New Malware Attack Targeting IT Providers

Sep 20, 2019

New Malware Attack Targeting IT Providers

BY Chris Brunau

Cybersecurity

Hackers have begun to target IT service providers with malware in attempts to make a bigger splash.

According to the Symantec Corporation, a group known as Tortoiseshell has attacked nearly a dozen organizations, mostly in Saudi Arabia. The hackers are using supply chain attacks in an attempt to gain access to the providers’ customers. These attacks exploit third-party services and software to compromise a final target, take many forms, including hijacking software updates and injecting malicious code into legitimate software.

Symantec offers some basic security best practices to combat this specific attack, including:

  • Enable a firewall
  • Enforce a password policy with complex passwords that are more difficult to crack
  • Keep patch levels up-to-date
  • Train employees not to open attachments unless they are from a known source and they are expecting them

The aforementioned are a few of the most simple and successful tactics to help protect from cyber attacks. The most crucial step in fighting ransomware is a combination of these tactics couple with a business continuity and disaster recovery (BCDR) solution to back up your files to avoid data loss and downtime.

If you’re interested in learning more tips and insight on the current landscape of cyberattacks, check out Datto’s State of the Channel Ransomware Report. This research is rich with research and data on all things ransomware and the channel to better equip you in the fight against ransomware and other cybersecurity threats.

Subscribe to the Blog