Dubai: Ransomware, a relatively new kind of cyber attack where criminals demand money for decrypting files they have taken control over, is increasingly targeting ordinary consumers — including those in the UAE — a new study said on Wednesday.
Security firm Symantec said in its latest research the average ransom demanded by attackers jumped to $679 (Dh2,491), up from $294 (Dh1,078) at the end of 2015.
The “Internet Security Threat Report (ISTR) Special Report: Ransomware and Businesses 2016” revealed consumers make up 57 per cent of ransomware victims.
The majority of ransomware variants are designed to attack Windows computers and ordinary home users continue to be one of the biggest victim groups, it added.
Meanwhile, employees at organisations make up 43 per cent of ransomware victims.
According to Symantec’s 2016 ISTR, the UAE experienced the fourth highest rate in ransomware attacks in the Middle East and Africa region, added Hussam Sidani, regional manager for Gulf, Symantec.
Furthermore, ransomware attacks grew by 44 per cent year-on-year in the UAE in 2015.
“In 2015, we saw an average of 28 attacks per day and 10,279 total attacks on UAE-based organisations,” Sidani said.
“Additionally, given the strong uptake of smartphones and tablets, we’re seeing more mobile devices coming under attack, with attackers encrypting files, and anything else an owner will pay to recover.
“The UAE has one of the highest penetration of smartphones in the world and users enjoy great connectivity here. This can make them a very lucrative target for ransomware.”
Sidani explained that one of the most common methods to spread ransomware, and malware in general, is through malicious spam email. These spam emails pose as an important email from a well-known organisation, such as a shipping or utility company. However, as soon as the user opens the malicious attachment or link, malware will be installed on their device or computer. Following this, the user’s important files will be encrypted and they will receive a message demanding a ransom to release the files.
Victims can be asked to send ransom money via a payment link or by handing over their credit card information. However, Symantec’s recommendation is not to pay the ransom.
“While we recognise that some organisations may feel that paying the ransom is their only option, there is no guarantee that this will recover their data. Attackers may not send a decryption key, could poorly implement the decryption process and damage files, and may deliver a larger ransom demand after receiving the initial payment.”\
Safety first
Don’t click links in unsolicited email or social media messages, particularly from unknown sources.
Use strong and unique passwords for your accounts and devices, and update them on a regular basis.
When installing a network-connected device, or downloading a new app, review the permissions to see what data you’re giving up. Disable remote access when not needed.
Antivirus-only security is no longer enough to combat security threats like ransomware. Protect your data with a multi-platform solution and back up your computer and devices on a regular basis.
Source: Symantec
