Are You Having A Technology Emergency?

Network Synergy Blog

The SamSam Ransomware Is Absolutely No Joke

The SamSam Ransomware Is Absolutely No Joke

The funny thing about ransomware is that they give them very strange names: Bad Rabbit sounds like the name of a villainous bunny who gets his comeuppance in some type of modern nursery rhyme, not malware that would ravage hundreds of European businesses. Locky seems like the son of Candado de seguridad, a character Medeco would come up with to educate kids on proper physical security. The latest in a long line of funny-named ransomware, SamSam, isn’t a pet name for your pet ferret you perplexingly named Sam, it is one of the worst ransomware strains ever, and it has caught the attention of U.S. Federal law enforcement.

Both the Federal Bureau of Investigation and the Department of Homeland Security have issued alerts for the ransomware, also known as MSIL/Samas.A. The alert was issued on December 3, 2018, and outlines an attack on multiple industries, some with crucial infrastructure. The ransomware has been in the news as of late, as two Iranian nationals, Faramarz Shahi Savandi and Mohammad Mehdi Shah Mansouri were indicted by a U.S. grand jury in New Jersey for ransomware attacks on the Colorado Department of Transportation.

The pair is alleged to have victimized over 200 hospitals, businesses, government agencies, and schools in the U.S. and Canada beginning in 2015; extorting over $6 million over that time. In addition to these charges, the two hackers have now been indicted by the state of Georgia on charges that they were the ones that perpetrated the ransomware systems that crippled Atlanta’s government in March of 2018. By taking almost 3,800 of the City of Atlanta’s computers hostage, prosecutors state that Mansouri and Savandi have cost the city millions of dollars in consultant fees, downtime, and other costs.

What is SamSam?
SamSam is a privately developed ransomware that is being used to target specific companies selected by the developers. This means that it isn’t just a commodity ransomware, it can’t be found on some type of criminal forum on the dark web, and it isn’t sold as a service like many other forms of ransomware. This is a major problem for any organization that is targeted, as none of the typical endpoint defensive strategies work to stop it.

What’s worse, is that that once a SamSam strain is used, and security vendors publish a report, another SamSam strain is developed. It is thought that this development team includes the two hackers implicated in the Colorado DoT crimes, the Atlanta crimes, and hundreds of other attacks over the past three years.

What Can You Do?
Thus far the SamSam ransomware has entered victims’ networks using exploits in web-facing servers. It has been deployed as millions of other pieces of malware as an executable file that is mistakenly unleashed, or via brute force via the Remote Desktop Protocol. So, while you can lock down your RDP, your best bet is to have a dedicated strategy that:

  • Doesn’t allow unauthorized users to have administrative privileges
  • Limits use of Domain Access accounts to administration tasks
  • Doesn’t provide service accounts for important services
  • Restricts access to critical systems

If you are diligent in your organizational cybersecurity practices, you should be able to conduct business as usual without having to worry about ransomware, SamSam or otherwise. If you are interested in knowing more about SamSam and how to stop it, contact the IT professionals at Network Synergy for more information at (203) 261-2201.

Why You Shouldn't Say “Humbug” to Your Security
Small Businesses Using Emerging Technologies to Ge...
 

Comments 35

robin jack on Wednesday, 03 April 2019 09:43

information technology is increasing these days, most jobs are also related to information technology;; JNC Rims

information technology is increasing these days, most jobs are also related to information technology;; [url=https://www.wheelsoutlet.com/collections/jnc-wheels]JNC Rims[/url]
robin jack on Friday, 12 April 2019 12:50

Interesting blog! Is your theme custom made or did you download it from somewhere? A theme like yours with a few simple tweeks would really make my blog jump out. Please let me know where you got your design. With thanks 안전사이트

Interesting blog! Is your theme custom made or did you download it from somewhere? A theme like yours with a few simple tweeks would really make my blog jump out. Please let me know where you got your design. With thanks [url=https://totohonjin.com/]안전사이트[/url]
robin jack on Sunday, 30 May 2021 09:04
[url=https://www.myvintage.uk/]vintage clothing[/url]
robin jack on Saturday, 20 April 2019 12:36

This sort of considering develop change in an individual’s llife, building our Chicago Pounds reduction going on a diet model are a wide actions toward making the fact goal in mind. lose weight seamless commercial flooring

This sort of considering develop change in an individual’s llife, building our Chicago Pounds reduction going on a diet model are a wide actions toward making the fact goal in mind. lose weight [url=https://www.floorchef.com.au/floor-coatings-and-floor-paints-durability/]seamless commercial flooring[/url]
robin jack on Thursday, 01 April 2021 11:54
[url=https://pillenworld.org]Buy Xanax Online[/url]
robin jack on Saturday, 03 July 2021 08:15
[url=http://deutschland-news.org/2021/06/30/on-line-baccarat-activity/]On line Baccarat Activity[/url]
robin jack on Tuesday, 02 July 2019 22:32
[url=http://pkvgames.000webhostapp.com/]Link PKV Games[/url]
robin jack on Saturday, 27 July 2019 18:49
[url=https://www.blue17.co.uk/]buy vintage clothing[/url]
robin jack on Wednesday, 21 August 2019 09:33
[url=https://www.sugarlove.one/2019/08/15/gay-lesbian-sugar-daddy-momma-babe-sites-apps/]lesbian sugar momma[/url]
robin jack on Friday, 05 April 2019 12:19

Much obliged to you for such an elegantly composed article. It's loaded with adroit data and captivating depictions. Your perspective is the best among numerous. anonse erotyczne Kraków

Much obliged to you for such an elegantly composed article. It's loaded with adroit data and captivating depictions. Your perspective is the best among numerous. [url=http://www.roksa.nu/pl/kobiety/krakow.html]anonse erotyczne Kraków[/url]
jassica mejistic on Tuesday, 09 April 2019 15:43

I imagine that much obliged for the valuabe data and bits of knowledge you have so given here. Contest Insurance

I imagine that much obliged for the valuabe data and bits of knowledge you have so given here. [url="http://www.hole-in-won.com"]Contest Insurance[/url]
robin jack on Sunday, 07 April 2019 13:56

Youre so cool! I dont suppose Ive read anything in this way before. So nice to uncover somebody with some original ideas on this subject. realy thank you for beginning this up. this fabulous website are some things that is required on the internet, a person with a bit of originality. helpful task for bringing a new challenge for the net! 안전놀이터

Youre so cool! I dont suppose Ive read anything in this way before. So nice to uncover somebody with some original ideas on this subject. realy thank you for beginning this up. this fabulous website are some things that is required on the internet, a person with a bit of originality. helpful task for bringing a new challenge for the net! [url=https://rush-79.com/]안전놀이터[/url]
robin jack on Saturday, 03 April 2021 08:43
[url=https://www.milf-seeker.us/]Milf-seeker[/url]
robin jack on Tuesday, 09 April 2019 11:17

I’m impressed, I have to admit. Genuinely rarely can i encounter a blog that’s both educative and entertaining, and without a doubt, you’ve hit the nail for the head. Your notion is outstanding; the thing is something inadequate folks are speaking intelligently about. My business is very happy that we found this within my seek out some thing in regards to this. 바다이야기 모바일

I’m impressed, I have to admit. Genuinely rarely can i encounter a blog that’s both educative and entertaining, and without a doubt, you’ve hit the nail for the head. Your notion is outstanding; the thing is something inadequate folks are speaking intelligently about. My business is very happy that we found this within my seek out some thing in regards to this. [url=https://bgx77.com/]바다이야기 모바일[/url]
robin jack on Saturday, 26 December 2020 15:42

sailing charters bvi It’s an superb post and that i completely accept that which you said. I’m attempting to set up the Rss feed however i ‘m definitely not really pc well written. Might somebody let me know how allow me to set up the Feed so I get informed of any brand new post? You need to explain it within an straightforward method as I am obtaining old.

[url=https://yachtfleet.com/chartering-a-yacht/types-of-charter-yachts/monohull/]sailing charters bvi[/url] It’s an superb post and that i completely accept that which you said. I’m attempting to set up the Rss feed however i ‘m definitely not really pc well written. Might somebody let me know how allow me to set up the Feed so I get informed of any brand new post? You need to explain it within an straightforward method as I am obtaining old.
robin jack on Tuesday, 29 December 2020 15:11

Hi blog owner, hope all is well. You mind sharing the name of your current theme? I would appreciate it much. Have a blessed afternoon. Check out mine AV Buy DMT online

Hi blog owner, hope all is well. You mind sharing the name of your current theme? I would appreciate it much. Have a blessed afternoon. Check out mine AV [url="https://dailymedicalshop.com/"]Buy DMT online[/url]
robin jack on Monday, 05 April 2021 11:15

My spouse and I absolutely love your blog and find nearly all of your post’s to be precisely what I’m looking for. Would you offer guest writers to write content for you? I wouldn’t mind producing a post or elaborating on a few of the subjects you write about here. Again, awesome site! kids care packages Flu care packages

My spouse and I absolutely love your blog and find nearly all of your post’s to be precisely what I’m looking for. Would you offer guest writers to write content for you? I wouldn’t mind producing a post or elaborating on a few of the subjects you write about here. Again, awesome site! [url=https://www.reasonablegifts.com/gift-baskets-care-packages/]kids care packages Flu care packages[/url]
robin jack on Sunday, 10 January 2021 18:15
[url=https://www.crunchbase.com/person/ross-levinsohn]Ross Levinsohn profile[/url]
robin jack on Sunday, 10 January 2021 18:15
[url=https://www.wikiwand.com/en/Ross_Levinsohn]Ross Levinsohn[/url]
robin jack on Sunday, 21 March 2021 12:11
[url=http://cana420gass.com/]Buy marijuana online UK[/url]
Guest
Already Registered? Login Here
Guest
Friday, January 28 2022

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.netsynergy.com/

Account Login

Contact Us

Learn more about what Network Synergy can do for your business.

Call Us Today
Call us today
(203) 261-2201

126 Monroe Turnpike
Trumbull, Connecticut 06611

Best IT Managed Service Providers in Bridgeport

Latest Blog

It’s quite possible for employees to overwork themselves, even in a remote environment. Let’s take a look at some ways that you can minimize remote overwork for your employees, especially as the boundaries typically set in place by the morn...
TOP