Skip to main content

Ransomware

Ransomware
Ransomware has been in the news lately over the past few years. It has been featured in some of my favourite tv show dramas like The Blacklist and more.

What is Ransomware?
Ransomware is a virus attack of a computer system in which files are encrypted and a ransom demand is displayed. Business houses are the most frequented targets for this viral attack.

The simplest form of this attack is just renaming the file extensions and displaying a ransom message for it to be renamed back. The most sophisticated would be locking down the filesystem with encryption and displaying an error message.

The most popular ransomware of recent was WannaCry. The exploit was allegedly leaked from the United States National Security Agency. More information about WannaCry can be found here

The best defences against ransomware are:

  1. User awareness. Informed users decrease the attack surface with which systems can be attacked.
  2. File System defences. Volume Shadow Copy and ZFS are the two most common ways of securing data against ransomware attacks. Versioning in OneDrive and Google Drive may also offer some protection important files.

Comments

Popular posts from this blog

Telecoms: ePSK - Multiple Pre-Shared Keys

Originally posted on the Cambium Community Networks Just in case you missed it cnMaestro Version 2.2.1 (Cloud and On-Premise), brings us a great new feature called ePSK. If you’re not familiar with ePSK it’s maybe because Cambium are too modest to toot their own trumpet so I’m going to do it for them. In short ePSK gives each user a unique PSK (pre-shared key) when using WPA2-Personal, for me to explain why this is such a useful feature let me first explain the problem with using a shared PSK across the whole WLAN. When a wireless client connects to an AP it completes a 4-Way handshake, this generates the encryption keys used to encrypt wireless traffic. For the 4-way handshake to work it is a requirement that both the client and AP know the passphrase, however the passphrase is never transmitted over the air thereby making this exchange reasonably secure. But what happens when a 3rd party already knows the passphrase? It means they just need to capture the 4-way handshake to gener...

💡 The CML VM Fix: Solving My VT-x/EPT Problem

💡 The Complete Fix: CML VT-x/EPT Error Solved 🛠️ I battled the persistent error: "Virtualized Intel VT-x/EPT is not supported on this platform" while installing CML (Cisco Modeling Labs) on VMware. This problem occurs because the Windows host locks the CPU's hardware virtualization features (VT-x/EPT) that CML needs to run its internal network nodes. I discovered that fixing this requires aggressively disabling Virtualization-based security (VBS) and HVCI across multiple system layers. Here is the definitive, comprehensive guide covering every step necessary to solve this issue. Step 1: The Quick Fix (Disable Nested VT-x in VMware) I found that telling VMware to hide the feature initially allowed the CML VM to boot, but it failed later when trying to run network nodes. This must be reversed later, but it is an important diagnostic step. Power off the CML VM. Go to Settings → Processors . Ensure the box for Virtualize Intel ...

7 Apps You Should Delete Right Now And Why the Law Makes Them Dangerous

  There is a conversation happening in security research circles, government agencies, and regulatory bodies around the world, and most Papua New Guineans are not part of it. It concerns a small group of applications that sit on hundreds of millions of Android and iOS devices, including many in PNG, quietly running in the background, collecting data, and transmitting that data to servers governed by a legal system that has no obligation to protect you. In PNG, where mobile phones are the primary gateway to banking, communication, and identity, this risk is amplified. For many users, a smartphone is not just a device. It is their wallet, their ID, and their connection to essential services. This is not about a theoretical vulnerability or an obscure technical exploit. It is about the intersection of consumer software and national law, specifically the legal architecture that governs what foreign technology companies must do when their government asks for your data. The Legal Foun...