Experts Insight On Ransomware attack on Argentina federal agency

Cybersecurity experts commented below on the Ransomware attack on Argentina federal agency.

https://twitter.com/Webridge_Comm/status/1302778876284657664

Subscribe
Notify of
guest

3 Expert Comments
Most Voted
Newest Oldest
Inline Feedbacks
View all comments
Steve Blow
Steve Blow , Tech Evangelist
InfoSec Expert
September 8, 2020 7:09 am

The news that Argentina\’s official immigration agency suffered a Netwalker ransomware attack that temporarily halted border crossing is significant – and not just because it may well be the first known attack against a federal agency that has interrupted the operations of an entire country.

News of yet another government-targeted ransomware attack might feel like déjà vu, but for those individuals trapped on either side of the border, it would have felt far longer than four hours. Any amount of downtime can have a long-lasting impact and serious repercussions and an outage at such a national scale has severe implications, ranging from frustrated citizens to damaged reputation and disrupted revenue-generating operations.

The difference between being down for hours or days versus minutes or seconds is the difference between a solid disaster recovery plan and one that is outdated, barely tested, or even non-existent. Prevention plans aren’t enough as attacks build in frequency and strength, causing irreparable harm to brand reputation and increasing risk. Ultimately, the end goal is to maintain regular operations so that customers will not experience any interruption or frustrations.

In these situations, many organisations may feel hopeless because the idea of revamping their IT resilience strategy seems complicated and expensive, but with the simplicity and affordability provided by cloud-based advancements, disaster recovery systems that were once only possible for the largest, wealthiest organisations are now accessible to all.

While – perhaps luckily – it seems the government is not concerned with recovering the lost data, for most organisations such a long outage affecting millions of people could be catastrophic. This attack should serve as a stark reminder for both the public and private sectors to begin actively investing in dynamic and modern disaster recovery (DR) solutions, for protection against increasingly sophisticated cyber-threats.

Last edited 2 years ago by Steve Blow
Anurag Kahol
Anurag Kahol , CTO
InfoSec Expert
September 7, 2020 3:39 pm

To prevent future ransomware attacks and safeguard highly sensitive information, federal agencies must have full visibility and control over their data. This can be accomplished by leveraging multi-faceted solutions that defend against malware on any endpoint, enforce real-time access control, detect misconfigurations, encrypt sensitive data at rest, manage the sharing of data with external parties, and prevent data leakage. In addition, governments must ensure adequate employee training to protect from ransomware.

Last edited 2 years ago by Anurag Kahol
Tim Bandos
Tim Bandos , Vice President of Cybersecurity
InfoSec Expert
September 7, 2020 3:37 pm

Ransomware is incredibly dangerous as it not only encrypts sensitive data, rendering it inaccessible, but it can also disrupt critical applications and systems, causing major outages and stoppages in operations.

We can expect cybercriminals to continue to exploit common vulnerabilities in these types of opportunistic ransomware campaigns – and we strongly encourage federal agencies to patch vulnerabilities as quickly as they can while ensuring all systems and programs are up to date.

Last edited 2 years ago by Tim Bandos
Information Security Buzz
3
0
Would love your thoughts, please comment.x
()
x