September 20, 2019
New Malware Attack Targeting IT Providers
Hackers have begun to target IT service providers with malware in attempts to make a bigger splash.
According to the Symantec Corporation, a group known as Tortoiseshell has attacked nearly a dozen organizations, mostly in Saudi Arabia. The hackers are using supply chain attacks in an attempt to gain access to the providers’ customers. These attacks exploit third-party services and software to compromise a final target, take many forms, including hijacking software updates and injecting malicious code into legitimate software.
Symantec offers some basic security best practices to combat this specific attack, including:
- Enable a firewall
- Enforce a password policy with complex passwords that are more difficult to crack
- Keep patch levels up-to-date
- Train employees not to open attachments unless they are from a known source and they are expecting them
The aforementioned are a few of the most simple and successful tactics to help protect from cyber attacks. The most crucial step in fighting ransomware is a combination of these tactics couple with a business continuity and disaster recovery (BCDR) solution to back up your files to avoid data loss and downtime.
If you’re interested in learning more tips and insight on the current landscape of cyberattacks, check out Datto’s State of the Channel Ransomware Report. This research is rich with research and data on all things ransomware and the channel to better equip you in the fight against ransomware and other cybersecurity threats.