Brian Krebs broke the story today that Cloud hosting provider iNSYNQ is trying to recover from a ransomware attack that shut down its network and has left customers unable to access their accounting data for the past three days. Unfortunately for iNSYNQ, the company appears to be turning a deaf ear to the increasingly anxious cries from its users for more information about the incident.
Expert Comments:
Jonathan Bensen, CISO at Balbix:
“Ransomware attacks against cloud data hosting and SaaS companies can completely eliminate that business’ ability to serve customers. iNSYNQ promises customers that moving their Quickbooks into the cloud with iNSYNQ grants the ability to access and edit company files from any location and on any device. Failing to deliver on that promise not only affects iNSYNQ’s bottom line, but its customers’ revenue as well.
Organizations like iNSYNQ are tasked with the cumbersome burden of continuously monitoring all assets across hundreds of potential attack vectors to detect vulnerabilities. Through this process, all companies are likely to detect tens of thousands of vulnerabilities—far too many to tackle all at once. The key to preventing ransomware attacks like what iNSYNQ has suffered is to leverage security tools that employ artificial intelligence and machine learning that prioritize vulnerabilities based on risk and business criticality.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.