Reset

Microsoft Warns of Android Ransomware Vulnerability, Hikvision Senior Director of Cybersecurity on 4 Tips to Avoid Ransomware

November 23, 2020

Hikvision HikWire blog article Android Ransomware Vulnerability

Hikvision aims to provide timely news related to the latest cyber threats. In today’s blog, Hikvision Senior Director of Cybersecurity, Chuck Davis, will overview ransomware, detail a ransomware Android vulnerability, and provide tips to help you avoid becoming a victim to this threat.

What is Ransomware?
Ransomware is a diabolical form of malware that is silently installed on someone’s computer after they fall for a phishing attack. You won’t know that your computer is infected with ransomware until it is too late.

Ransomware quietly encrypts all of the files and folders on your computer, and any data on connected USB or mounted shared drives, and then uploads the decryption key to the threat actor who tricked you into installing the ransomware. You will then see a screen show up on your computer that informs you that your data is encrypted. To get the key to decrypt your files, you have to pay a ransom to the threat actor.

Ransoms are often hundreds or thousands of U.S. dollars and are collected in Bitcoin so it is difficult to trace. The good news is, if you have a good data backup, you can ignore the ransom and reinstall your operating system and restore your files. While ransomware is evil, it did give us one thing, we can now put a dollar value on backups. In addition to your time, a good and timely backup is worth at least hundreds, if not thousands, of dollars.

Android Ransomware Vulnerability

Microsoft Warns of Android Ransomware
Mobile ransomware is not new, but Microsoft recently wrote about a “piece of a particularly sophisticated Android ransomware with novel techniques and behavior, exemplifying the rapid evolution of mobile threats that we have also observed on other platforms.”

As with most Android ransomware, this ransomware doesn’t actually encrypt the files. Instead, it locks the mobile device screen with a ransom note so the device becomes unusable. “Once installed, the ransomware takes over the phone's screen and prevents the user from dismissing the ransom note — which is designed to look like a message from local law enforcement telling users they committed a crime and need to pay a fine”, reported ZDNet.

4 Tips to Avoid Ransomware
Ransomware is a rapidly growing problem that we see impacting servers, desktops and mobile devices in homes, businesses, and governments. Below are several tips to help you avoid becoming a victim to it.

  1. Data Backups: The first and most important thing that you can do is to back up your devices. Check out the Hikvision article on data backups.
     
  2. Patching: Patches are updates to a computer program or its data that improve or fix it. By installing patches as soon as they are released or setting automatic patching where available, you can keep your system up to date.
     
  3. Multi-Factor Authentication (MFA): Enable MFA where available to better protect your accounts and devices. This also protects against credential stuffing attacks.
     
  4. Use a Password Manager: Using a password management tool can help you create strong, unique passwords for every account. A password manager is a software tool that is used to store all of your passwords in an encrypted file so that you, and no one else, have very easy access to them, helping to minimize security concerns.

For more tips, and to learn what you should do if you become the victim of a ransomware attack, read the tip sheet at staysafeonline.org. For more on cybersecurity vulnerabilities and trends, visit this Hikvision link.

IMPORTANT! This model requires non-standard firmware. Do Not Install standard firmware (e.g. v.4.1.xx) on this model. Doing so will permanently damage your system. You must use custom firmware v.4.1.25 from the iDS-9632NXI-I8/16S product page.

By downloading and using software and other materials available via this website, you agree to be legally bound by HIKVISION General Terms of Use . If you don’t agree to these terms, you may not download or use any of those materials.

If you are agreeing on behalf of your company, you represent and warrant that you have legal authority to bind your company to the General Terms of Use above. Also you represent and warrant that you are of the legal age of majority in the jurisdiction in which you reside (at least 18 years of age in many countries).