THE NEWS headlines THAT CAUSED PANIC
THE BREAKING NEWS!
'Ransomware' got the nation taking
The NHS cyber-attack that hit hospitals across the UK is said to have been part of the biggest ransomware outbreak in history and it could ramp up again this week as people return to work. UK hospitals have effectively shut down and are turning away non-emergency patients after ransomware ransacked its networks.
Some 16 NHS organizations including several hospital trusts have had their files scrambled by a variant of the WannaCrypt, aka WanaCrypt aka Wcry, nasty. Users are told to cough up $300 in Bitcoin to restore their documents. Services in other countries – including Russia, Taiwan and Kazakhstan – were also affected by similar hacks. Experts say the virus, called exploits a vulnerability in Microsoft Windows software that was first identified by American spies at the NSA.
Doctors have been reduced to using pen and paper, and closing A&E to non-critical patients, amid the tech blackout. Ambulances have been redirected to other hospitals, and operations canceled.
industry experts ANLYSIS
Securestorm's approach to tackle high-impact attacks such as the NHS breach is the same that has proven to be effective with other high-profile organisations. We look at problems practically and holistically. This enables us to deliver innovative and tailored approach that suit the organisation while placing considerations on resources and other factors like cost and time.
LONG-TERM & IMMEDIATE ACTIONS
Tony Richards, CTO of Securestorm who actively works-alongside Government organisations has been monitoring and advising organisations to help defend and protect against such attacks added, "Microsoft released a fix, or patch, for the issue in March prior to the dump. However computers that did not install the update, or could not due to the age of the software, would have been left vulnerable to an attack". He also stated how the use of Abatis HDF software would have helped these organisations to protect, defend against the very same attacks while proving to be cost-effective at the same time. Subsequently, he tweeted -
Mandeep Obhrai, CEO of Securestorm analysed the importance of long-term organisational planning along with embedding a security culture that is practical. He recommends:
- Robust business continuity planning
- Crisis and incident response planning
- Excellent security hygiene policies and user awareness
- Up-to-date patch and vulnerability management
- Access control and user privileges are important
- Back-up data using relaible solution for protection.
'Beating ransomware is about preventing it rather than reacting to it. Invest in awesome Cyber Security !'
- Mandeep Obhrai, CEO
Securestorm can offer expert advice and consultancy services to organisations while developing the overall security posture, maturity and culture. We have lead, integrated with and supported multiple teams within organisations to be cyber ready. As such there is no one-stop solution for incidents but this is where consulting us benefits organisations as are accredited and experienced to adeptly look into different areas. Read about our case studies here.
For the ransomware incident, we have identified Abatis software as one of the solutions as defense. The following are features and benefits of this particular software.
‘A Disruptive Zero Day Defence’ solution against HACKERS'
SECURESTORM TEAMS UP WITH ABATIS TO FIGHT RANSOMWARE & MALWARE
Securestorm Ltd., London based Cloud and Cyber security experts and NCSC Certified Consultants have officially partnered up with ABATIS, a UK based Cyber Security Awards 2015: Innovative Product of the Year winner to offer a resilient, cost-effective and agile solution that stops zero day attacks.
Abatis is deployed on end point workstations and servers to enforce corporate security policy and provides detailed analysis and audit information.
- STOPS ZERO-DAY ATTACKS
- Less than 100KB Kernel Level Protection
- Preserves the integrity of whatever device it is installed upon
- Protects All Windows and Red Hat Linux
ABATIS SOLUTION: FEATURES & BENEFITS
PROTECT: MALWARE PROTECTION
- "Effective at stopping all attempts to write malware to the permanent storage of the device regardless of system privilege"
- "Abatis Stopped 100% of all malware in comparative tests where 8 well-known Anti-Virus tools scored between 30% and 55%”
- Provides an APT HUNTER-KILLER ability not seen in any other tool
- Safe to use in mission and safety-critical real-time systems and SCADA environments
- Provides TOTAL Control over USB Devices
DEFEND: RANSOMWARE DEFENCE
"Defence Against Crypto Locker and Other Ransomware“
Ransomware is one of the fastest growing methods for cyber criminals to extort money. Abatis stops these attacks dead. Ransomware is one of the fastest growing methods for cyber criminals to extort money from their victims. In the first six months of 2014 cyber criminals made over $100 Million in extortion, many of these victims had no option but to pay up or lose sensitive corporate information. Abatis stops these attacks dead.
SAVE : ENERGY SAVING CAPABILITY
Fast, Light and Efficient
- "Saves 7% of the energy consumed by the device, servers run 8°C cooler, saving £35 / €50 / US$60 per server per annum”
- Imperceptible performance impact
- Up to 40% performance (speed) improvement compared to traditional AV
- Massive improvement in laptop battery duration
ABATIS CENTRAL MANGEMENT CONSOLE (CMC): A USER FRIENDLY CENTRAL COMMAND CENTRE
- Making Security Management Simple and Cost-Effective
- Central Management Console (CMC) provides facilities to:
- Install on an estate
- Retrieve and analyse logs
- Push policy updates to Abatis individually, in groups or globally
- Web based application
- SIEM-like dashboard
ZERO DAY DEFENCE SOLUTION: How it works
Abatis is a host based software only solution that is implemented as a kernel driver on Windows platforms. It intercepts and mediates file write access to the computer’s permanent. It is designed to help enforce system and file integrity without complex management overheads. It achieves this security objective by exercising robust access control over the writing of executable files and user-defined files (protected files) to a computer. It protects against unauthorized modification and denies unauthorized write operations.
While Abatis blocks unwanted executables by default, the Abatis system administration can define files for integrity protection according to the computer’s roles. Ideally, Abatis should be deployed on a newly installed ‘clean’ operating system. From this secure initial state (baseline), Abatis will prevent malware infection then on.
For most corporate environments, Abatis is rolled out at stages and there may be extant undetected infections on systems – often referred to as Advanced Persistent Threats (APTs). Abatis' unique operation and extensive audit log allows the malware to be identified. Abatis can also reveal rootkit infections and facilitates the subsequent removal of such programs.
Securestorm are authorized re-sellers of the Award winning software and management console solution from Abatis that helps stop malware cost-effectively and right from the get-go.
EXPERT SUPPORT & ADVICE
With Securestorm, you get unparalleled expert advice, excellent customer care support and guidance pre-and-post on-boarding process giving our clients peace of mind and massive savings on cost, time and resources.
To request for a for additional information on malware & ransomware defense and protection tailored to your organisation's infrastructure, budget and considerations please get in touch via firstname.lastname@example.org or call 0203 8655890 for advice and consultation.