SecurityBrief New Zealand logo
New Zealand's leading source of cybersecurity and threat news
Story image
Twitter bots create a third of the world's misinformation
Story image
A clear case for AI in endpoint protection
Story image
Mimecast integrates with IBM’s security platform
Story image

Kiwi universities and businesses targeted by scammers

27 Apr 16
Shannon Williams

​Kiwi universities and businesses are being targeted by ransomware scammers, according to Computer Forensics NZ.

According to the company, Otago University recently put an alert on its website warning of a significant increase in attacks aimed at the university. Likewise, Auckland University now warns about the increasingly common crypto-ransomware attacks on its website.

Brian Eardley-Wilmot, managing director of Auckland-based Computer Forensics, says last year saw multiple Kiwi businesses and individuals targeted.

He says 114 Kiwis were targeted in one day in just one ransomware attack, one business paid out $11,000 to have its data unlocked and another paid $9,000, for example.

However, Eardley-Wilmot says, “people shouldn’t panic.”

“This is the aim – to scare the living daylights out of you,” he says.

Eardley-Wilmot says mobile devices, including Apple iPhones and iPads, are also now being increasingly targeted.

“One recent nasty attack saw a message allegedly from the police appear on mobiles saying the victim had been found to have child porn and if $200 (ransom) wasn’t paid the message would be sent to everyone in the person’s address book,” he says.

According to Eardley-Wilmot, ransomware cyber-criminals are taking a more business-like approach to targeting organisations and businesses.

“They’ve moved beyond random attacks on individuals and are now targeting bigger fish,” he explains. “Some are even pricing their demands in line with how big an organisation is and its market value.”

The targeting of New Zealand universities and businesses mirrors recent ransomware attacks in the US that have seen hospitals, schools and even the police targeted.

“Ransomware is a virus, but what makes it particularly nasty is that it locks up (encrypts) the victim’s data,” Eardley-Wilmot says.

“The cybercriminals then demand a ransom of anything from a few hundred to thousands of dollars before unlocking your data – but with no guarantee they will do so,” he explains.

Eardley-Wilmot says Computer Forensics – which has 16 years’ experience of computer security and fraud – can usually help organisations unlock malware-encrypted data.

“But organisations can do a lot to protect themselves too.”

Tips on how to beat ransomware scammers:

  • Back up fully and often – and to devices and places not connected to your computer or network. This means having removal storage, such as a second hard drive that can be disconnected, or a CDR, DVD or Blu-ray disc, or even a modest USB flash drive. Back up remotely to the cloud too. If your data is backed up, you need not fear it being locked up by scammers unless you synchronise an infected machine to your cloud account.
  • Update your software regularly to ensure all those vulnerable holes that scammers exploit to get into systems are patched and closed off.
  • Educate your staff (and yourself) to guard against any emails that look the least bit odd, or come from an unknown source. Don’t open them and certainly don’t click on any links or open any attachments unless you positively know that the email is genuine – this is how scammers wriggle in. Make that call to find out if the sender is legitimate. If you click on emails regardless of the source you will get infected.
  • Act fast and shut down if you become infected. Do so immediately, so as to limit the spread of the virus’ infection.

Eardley-Wilmot also advised people not to try and fix a tainted PC themselves.

“Call in the experts. There is a danger the virus may copy from machine to machine if you play around with it,” he says.

More:
Share on: LinkedIn Twitter Facebook
Story image
Twitter bots create a third of the world's misinformation
Story image
A clear case for AI in endpoint protection
Story image
Mimecast integrates with IBM’s security platform
IP theft: A global issue catching NZ businesses off guard
“We have this incredible record of innovation in New Zealand. But our innovative businesses haven’t always been meticulous in shoring up their IP."
Why A/NZ organisations need to improve compliance protocols
Only a mere 4% of IT decision makers and data managers surveyed said their organisation faced no data management challenges. 
What the people say - Gartner’s November Customers’ Choices
A roundup of the latest Gartner Peer Insight Customers’ Choices from Backup and Recovery to Business Intelligence and Analytics, and more.
BlackBerry buys out cybersecurity AI firm Cylance
“We are eager to leverage BlackBerry’s mobility and security strengths to adapt our advanced AI technology to deliver a single platform.”
Data protection is key to building customer trust
"New data compliance rules offer an opportunity for businesses to re-evaluate their processes and improve data management and customer loyalty."
NZ Internet Task Force joins iSANZ Hall of Fame
NZITF chair Barry Brailey and former chairs Mike Seddon and Paul McKitrick received the award in Auckland last week.
Quantum computing: The double-edged sword for cybersecurity
Quantum computing is quickly moving from science fiction to reality.
Three ways to achieve data security whilst enabling BYOD
"A mobility strategy is now more important than ever before, that said, selecting the right one is often no small task."
Story image
How IoT and hybrid cloud will change in 2019
"Traditional VPN software solutions are obsolete for the new IT reality of hybrid and multi-cloud."
Story image
WatchGuard’s eight (terrifying) 2019 security predictions
The next evolution of ransomware, escalating nation-state attacks, biometric hacking, Wi-Fi protocol security, and Die Hard fiction becomes reality.
Story image
GCSB's CORTEX project scoops iSANZ Award
“I believe this award is particularly significant as it is acknowledgement from our peers in the information security industry and from across the private sector."
Story image
Cisco expands security capabilities of SD­-WAN portfolio
Until now, SD-­WAN solutions have forced IT to choose between application experience or security.
Story image
Kiwis concerned about being scammed – survey
This unease is warranted given the growing sophistication of scammers and their activities, and numbers of attempted fraud.
Story image
The silent security risk of unstructured data
"IDC estimates that 90% of today’s enterprise data is unstructured."
Story image
Three access management trends making waves in APAC
Consumer identity proofing, authentication, and authorisation will top the $37 billion value mark by 2023.
Download image
GDPR compliance: A step-by-step guide
The GDPR affects any company that deals with individuals living in the EU and has very specific requirements for the treatment of their personal
Download
Story image
How phishing is evolving to outpace awareness
While email providers have made strides in flagging suspicious emails and source domains, reducing the effectiveness of attacks, attackers’ techniques have also evolved.
Story image
Dropbox strengthens security with raft of new partnerships
Integrations will keep customer content protected and secure with tools for controlling identity access, governing data, and managing devices.
Download image
Whitepaper: Why it’s critical to detect cyber attacks as they happen
"Many organisations are struggling to keep pace with the speed in which hackers are attacking their systems."
Download
Download image
The features that should be front and centre when evaluating SIEMs
According to Frost & Sullivan, SIEM can either be an enabler or a retardant and there's a thin line between the two - here's the key attributes.
Download
Download image
Whitepaper: How to build cloud policies your organisation can stand by
Done right, digital transformation can transform the way governments engage with citizens, make businesses more productive and help non-profits be more effective.
Download
Download image
Whitepaper: How to detect and respond to threats faster
This white paper uncovers how UEBA reduces your organisational risk and enables you to respond more quickly to attacks.
Download
Story image
2018’s worst malware revealed in report
Webroot has highlighted the top cyberattacks of 2018 in its latest Nastiest Malware list, which showcases the malware and attack payloads that have been most detrimental to organisations.
Story image
Don’t let your network outgrow your IT team
"IT professionals spend less than half of their time at work optimising their networks and beefing it up against future security threats."
Download image
Survey: App dev is surging, but how are businesses doing it?
Today “every company is in the software business" to get a competitive edge, and this survey reveals how app dev is affecting IT teams.
Download
Story image
'DerpTrolling’ faces jail time for Sony DoS attacks
A United States federal court has charged a 23-year-old man for the hacks on Sony Online Entertainment and other major companies back in 2014.
Story image
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”
Download image
Avoid underutilising office space with optimisation solutions
Facility managers and security professionals need a real-time view of how their workforce interacts with a building.
Download
Download image
What does sustainable compliance look like?
Getting an organisation compliant is one thing, keeping it that way is another.
Download
Story image
Security cameras – a latent botnet network?
In a comparison of 16 indoor and outdoor IP surveillance cameras, researchers found only one well-protected device.
Story image
Sponsored
Huge vulnerabilities in software supply chain being exploited
A very exposing report has revealed breaches are rising and response times are falling, largely due to shoddy software development practices.
Download image
The six golden keys to successful identity assurance
When someone tries to access your internal systems, how can you be sure a user is who they claim to be?
Download
Story image
Exclusive: Fileless malware driving uptake of behavioural analytics
Fileless malware often finds its way into organisations via web browsers (or in combination with other vectors such as infected USB drives).
Download image
Whitepaper: The evolution of physical access control
Despite the enhanced security and convenience that comes from newer options, many organisations are still using outdated and vulnerable access control technology.
Download
Story image
Opinion: Router security leaving major cyber exposure gap
Hardware is frequently tossed to one side upon installation and left to fester without security updates.
Story image
Sponsored
Five major risks of letting shadow IT go unchecked
A department creating its own bespoke IT solution may sound like a good idea, but are the risks really worth it?
Download image
Cutting through the noise with AI-driven threat analytics
SANS has provided an independent review of a new AI analytics solution designed to rescue businesses 'drowning in data' from SIEM platforms.
Download
Story image
Exclusive: Why Australian enterprises are prime targets for malware attacks
"Only 14% of Australian organisations are continuously training employees to spot cyber attacks."
Story image
Interview: Aruba’s NZ country manager talks channel strategy
“What we're taking to market is that message around simplification and having everything in one place.”
Download image
Secure your BYOD policies effectively with multi-factor authentication
Multifactor authentication helps organisations secure their cloud applications, privileged access management, VPN access, digital workspaces and company apps in an easy, low-friction method staff can integrate into their workflow easily.
Download
Story image
Organisations lack holistic approach to data protection
It is paramount for organisations to have a clear understanding of what data protection is and close the gaps in their protection strategies.
Download image
The security tool conundrum: Can you have too much of a good thing?
Organisations across Asia Pacific are using many different security tools to protect their businesses, but often they have no centralised platform to manage those tools.
Download
Story image
What MSPs can learn from Datto’s Channel Ransomware Report
While there have been less high profile attacks making the headlines, the frequency of attacks is, in fact, increasing.
Story image
Companies swamped by critical vulnerabilities – Tenable
Research has found enterprises identify 870 unique vulnerabilities on internal systems every day, on average, with over 100 of them being critical.
Story image
NZ firms lack cybersecurity confidence, HP survey says
Out of 434 of New Zealand’s small and large businesses, only half (50%) feel confident that they would be able to cope if they experienced a significant cybersecurity breach.
Story image
AlgoSec delivers native security management for Azure Firewall
AlgoSec’s new solution will allow a central management capability for Azure Firewall, Microsoft's new cloud-native firewall-as-a-service.
Link image
Increase visibility and productivity with fleet tracking software
Know what’s going on in the field so you can dispatch more efficiently, improve customer service and reduce time spent calling drivers for updates.
Read more
Download image
Whitepaper: Threat detection and risk measurement with machine learning
ResponSight focuses on two key areas of cybersecurity – threat detection and enterprise risk measurement – and the need for more sophisticated approaches in each.
Download
Story image
ThreatQuotient partners with Visa for payments safety
“Cyber criminals are reusing tactics, techniques and procedures, leaving a recognisable trail of breadcrumbs and insights into the very attacks they are launching.”
Story image
Sponsored
Cyber crisis continues unabated – is ATP the answer?
Statistics on cybercrime certainly makes for grim reading, and that is set to continue unless businesses take measures to stack the odds better in their favour.
Download image
Using SOLIDWORKS CAD to take an idea from prototype to product
Sound pioneer Nura had an ambitious concept to deliver when it raised almost two million dollars via crowdsourcing and then over five million dollars through a seed round.
Download
Story image
How to configure your firewall for maximum effectiveness
ManageEngine offers some firewall best practices that can help security admins handle the conundrum of speed vs security.
Story image
ForeScout acquires OT security company SecurityMatters for US$113mil
Recent cyberattacks, such as WannaCry, NotPetya and Triton, demonstrated how vulnerable OT networks can result in significant business disruption and financial loss.
Story image
LogRhythm reports higher-than-anticipated SOAR adoption rate
The company’s embedded security orchestration, automation and response (SOAR) capabilities are embedded in its security information and event management offering.
Story image
Computer Lounge online store hit by security breach
Auckland-based online computer parts store Computer Lounge has been affected by a security breach.
Download image
Whitepaper: The key to compliance is governing access to data
By implementing a governance-based approach to identity governance, companies can secure their organisation’s sensitive data.
Download
Story image
Why you should leverage a next-gen firewall platform
Through full lifecycle-based threat detection and prevention, organisations are able to manage the entire threat lifecycle without adding additional solutions.
Story image
Inside NZ’s first blockchain trade for meat exports
“We’re exporting to 40 different countries and being able to use a blockchain platform removes the weak spots and ensures the integrity of the data."
Story image
Sponsored
Impact of legacy technologies on threat alert response and cloud adoption among Aus enterprises
Most Australian enterprises today are hamstrung by the same technologies that once helped advance the nation’s IT economy.
Story image
Kordia launches Women in Tech scholarship at the University of Waikato
The scholarship is established to acknowledge and support up-and-coming female talent and future technology leaders.
Story image
SonicWall secures hybrid clouds by simplifying firewall deployment
Once new products are brought online in remote locations, administrators can manage local and distributed networks.
Story image
NZ being targeted for cyber attacks – study
The survey polled more than 230 IT decision makers in businesses with 20 or more employees across New Zealand.
Story image
Gartner names Bitglass a leader in cloud security
Bitglass was evaluated based on its ability to execute and its completeness of vision.
Story image
It's time to rethink your back-up and recovery strategy
"It is becoming apparent that legacy approaches to backup and recovery may no longer be sufficient for most organisations."
Story image
The quid pro quo in the IoT age
Consumer consciousness around data privacy, security and stewardship has increased tenfold in recent years, forcing businesses to make customer privacy a business imperative.
Story image
Combatting the rise of Cybercrime-as-a-Service
Amateur cybercriminals (or anyone with a grudge), can execute spam attacks, steal people’s identities, and more. 
Story image
"Is this for real?" The reality of fraud against New Zealanders
Is this for real? More often than not these days it can be hard to tell, and it’s okay to be a bit suspicious, especially when it comes to fraud.
Story image
Kiwis losing $24.7mil to scam calls every year
The losses are almost five times higher compared to the same period last year, from reported losses alone.
Story image
Sponsored
Case study: Startup revamps systems with HID mobile access
“We want our clients to have the best experience here. This is the reason why we chose to work with HID Global solutions."
Download image
Whitepaper: An inside look at the benefits of cloud
"Cloud computing is revolutionising business, enabling organisations to move faster, spend less and deliver greater value."
Download