FBI Warning: Ransomware Attackers Don’t Take Holidays

Mintz - Privacy & Cybersecurity Viewpoints

Mintz - Privacy & Cybersecurity Viewpoints

There is a pattern here.   Long holiday weekends make for ransomware attacks and data breaches.   It is well-known that malicious actors take advantage of understaffed IT resources on holidays.  In fact, it’s become such a common occurrence, that the FBI and the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security have issued a joint advisory warning organizations to be on high alert as Labor Day weekend approaches.

Three major attacks in 2021 were conducted over holiday weekends:  Mother’s Day weekend saw the Colonial Pipeline ransomware attack; over Memorial Day weekend, hackers attacked the JBS SA meatpacking operations in the U.S., Canada, and Australia; and in the weekend leading up to the July 4th holiday, software vendor Kaseya suffered a massive attack that allowed malicious actors to launch ransomware attacks against some 1,500 businesses all over the world. 

The FBI/CISA joint advisory urges businesses to be “especially diligent in your network practices” as this weekend approaches.   The advisory also sets out precautionary measures that should be at the top of every list heading into the weekend, including the continuous and active monitoring for ransomware threats over the weekend and identifying IT security personnel to be “on call” in the event of a ransomware attack.   Some other takeaways:

  • Make an offline backup of data.
  • Do not click on suspicious links.
  • If you use potentially risky services – like Remote Desktop Protocol – secure and monitor logs and ensure that security features are enabled and properly configured.
  • Update your operating system and software and scan for vulnerabilities
  • Use strong passwords.
  • Use multi-factor authentication.
  • Secure your user accounts.
  • Have an incident response plan.

Don’t let the hackers have a holiday with your network and data.

[View source.]

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Mintz - Privacy & Cybersecurity Viewpoints | Attorney Advertising

Written by:

Mintz - Privacy & Cybersecurity Viewpoints

Mintz - Privacy & Cybersecurity Viewpoints on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide

This website uses cookies to improve user experience, track anonymous site usage, store authorization tokens and permit sharing on social media networks. By continuing to browse this website you accept the use of cookies. Click here to read more about how we use cookies.