Gurucul

"The evolution of the ObliqueRAT trojan is a good example of how malicious actors are constantly updating their tools and techniques. "

ObliqueRAT Trojan Lurks On Compromised Websites – Experts Comments

James McQuiggan, Security Awareness Advocate, KnowBe4

"It is essential to conduct red team or pen testing exercises. "

Experts Reaction On Malaysia Airlines 9 Years Old Data Breach

Nikos Mantas, Incident Response Expert, Obrela Security Industries

"Data security should be a priority for all organisations today. "

Experts Reaction On Malaysia Airlines 9 Years Old Data Breach

David Sygula, Senior Cybersecurity Analyst , CybelAngel

"Organisations must constantly scan for leaked documents outside the enterprise perimeter. "

Experts Reaction On Malaysia Airlines 9 Years Old Data Breach

Satnam Narang, Senior Research Engineer, Tenable

"We expect other threat actors to begin leveraging these vulnerabilities in the coming days and weeks. "

Microsoft Multiple 0-Day Attack – Tenable Comment

Sam Curry, Chief Security Officer, Cybereason

"Total transparency is needed and they need to hone in on more specific details and be completely transparent with Enrich members. "

Experts Reaction On Malaysia Airlines 9 Years Old Data Breach

Florian Thurmann, Technical Director, EMEA , Synopsys Software Integrity Group

"Your organisation won’t be able to determine which of their employees has made a given change in the system. "

Experts Reaction On Malaysia Airlines 9 Years Old Data Breach

Alan Grau, VP of IoT , Sectigo

"Best-practices for IoT device security include strong authentication and secure software updates. "

IoT Security In The Spotlight, As Research Highlights Alexa Security Flaws

Jake Moore, Cybersecurity Specialist, ESET

<img src="https://www.informationsecuritybuzz.com/wp-content/uploads/Jake-Moore.png" alt="" style=" border-radius: 50% !important;max-width: 40px;" />

"Sensitive data such as this leaked into dark web forums can have damaging consequences. "

Oxfam Australia Confirms ‘Supporter’ Data Accessed In Cyber Attack

Joseph Carson, Chief Security Scientist & Advisory CISO, Thycotic

"Password hygiene should be part of employee training and cyber awareness training. "

Expert Reaction On Solarwinds Blames Intern For Weak Passwords

Natalie Page, Cyber Threat Intelligence Analyst, Sy4 Security

"Currently Golang produce’s a much lower detection rate against security software. "

Expert Reaction On Go Is Becoming The Language Of Choice For Criminals To Design Malware

Chris Hickman, Chief Security Officer, Keyfactor

"A certificate expiration on its own is not necessarily a security response incident. "

Experts On Google Voice Outage

Adam Enterkin, SVP, EMEA, BlackBerry

"Even the best cybersecurity teams have had major challenges this last year. "

Expert Reaction On GCHQ To Use AI In Cyberwarfare

Jamie Akhtar, CEO and Co-founder, CyberSmart

"Universities are home to some of the world’s most cutting-edge research. "

Comment: Hackers Break Into ‘Biochemical Systems’ At Oxford Uni Lab Studying Covid-19

Jake Moore, Cybersecurity Specialist, ESET

<img src="https://www.informationsecuritybuzz.com/wp-content/uploads/Jake-Moore.png" alt="" style=" border-radius: 50% !important;max-width: 40px;" />

"Honourable criminal hacking is still illegal and comes with some of the same intentions of standard unethical hacking. "

Expert Reaction On Private Data Leaked From Far-right Platform Gab