Behind the booming ransomware industry: How hackers hold businesses hostage | Business Beyond
ฝัง
- เผยแพร่เมื่อ 3 ก.ย. 2021
- The number of businesses falling victim to ransomware attacks each year is snowballing. That's because hackers have realised how lucrative these attacks are, with ransoms in the millions regularly being paid out.
In this Business Beyond we'll look at how the hackers make their money and how much a victim stands to lose. Cyber security experts tell us how the cyber criminals carry out the attacks and who is helping them. Plus, we'll visit part of Germany where an entire district is being held up for ransom by hackers.
Subscribe: th-cam.com/users/deutsche...
For more news go to: www.dw.com/en/
Follow DW on social media:
►Facebook: / deutschewellenews
►Twitter: / dwnews
►Instagram: / dwnews
Für Videos in deutscher Sprache besuchen Sie: / dwdeutsch
![Vigilante Hacker Outsmarts Cyber Mafia [4K] | Web Warriors | Spark](http://i.ytimg.com/vi/Db4MBkX6Rtw/mqdefault.jpg)
1. secure your machine's inbound ports (disable all remote access if not necessary, use key pairs not passwords)
2. turn on your network router/switch firewalls
This two simple things will prevent most of attacks.
And also,
3. make multiple backups of your crucial data, automate backup process to everyday.
0. only data not connected to the internet at all, which also has no other means of getting it of the system, no usb ports and such like, only such systems could be seen as relativly safe if not stolen complettly in its physical form.
4. don't click on advertisment or shifty internet sites, don't download apps from untrusted websites, don't click on email attachments if something seems of with the email ... and many more
What are key pairs?
Thanks for the advice! 🙂
Phishing emails utilize browser vulnerabilities which bypass firewalls. Considering the cloud, web-based attacks are more of a threat than some script kiddie finding an open port on the network with internet facing machines encountering the brunt of the attacks.
also please please do not have your backup data domain-joined. I've seen companies did this and it's frustrating.
Just disconnect from the internet. Problem solved :)
Doing this to hospitals equals murder.
@BARDLEGYes. Often. I guess they know there's more urgency there.
So is Governments cutting funding to hospitals ..
Most of the hackers are Indian crew... not Russian ...
This is how you learn to make backups the hard way.
Oh yeah
When hackers attack a big company, they are in their system for 2 to 8 months.
So they will find out where your back ups are.
It’ll be interesting to see greedy businesses vs heartless hackers. Since the story hasn’t been going on too long.
YEAH BOI! happened to me today
Way too many scammers in the world.
Scam phone calls, scam texts, scam emails are getting old.
There needs to be better screening and blocking of these scams.
Phone providers, software providers and security teams need to step up their game.
There are too many gullible people that need to be educated about identifying these scams.
they get money from those phone calls, texts and emails. especially calls
Cryptocurencies are like giving small but powerful speeding boats & top end weapon systems to pirates. Pirates existed long before modern weapons & speedy, powerful boats (that can go for days or weeks into the open seas with a small, well trained, well armed group of professional pirates); but before modern training, top end weapons, and top end boats, pirates could only rob local/coast ships and traders.
Now, with the technologies and weapons and training they have, pirates are running operations in more or less open seas.
Stopping the use of cryptocurrencies don't stop computer criminals, but it'd make their scamming activities more dangerous, because if they demand traditional cash/currency payments, those can be traced much more easily by central banking institutions, by local and international law enforcement bodies that have specialized cyber crime units, and by direct governmental policies.
Cryptocurrencies supersede all those traditional tools law enforcement agencies rely on for most of their crime fighting activities...
@@kiabtoomlauj6249 Except that crypto can be traced, but since we don't have the technology to do so yet, it's not a public knowledge.
Totally agree. There are even scammers in cybersecurity. And there are companies profitting of them. For example EC-council is the go to for imposters (they copy a blog post, name it a course and sell certificates based on answering general knowledge question from the blog post) you can be certified ethical hacker, certified network defender, liscence penetration tester and certified secure computer user by knowing the definition of a virus, ransomware, availability. Look at how many people claim to be specialized in cyber security based on that. Imagine how much does EC-council make. Their cost is office in India and spammers.
No one wants to pay the talent to do the above things. Security is often seen as an u needed expense at most companies and governments bodies.
A big company in Kenya was hacked.
The only way out was to pay the hackers...Lots of money
My company got one too. We didn't pay, and we lost all of our data.
Było się zabezpieczyć . Aby to zrobić trzeba mieć wiedzę i szkołę
Hopefully now you'll use some backups.
Good reporting. I couldn't have explained it simpler to non techies.
Few additions. Backups have to be offline (not connected all the time) and have to be tested routinely. The initial ransom demand amount is made for publicity and bragging rights, enterprise victims are expected to negotiate and it is not uncommon to see the actual ransom about a quarter or a third. It is rarely the case that a single criminal enterprise entity is responsible for the whole attack chain. Criminals are now specialized and offer services for each other to complete the attack.
My company was held hostage a couple years ago. For two weeks we were locked out of our system.
Let me get this when companies underpay smart people it's fine but when smart people flex their brain muscles it's bad it would have been solved if companies would quit being Mr krabs with their cash
When smart people flex their muscles the outcome is either laughter or tears yet society ostrasices them and isolates them so if I live in a deplorable country i should just live a life of suffering cz it's the righteous thing to do No!
Thank you for this wonderful insight
We are a public service and pay no ransom. However we replace all of our hardware using taxpayer money.....
Why replace your hardware for a ransomware infection? Or were you still running old machines with Windows XP?
To stay secure you have to be proactive which costs money. Some companies still fail to understand this.
Windows 11 forcing users to only use their Browser , Edge, is insulting and near illegal in 2021, in my opinion.When you set up the system, they force you to make a mistake and choose Edge only.
They mentioned that the cryptocurrency payments were tracked to see if it was paid out.. and then minutes later said that cryptocurrencies are anonymous and untraceable. Cognitive dissonance at it's finest. 6:46 and 7:54 - Unbelievable.
Yep
Feds were able to track and regain bunch of the money that was paid out, it’s not impossible to trace
Scary world
One major overlooked arena for fighting ransomware is through cooperative legislation - a country is chosen to enact legislation that makes it easy to (1) prosecute the crimes; (2) that has such stiff penalties - loss of freedom, loss of property - they act as deterrents; (3) extradition treaties with other countries that have extradition treaties with the major hacker countries and streamline the extradition procedure such that, for example, the US requests an arrest through country 1 who then does the same with country 2 who does the same to the target all in a matter of days so the target is caught unaware; (4) establishes the policy that a cyberattack is treated as an act-of-war by the hacker host country and retaliation against that country can be economic or military strikes; (5) those who are in positions of power is hacker countries are subject to prosecution with forced appearances being an absolute possibility - o.e. you are kidnapped and brought to a different jurisdiction for prosecution, etc. Such draconian measures are only so because the actions that require them are so draconian and remain quite unpunished. Until the punishment fits the crime, the crime will continue. Destroy a hacker country and you will see the end of the hacker problem.
I feel the ransomware industry actually has the potential to do a lot of good. A business that has caused billions of euros in environmental damage, make them pay for it. An organisation that directly caused the death of people, get some compensation for their families. Only works if the hackers are more interested in the ethics than the potential money though, can't be attacking charities or the public sector, etc.
My brother’s friend had an attack and locked up all wedding footage he was working on. Ours was just family photos.
No matter how much you secure the technology, physical security and social engineering will let anyone in.
Ya well training endusers is golden. As is having cyber sec work with HR to ensure insider threats are taken seriously.
I subscribed and liked. Thanks for a good educational video.
Imagine if all your files are already pre-encrypted by you XD
It takes time to open them one by one but it's the surest way not to leak info. Cause back ups are in the clouds obviously
@DW News : At 2:35 or so you say, " _The hack on the Colonial Pipeline affected fuel supplies to much of the USE's or U.S.E.'s coast_ ", but don't say what the USE or U.S.E. is and certainly should. I've never heard of that place, which I can only guess is a country, so checked Wikipedia, getting a disambiguation page, and it definitely isn't clear which of the links provides the one to use or check.
I think it is: US East coast
Ransomware is only crime I know of that's perfect crime. Never have I heard of anyone getting caught. I mean ransom attack not other type of cyber attack
there was a teenager group in UK getting caught Lapsu$
I'd be more interested in learning about how they get paid and how they actually get the money. I understand they use crypto, but it's not as anonymous and leaves a paper trail that can be traced back to someone. I'd assume they get the bitcoin, split it into multiple different wallets and then convert it all to different crypto multiple times so it's not making it "untraceable" but 100x more difficult to trace because it has all split and moved all over the crypto space which could be considered untraceable. I've also read about crypto mixers/blenders which apparently "clean" crypto and make it completely untraceable. Still a very interesting topic imo on how they operate and the end goal.
Why can't you guys give me a try on (TELEGRAM) a try and see if his capable
There are so many ways to make yourself hard to find, best ways is use bitcoin via accounts in countries that dont have or dont care about these currencies or cyber intelligence. Or actually profit from it - so US Hacker attacks china or Chinese hacker attacks USA - simple. Other ways are switching plattforms and currencies changing wallets constantly
My entire home network was attacked and lost 15yrs worth of data, years of photos and memories, important documents, studies... and fn Australian gov wants me to trust them to give every fn personal detail I have to them!
The same happened to me. Nobody believes the facts. I can understand your unbelievable loss.7!!
@@user-bp4gh2fj9k I don't have a big enough hard drive to recover everything, but you may be able to recover files (file recovery app) if you haven't modified your system or reformatted.
@@moichi2957 It's not my case. I have 7 computers and 4 external Tera disks. Only 2 of them are in function and 1 tera is dead. From the moment of internet connection you are "dead meat" unfortunately...
But only Monero is untraceable, others are on public ledger ... your video is spreading FUD against Crypto subliminally
Bo zamiast zatrudniać wykształconych inżynierów informatyków firmy zatrudniają niewykształconych pracowników którzy zlecają pracę innym udostępniając im dane i informacje o firmie. Ochrona danych to fikcja. .
Ahh cyber polygon, such a coincidence, briliant way to get yr business going.
Ridiculous!
Klaus Schwab's "Cyber Pandemic" coming.
These guys are heros
Cyber evolution
Holochain will change the digital game for sure and by the way, most cryptos are traceable!
doesnt matter in the end, who will charge you in north korea, china, russia, iran, 80% of africa and many other regions. Not even in the EU every country cares about cybercrime enough xD and one of the biggest Ransomware groups came from the UK actually
4:20 Erstmal den Monitor ersetzten.
Nice little aristotelian syllogism at the end.
Government doing this too,
"run-somewhere attacks"
#1 problem using Windows.
Bitcoins are not untraceable
poverty rises and crime rises with it whaaaaaat?
Paying ransome for this type of hacks should be illegal or taxed with a couple of 100%. If they hackers don't get paid, they will stop hacking.
It’d be a legal nightmare to enforce that in the U.S.
This documentary is not a documentary, but a bunch of opinions, and is definitively wrong on so many levels.
Why change all the hardware when you can just do a clean reinstall ?
Because when the hack is especially bad, a clean reinstall doesn't clean deep enough.
and while you're installing an OS just switch to Linux unless you like dealing with malware
OK, DW overall an interesting channel, but you have to choose your "experts" more carefully.
BTC is as bad as a CreditCard, the ledger is not encrypted at all and accessible by veryone.
There is a mixer mechanism though independent from BTC's white paper, as e.g Stonewall, Ricochet, Coinjoin ect.
Consequently, the "problem" like always lies not with the weapon but with a human being who use it.
Don't be fooled by simplifying a complex system.
The government is gutless they have to lay the law down
Ransomware Incorporated
"Russia hacked the oil pipeline." - That was funny.
Didn't the irish cops screw up their domains
They hake my internet my phone since last 10 years and all I can curse them and use bad words, I m jobless my wife run away my kids are lost and I forget my bank account and I m on my dead bed because I m mentally sick because I never have all those things which I mentioned. Anyway it was a real bad experience even I find out earlier that there are some control and checks on me reason may be just hate and haters have power. Anyway I learn and I m happy what I learn from my experience. I think soon climate change will effect internet and distroy everything
Who did you bank with
@@AlexxGamboa I forget everything I m crazy no bank no money get lost
DO THE GODDAMN BACKUPS.
Cyber polygon
Exactly
Already then.......God Allmighty is in control....hang on to Jesus.....The Holly Spirit guide u in the deep stage of life.
Tech should prompt human beings' life but it becomes to be scared by people. People spent a lot money to protect the safe environment,, what happened in this world?
Follow the money
nothing complex ... only thing you need to do is, dont open anything on email..and dont download and open any exe files.. simple ...
Its much more complex then that
Buy Monero
This is a great way to topple a government.
ha ha a jak się rząd wybrał ?
I lol'd when he said america is the protector of the free world
Watch it again, you dolt. He didn't say "... is... ". He said "... kind of wants to be...".
More cryptocurrency FUD?
reinstall the windows no problem and dont watch random porn
Move to linux 😃 or buy a good antivirus
Am in the wrong industry lol and all you need is the ransom ware edit it to you liking plug it in at work then watch it infect every computer in the building then let the blackmail begin and they pay which is crazy a would never pay just get the system flushed and restart your servers it has to be easy to fix it but most companies don’t have it departments
North Korea is probably doing the large hacks
Stop blaming Russians.
Its mostly INDIANS!
Rob, hit the gym.
HE SAID.... THEY'RE MAKING BUSINESSES POORER! BAHAHAHAHA.
It seems easy to solve this problem, just make it illegal to use crypto currency.
Do you realize people are criminals because they engage in illegal activities... making cryptocurrency "illegal" wont stop cyber and ransomware attacks infact it might make it worse.
😂
@@lukastomek7532 You know crypto currency is just a big scam. I mean it doesn't exist.🤑
@@ulrichschnell2331 the money in your account don’t exist either 😂 money is something we use to trade.. if used beans it would be beans.. now we use crypto. Your a scam
@@lukastomek7532 Tells what you know! Cash is king!
Ransomwere my Linux :)
Making businesses poorer 🤣🤣🤣🤣
Ban crypto currencies.
And make it illegal to pay the hackers.
Kalau IG aku hilang berarti aku di take down yakkk
KLAUS MF SCHWABS
😂
🙃😉
Thank you cryptocurrency. It's so much easier to deal with transferring it over bordered than using banks or cash. That's its only use case.
That s nothing else than crypto F.U.D