EMC Insurance

welcome Are you a new user? REGISTER HERE username password Keep me signed in RETRIEVE PASSWORD	Ransomware Attacks Target Supply Chains To Increase Leverage To Ensure Payment January 28, 2021 A ransomware attack appears to have targeted Americold, a U.S. cold storage firm and downed operations. The organization provides temperature-controlled warehouses and transportation for operations that require refrigeration, such as supplying the COVID-19 vaccine. The firm stated in its regulatory filing with the Securities and Exchange Commission (SEC) that its IT network experienced an unspecified "cybersecurity incident" in November. It said that it "took immediate steps to help contain the incident and implemented business continuity plans," as well as working with law enforcement, cybersecurity experts, and legal counsel. The day of the "cybersecurity incident," a truck driver tweeted, "At a Americold and their systems are down. They are unable to assign me to a door." Americold is the type of target cybercriminals like to hit with "human-operated" ransomware. Given the nature of its business, a ransomware attack that causes operational outages could have serious consequences for customers. This, in turn, could motivate the organization, which made more than $1.4 billion in 2020, to pay a ransom. The CEO of CyberSmart said that the incident showed the importance of supply chain cybersecurity, calling on businesses to not only pay attention to their own cybersecurity practices but also those of their distributors and suppliers. Phil Muncaster "Americold Operations Downed by Cyber-Attack" infosecurity-magazine.com (Nov. 18, 2020). Commentary Even when your organization can afford it and operations must resume, paying a ransom to cybercriminals is often the worse option. First, there is no guarantee that the criminals will restore your network or keep stolen data private even if you do pay their demanded ransom. In many cases, payment simply emboldens criminals to keep asking for more at a later time. The best strategy is prevention. Protect your system with strong cybersecurity software and monitoring; keep all devices updated with the latest patch; and train all members of the organization on best practices and ways to prevent a phishing attack. Back up data offline and have a business continuity plan specifying how you will continue operations if cybercriminals do lock your system. Most importantly, make sure that employees not select links or download documents unless they are absolutely sure they are trustworthy. Finally, inquire from other organizations in your supply chain about their cybersecurity practices and if they have protections in place to prevent operational outages if they are attacked with ransomware. Finally, your opinion is important to us. Please complete the opinion survey: I found this article very helpful. I found this article helpful. I did not find this article helpful.	The Re-emergence Of Emotet Malware Emphasizes The Need For Employee Vigilance The Emotet malware is now sending one thousand emails per day, now with adaptations to avoid detection. Read suggestions for cyber protection and spam prevention. read more Remote Work Is Here To Stay, But So Are The Cyber Risks More employees are going to work remotely. Learn why that presents even more cybersecurity challenges. read more IT Communication Breakdowns Lead To Higher Data Security Risks IT can assist employees working from home to stop a cyberattack, but employees must first make the call. We examine the cybersecurity issue of remote employees not communicating with IT. read more Orion Malware Hack Increases The Need To Fortify A Vendor's Back Door Microsoft found the Orion update malware on some of its network systems, emphasizing the serious nature of the hack. Learn how third-party suppliers increase cybersecurity risk. read more
	©2008-2021 The McCalmon Group, Inc. The McCalmon Group's User Agreement and Privacy Policy.