Recent Ransomware Alert
We take your security very seriously. We constantly monitor updates from the cyber community so we can alert you to any threats to your data security.
We were alerted to a new ransomware notice on Thursday, June 20, 2019, that affects companies around the world using the Webroot SecureAnywhere console to manage remotely-located workstations.
**Please note that we do not and have never deployed Webroot, so if you are using our antivirus/anti-malware products, you were never at risk for this attack.
To learn what ransomware is and more, check out our article All About Ransomware.
WHAT HAPPENED?
The hackers were able to access the Webroot SecureAnywhere console systems of customers that had weak authentication practices in place.
The hackers were able to:
- Breach Managed Service Providers (MSPs) via exposed Remote Desktop Endpoints (RDPs)
- Change authorization privileges
- Uninstall antivirus products
- Install Sodinokibi ransomware on the remote workstations
HAS IT BEEN FIXED?
Webroot immediately made a software update that makes two-factor authentication (2FA) mandatory for all SecureAnywhere accounts.
This is a best practice that we encourage all of our clients to use because it provides a higher level of security for your data. Two-factor authentication is a form of Multifactor Authentication (MFA).
WHAT YOU NEED TO DO
Another breach is not a possibility, it’s a probability. To protect your systems and data we recommend you:
- Use two-factor authentication (2FA) or another form of MFA wherever possible
- Encourage employees to create unique, randomly generated passwords
- Consider conducting a threat analysis to ensure you are properly protected from hackers and state prosecution for unsafe security practices under the Data Breach law.
Here at Sawyer Solutions, we require MFA for all systems that have access to our clients’ systems or data. Additionally, we require each login to have a unique, randomly generated password that is a minimum of 12 characters and contains upper case, lower case, numbers, and symbols.
IS YOUR COMPUTER SAFE?
Closely monitoring the threat environment and security updates is what we do for fun. We are passionate about keeping our clients safe in an ever-changing cyber world. We will continue to do that so you can stay informed about any threats to your security and are aware of proactive measures you can take to protect it.
To learn more about protecting your business, check out these Sawyer Solutions articles:
Smart Devices and Your Security
You can also download our free Alabama Data Breach Law whitepaper below.
DO YOU HAVE QUESTIONS OR CONCERNS?
We offer free initial business consultations. Please contact us to set up an appointment.
Source: https://www.zdnet.com/article/ransomware-gang-hacks-msps-to-deploy-ransomware-on-customer-systems/
No Fields Found.