The isolation measures put in place by the Covid-19 virus pandemic increased computer attacks, mainly on the systems of private sector organizations.
Last weekend, Telecom Argentina and its European counterpart, Orange, suffered the onslaught of REvil, a ransomware (see Hijacker virus) that has been circulating on the networks for some time and that has been registering mutations to avoid being detected by computer security systems.
The data alerted companies and organizations at the local level, which came out to reinforce controls over the past weekend, as these types of attacks increased in the interior of the country between 60 and up to 100 percent since the quarantine began.
“The pandemic exacerbated this type of situation simply because there are more clients for cybercrime,” says Enrique Dutra, managing partner of Punto Net Soluciones.
According to the cybersecurity specialist, the teleworking scheme, which companies implement to continue their activity amid the pandemic, facilitates the entry of viruses and other malicious files, since in many cases employees use their own computers to access to networks through programs that do not have the level of security inherent to computers in the workplace.
“The hackers who are dedicated to developing ransomware They are engrossed because, fearing that activities will stall, companies put all of their employees to work remotely. Once the virus entered the private computer, the system is accessed, ”he adds.
Dutra, who spent the weekend monitoring his clients’ systems, says the attacks increased 60 percent compared to the pre-quarantine stage and that, in recent months, he received “between six and seven calls per day” from companies affected by these cases, mainly exporters in the southern province.
The ransomware they can be the result of a planned attack or simply what is called “fishing“, virus that circulates in the nets to” catch “an unsuspecting man.
“Before the hacker He had to be a computer specialist, to violate companies’ systems. Now, it uses social engineering, since it enters through emails, mainly, and through social networks and WhatsApp to a lesser extent ”, explains Lisandro Cervantes, ciso (in charge of information security) of the technological Argalis.
In this regard, he highlights that the most common form of income for a ransomware It is through an email that simulates being the communication of a recognized company. In general, it asks you to enter the keys and thus extracts the information to access the systems.
“Since the pandemic began, attacks have increased between 70 and up to 100 percent, mainly to banks, to virtual wallet sites and to companies that move money online,” Cervantes says.
What is a ransomware
Why is the backup in an organization.
He ransomware It is a computer virus that hijacks key information for an organization. Generally, the intention is to ask for a ransom, often in virtual currencies that are not easy to trace. Once he ransomware enters the networks of an organization, it is difficult to recover the sequestered information, hence the main recommendation is to make backup (safeguard) data on a regular basis, but not all follow these suggestions.