No More Ransom

By Dave McKay | July 28, 2020

Garmin Hit by WastedLocker Ransomware

Garmin has been hit by a four day outage due to a ransomware attack. Today it was announced that Garmin have obtained the decryption key, although how has not been revealed. Perhaps they paid the ransom, although the US Treasury placed sanctions against the probable culprits, EvilCorp, making it illegal to pay them a ransom.

Ransomware is a type of malware that infects victims’ computers and encrypts their data. A ransom—usually in Bitcoin—is demanded in exchange for the decryption key.

No More Ransom

No More Ransom (NMR) is an initiative by Europol’s European Cybercrime Centre, the National High Tech Crime Unit of the Netherlands’ police and McAfee to help victims of ransomware retrieve their encrypted data without having to pay the ransom.It has over 90 tools capable of decrypting over 100 different types of ransomware.

How To Use it

  1. Visit the No More Ransom website.
  2. Upload two encrypted files and the ransomware note.
  3. The website matches the information against a list of available decryption tools.
  4. If there is a match a link to the tools is provided.
  5. Download the tool, and follow the instructions.

How to Avoid Ransomware

Visitors can also find information on what ransomware is, how it works and, most importantly, how to protect themselves. Awareness is key as there are no decryption tools for all existing types of malware available to this day.

  1. Regularly, and frequently, back up data stored on your computer and servers.
  2. Keep at least backup one copy offline.
  3. Do not click on links in unexpected or suspicious emails.
  4. Only download official versions of software from trusted websites.
  5. Use robust end-point protection software to protect against viruses, malware, and ransomware.
  6. Keep software, end-point security, and operating systems patched up to date.
  7. Use caution whilst browsing. Do not click on suspicious links, pop-ups, or dialogue boxes.
  8. Don’t use your adminstrator account for normal computer usage. Have aregular account for normal activities.
  9. Your staff are on the front line, make sure they get cyber security awareness training.

Don’t Pay the Ransom

  • You will be financing criminals. This encourages them to continue their illegal activities.
  • Wipe your systems and restore your backups. Even if you do pay, you don;t know what malware such as keyloggers and downloaders have been left behind, so you’re going to have to wipe and restore anyway. That’s why backups are vital.
  • Report it to the police.
  • The more information you provide, the more effectively law enforcement can disrupt the criminal enterprise.

Categories

Tags