ChannelLife Australia logo
Industry insider news for Australia's technology resellers
Story image

Ransomware: What your clients need to know

Thu 26 May 2016
FYI, this story is more than a year old

CryptoWall, Locky, TeslaCrypt. To make sense of today’s tech headlines, you have to learn an entire new vocabulary. But one word sums them all up: Ransomware.

Ransomware is running rampant. Fortinet’s FortiGuard Labs monitors worldwide Ransomware infections and has seen a huge jump in incidences over the past six months. For instance, in Hong Kong, there were 46,172 detected Ransomware incidents in September 2015. In October, that number jumped to 1,008,539. Ransomware has gone from being a nuisance for a few enterprises to a worldwide pandemic and there is no respite in sight.

The bad news

The bad news is that, once your clients get stung, the available antidotes all have significant downsides. But the real bad news is that Ransomware is no different than any other malware and that most organisations should be preventing Ransomware as part and parcel of their cyber-security profile. With few exceptions, Ransomware sneaks in via holes in defence. Close the holes and the odds of getting hit go down significantly.

“We are fielding more and more calls from resellers who talk about their customers being infected with Ransomware,” says Jonathan Fox, General Manager of Advanced Solutions at Ingram Micro, a leading distributor of Fortinet’s cyber-security solutions in Australia. “Invariably the victims, for one reason or another, hadn’t kept their defences up-to-date and, as a result, they got hit. It’s interesting to note that most malware sneaks in and does its dirty work more or less undetected. The only noticeable evidence might be a slower network. But Ransomware, on the other hand, tells the victim immediately ‘you’ve been hit, now pay up!’.”

Staying safe in an unsafe world

Preventing Ransomware takes the same vigilance as preventing any malware. “A Fortigate Next Generation Firewall with internal segmentation, FortiAnalyzer to monitor traffic, FortiSandbox to isolate any detected threats, a FortiGuard Labs subscription service and a well-thought-out and enforced security policy should be enough to keep most Ransomware at bay,” says Fox. “And, with this configuration, even if a mail server or smartphone gets infected, the internal segmentation bulwarks limit the damage.”

Indeed, this is one of the issues that made the ‘Panama Papers’ leak so bad. Once the intruder got inside the corporate network via a compromised server, there were no internal barriers to halt the spread. That, plus the 2TBs of data downloaded with nobody noticing, changed a corporate inconvenience into an international public relations disaster that has seen a Prime Minister resign and offshore tax laws (including our own) undergoing unprecedented scrutiny. “If the law firm in question had made even a modest effort to protect their sensitive data,” notes Fox, “they could have avoided a lot of grief.”

Don’t get hit

So the best bet is not to get stung in the first place. And ensure that your clients are rigorous in their back-up procedures. But what happens if they do get infected? What is the best strategy to clean up the mess?

“They have two options, neither particularly palatable,” says Fox. “Pay up or rebuild their system. But there is no guarantee that paying will end the drama. There might be a hidden payload that will ask for more money (or bitcoin) next month. If your client has been diligent in their backups, then they can simply do a barebone restore and rebuild the new network. But what if there is a hidden payload in the backup files? Before they rebuild, it might pay to get a forensic expert in to find the culprit and delete it before it causes further damage. Either way, it’s not a pleasant exercise.”

What to tell your customers

So what should you be telling your clients about Ransomware? “Firewalls external and internal, realtime network activity monitoring, sandboxing and constant updates,” says Fox. “That, plus user training to keep people from opening dodgy emails or visiting non-essential websites, should keep your clients safe. If you look at the costs of prevention vs the cost of paying a ransom or rebuilding, the numbers make prevention a bargain.”

Fortinet’s recommendation is to have multi-layered defence at endpoints and gateway layers and sandboxing to block and analyse these malware/botnets from entering the network. Fortinet’s advanced threat protection (ATP) helps combat application botnets and adds more control over the network. Rigorous backup is essential.

Fortinet has been putting in a lot of work tracking Ransomware and the effects. Ingram Micro will be happy to talk to you about ‘Ransomware-proofing’ your client’s networks. It’s a conversation you should be having with all of your clients. Start the process now. Before it is too late.

Contact the Fortinet Team at Ingram Micro to see how we can help:

- 1300 651 124 - sales@ingrammicro.com.au - http://au.ingrammicro.com/

Related stories
Top stories
Story image
Employment
Tech job moves - Forcepoint, Malwarebytes, SolarWinds & VMware
We round up all job appointments from May 13-20, 2022, in one place to keep you updated with the latest from across the tech industries.
Story image
Vectra AI
Understanding the weight on security leader’s shoulders, and how to shift it
Millions of dollars of government funding and internal budgets are being funnelled into cybersecurity to build resilience against sophisticated threats, indicating how serious this issue has become.
Story image
Broadband
Telstra enters into new RSP agreement with Opticomm
Telstra has entered into an RSP agreement with Opticomm (A Uniti Group Limited subsidiary) to provide network fibre services to customers.
Story image
Ransomware
Alarming surge in Conti Ransomware Group activity - report
A new report has identified a 7.6 per cent increase in the number of vulnerabilities tied to ransomware in Q1 2022.
Story image
Artificial Intelligence
SAS launches human-focused responsible innovation initiative
SAS has launched a responsible innovation initiative, furthering its commitment to equity and putting people first.
Story image
Apple
Apple previews new features for users with disabilities
Apple says new software features that offer users with disabilities new tools for navigation, health and communication, are set to come out later this year.
Story image
Artificial Intelligence
AI-based email security platform Abnormal Security valued at $4B
"A new breed of cybersecurity solutions that leverage AI is required to change the game and stop the rising threat of sophisticated and targeted email attacks."
Story image
PaaS
New digital traffic light system to tackle construction defects
Smarter Defects Management launches its PaaS digital system and says it will revolutionise managing defects in the construction industry.
Story image
Cybersecurity
BlackBerry offers Kaspersky replacement cybersecurity for the channel
BlackBerry advises that users of Kaspersky software in Australia and New Zealand undertake a rigorous risk analysis of their current security posture.
Story image
Gaming
PNY launches XLR8 Gaming EPIX memory products in A/NZ
PNY has launched its XLR8 Gaming EPIC-X RGB™ DDR4 Silver 3200MHz and 3600MHz memory products in Australia and New Zealand.
Story image
Nozomi Networks
Nozomi Networks, Siemens reveal software integration
Nozomi Networks and Siemens have extended their partnership by embedding Nozomi Networks’ software into the Siemens Scalance LPE local processing engine.
Story image
Lightspeed
Lightspeed launches all-in-one marketing platform in A/NZ
ECommerce provider, Lightspeed has launched a new all-in-one marketing solution, Lightspeed Marketing & Loyalty in Australia and New Zealand.
Story image
Artificial Intelligence
SAS announces new products amid cloud portfolio success
Analytics and AI company SAS is deepening its broad industry portfolio with offerings that support life sciences, energy, and martech.
Story image
Testing
Google and CSIRO use AI to help protect the Great Barrier Reef
Google has partnered with CSIRO in Australia to implement AI solutions that help protect the Great Barrier Reef.
Story image
Alteryx
Decision Inc. Australia enters partnership with Alteryx
Independent data and analytics consultancy Decision Inc. Australia has partnered with automated analytics company Alteryx, expanding its offering to clients.
Story image
Amazon Web Services / AWS
RedShield leverages AWS to scale cybersecurity services
"Working with AWS gives RedShield the ability to mitigate significant application layer DDoS attacks, helping leaders adopt best practices and security architectures."
Story image
Ransomware
Cybersecurity starts with education
In 2021, 80% of Australian organisations responding to the Sophos State of Ransomware study reported being hit by ransomware. 
Story image
trust
9/10 Aussies to stop spending if personal data compromised
"Based on the patterns we are seeing among Australian consumers, it is evident that trust in a brand is exceptionally important."
Story image
Data solutions
South Australia state satellite makes significant progress
South Australia’s first state satellite has successfully completed the Critical Design Review (CDR), moving it closer to providing tangible data solutions.
Story image
Application Performance Monitoring / APM
Why SolarWinds Partners will have big wins in 2022
We summarise the key recent changes that the monitoring software vendor has made to accelerate its channel business.
Story image
Remote Working
How zero trust and SD-WANs can support productive remote working
The way people connect with applications and data has changed, users are remotely accessing resources that could be stored anywhere from a corporate data center to the cloud.
Story image
Wireless
Cradlepoint expands its Cellular Intelligence capabilities
Cradlepoint has announced additional Cellular Intelligence capabilities with its NetCloud service.
Story image
Phishing
KnowBe4 celebrates reaching 50,000 customers worldwide
KnowBe4 has reached the milestone of 50,000 customers, adding nearly 2,500 in the first quarter of 2022 alone.
Story image
Sift
Sift shares crucial advice for preventing serious ATO breaches
Are you or your business struggling with Account Takeover Fraud (ATO)? One of the latest ebooks from Sift can provide readers with the tools and expertise to help launch them into the new era of account security.
Story image
Application Security
What are the DDoS attack trend predictions for 2022?
Mitigation and recovery are vital to ensuring brand reputation remains solid in the face of a Distributed Denial of Service (DDoS) attack and that business growth and innovation can continue.
Story image
Mobility
Tyson Beckford partners with Element Case on new AppleWatch band
Celebrity Tyson Beckford has collaborated with STM Brands' Element Case brand to create a rugged new accessory.
Story image
Cybersecurity
Managed service providers: effective scoping to avoid costly vendor pitfalls
Managed security services are outsourced services focusing on the security and resilience of business networks.
Story image
Fortinet
Fortinet's Security Fabric hits new record for integrations
The Fortinet Security Fabric has surpassed 500 technology integrations with more than 300 Fabric-Ready Technology Alliance Partners.
Story image
WolfVision
WolfVision announces new range of visualisers
WolfVision has announced a new range of visualisers to help meet multiple industry demands for remote learning and educational solutions.
Story image
Cybersecurity
Hard numbers: Why ambiguity in cybersecurity no longer adds up
As cybersecurity costs and risks continue to escalate, CEOs continue to struggle with what their investment in cyber protection buys. Getting rid of ambiguity becomes necessary.
Story image
ChildFund
ChildFund launches new campaign to protect children online
ChildFund says WEB Safe & Wise aims to protect children from sexual exploitation and abuse online while also empowering them to become digitally savvy. 
Story image
Manufacturing
HINDSITE wins Aerospace Xelerated Pitch Challenge with solution to support Boeing
Brisbane-based startup HINDSITE was the winner of the first ever Pitch Challenge organised by Aerospace Xelerated in partnership with Queensland XR Hub. 
Story image
Fintech
Airwallex launches new bank feed integration with NetSuite
Airwallex has launched a new bank feed integration with NetSuite, developed in partnership with NetSuite solution partner, Onlineone.
Story image
Digital Transformation
Pluralsight and Ingram Micro Cloud team up on cloud initiative
Pluralsight has teamed with Ingram Micro Cloud to build upon cloud competence and maturity internally, and externally support partners’ capabilities.
Story image
Cybersecurity
Noname Security partners with Netpoleon to target API issues
Specialist API security firm Noname Security has appointed Netpoleon as its distributor in Australia and New Zealand.
Story image
Wireless
Hands-on review: Technics EAH-A800 Noise Cancelling Wireless Headphones
Designed in Osaka, Japan, these headphones just exude quality. They aren’t heavy, but they feel well built and solid.
Story image
Telstra
Telstra, Google and Accenture launch 5G AR experience for AFL
Telstra, Google and Accenture are developing a new 5G powered augmented reality (AR) experience at Melbourne's Marvel Stadium for the footy season.
Story image
Cloud Security
Aqua Security createa unified scanner for cloud native security
“By integrating more cloud native scanning targets into Trivy, such as Kubernetes, we are simplifying cloud native security."
Story image
Data Protection
Barracuda launches new capabilities for API Protection
"Every business needs this type of critical protection against API vulnerabilities and automated bot attacks," Barracuda says.
Story image
Microsoft
New Relic enters multi-year partnership with Microsoft Azure
New Relic has announced a strategic partnership with Microsoft to help enterprises accelerate cloud migration and multi-cloud initiatives. 
Story image
Cybersecurity
The 'A-B-C' of effective application security
Software applications have been a key tool for businesses for decades, but the way they are designed and operated has changed during the past few years.
Story image
Gaming
Hands-on review: WD_Black SN770 NVMe SSD Game Drive
Western Digital expands its WD_Black range of NVMe solid-state drives with the WD_Black SN770 Game Drive.
Story image
Artificial Intelligence
SAS unveils AI experience to improve kids' batting abilities
SAS has created The Batting Lab, an interactive experience using AI, computer vision and IoT analytics to help kids improve their baseball and softball swings.
Story image
Cybersecurity
Infoblox's State of Security Report spotlights Australian remote work hazards
Attackers exploit weak WiFi, remote endpoints, and the cloud, costing 50% of organisations over $1.3 million in breach damages.