Tag Archive for: recovering

Clackamas Community College recovering after ‘ransomware attack’


PORTLAND, Ore. — After a cyberattack closed Clackamas Community College for nearly a week, students are back in class. 

The college says they became aware of an online issue on Jan. 19, and students were unable to log in to the school’s online portal, Moodle.

“I see that Moodle is down; I was like, ‘Oh shoot, I can’t get my homework’,” first-year student Kainoa Medina said. “Then I was like, ‘Let me check my information,’ couldn’t access it and I was like, ‘This is a really big problem.”

About 16,000 students and 900 faculty members were locked out of the college’s network. A spokesperson for Clackamas Community College called it an “attempted ransomware attack,” and CCC President Tim Cook described it as “a significant cybersecurity incident.”

While the school was able to isolate some systems from the network to protect them, they’re still investigating exactly what happened and the extent of the impact. 

“Usually, this is something like ransomware. A piece of software gets in, and it ends up taking hold of part of their environment or most of it,” said Patrick Miller, CEO of Ampere Industrial Security. “Especially with schools, municipalities, it’s actually more common than you’d think.”

Miller said an attack like this one usually originates out of the U.S., and often times, the hackers will ask for a ransom. 

“It’s usually international actors that do this. It’s usually international organized crime rings,” Miller explained.

CCC did not say whether those bad actors that orchestrated the attack asked for money or if anyone’s personal information was compromised, but that’s something Medina is worried about.

“It was sinking in; it was like, ‘Okay, well my information is probably stolen’,” Medina said. “This is very unfortunate, and yes, I was very scared.”

Miller says it can be difficult for any organization to defend against ransomware. 

“The bad guys have to be right just once. They get one person to click on a link; they’ve got to get one person to open the wrong email,” Miller said. “It’s more and more difficult by the day to actually discern whether these things are real or not.”

Oregon City Police told KGW their officers responded to the incident initially, but that…

Source…

Hospital systems still recovering after suspected ransomware attack – NBC Connecticut



Hospital systems still recovering after suspected ransomware attack  NBC Connecticut

Source…

Ransomware: recovering from the inevitable


For business leaders, the threat of ransomware is by no means new.

The warning to beware of phishing emails and avoid following suspicious links, for example, is a familiar one. But with tools such as ChatGPT now able to accurately replicate human conversation, distinguishing fake emails from real ones is becoming more challenging. Can organisations really risk the security of their systems by depending on their employees to spot the signs of content written by AI that even industry experts fail to notice?

As the cybercrime landscape advances, moving out of the enterprise realm into areas like critical infrastructure and healthcare, many find that their existing cybersecurity measures aren’t sufficient to keep bad actors at bay. So how can businesses ensure that they are adequately prepared to respond to ever-evolving, ever-advancing cyber threats?

The inevitability of an attack

The first step to adequate preparation is the acknowledgement that an attack is unavoidable. With 71% of organisations globally falling victim to some form of ransomware attack in 2022, we are now in the world of not if, or when, but how often will a business experience a ransomware incursion. Businesses that deny the inevitability of an attack will not only be more exposed, but slower to recover when one does strike. Speed of recovery is crucial as the longer systems are down, the more severe the financial and reputational damage will be.

The cyber defence process should therefore be focused on threat prevention, remediation and regaining operability as quickly as possible. Only when businesses can execute their response and recovery strategies as soon as it becomes clear an attack has struck will they be able to minimise damage.

Designing for recovery

There’s no doubt that businesses’ cybersecurity teams are under an immense amount of pressure in the battle against ransomware but they can only go so far alone. There must be an awareness that it simply can’t be stopped at the source, and that defending against ransomware takes a combination of people, processes and technology.

The digital world can appear complex – especially in the case of large enterprise structures – so it can be…

Source…

Recovering from a Ransomware Attack on Your RAID System


Did you know in the first half of 2022, there were 236.1 million ransomware attacks worldwide? The attacks are increasing everywhere as hackers adopt highly deceiving methods to attack systems.

The highly protective data storage RAID systems are also prone to this attack. So, if you encounter such a situation, it’s important to ensure recovery from ransomware attack proactively. The article narrows down all these steps you can take as soon as your RAID system encounters ransomware attacks.

Recovering from a Ransomware Attack on Your RAID System

Recovering from a Ransomware Attack

Here are all the steps from identifying to recovering from a ransomware attack on your RAID system.

Identifying Ransomware Attacks

The ransomware generators and hackers send malicious files or links to the systems. Although these links and files look normal, they contain ransomware. When a user clicks on these malicious sources, it blocks access to files or encrypts files until the user pays the asked ransom; that is money.

Initially, these attacks were popular among businesses, companies, and organizations. But new techniques target individuals, and your highly protected RAID systems can be its target. Therefore, you must know the cybersecurity threats users should prepare for in 2023 to stay updated.

Initiating RAID Recovery

The RAID (redundant array of independent disks) stores a single data in different places on multiple hard disks or solid-state drives (SSDs). It helps you to retrieve the data in case the drive fails. There are various levels of RAID used for different purposes. However, this system can be attacked by ransomware.

A malware infection like ransomware attacks the RAID system and the sensitive information it holds. To retrieve your data, a user must reconstruct or rebuild the RAID configuration. But it’s tough for non-technical people to do so. As a result, to recover RAID data quickly, you can opt for professional services.

How to Recover from a Ransomware Attack on Your RAID System

Here are a few steps you can take as soon as you identify a ransomware attack:

Scan the RAID: The first step is to scan the RAID drive. Then, you can scan the drive and find the lost data and restore it.

Search the Files: You can search…

Source…