Ransomware – Hope for this Growing Problem

Ransomware – Hope for this Growing Problem


Ransomware is a growing problem for organizations of all sizes. Earlier this year, the FBI projected that in 2016, ransomware victims would pay $1Billion dollars to recover their data. For many cyber thieves, ransomware has become the preferred crime, surpassing even credit card theft.

One obvious reason for the shift to ransomware is the rapid return on investment. Holding a data set hostage and extorting payment is a much faster and easier way to generate income than spending the added time to infiltrate a network and harvesting specific types of data. Also, Ransomware as a Service (RaaS), has made it easier for crooks to access the needed software and infrastructure.

Further fueling the problem is that many organizations are paying the extortionists, which not only encourages others to follow suit, but the early success funds the development of more ransomware.

Regrettably, legacy signature and behavior-based anti-malware tools are not effective at detecting ransomware. There are over 100 different families of ransomware in the wild today, and each variant is continuously evolving. Since the malicious code is constantly changing, security systems that rely on signatures to identify ransomware will not be able to keep up.  

Furthermore, most ransomware doesn’t compromise the operating system — it just encrypts data. Traditional behavior-based malware detection products that look for malicious changes to the OS will fail to identify ransomware.

Fortunately, not all ransomware detection is created equally. Lastline’s Deep Content Inspection technology is uniquely able to evaluate code for malicious structures and capabilities, as well as monitor behaviors and signatures. This means that Lastline can monitor and detect ransomware that other products can’t. Because Lastline can view each and every instruction that occurs within the CPU itself, it delivers much greater visibility than other advanced malware detection tools, including first-generation sandboxes, next-gen firewalls, and next-gen IPS.

Click here to learn more about Lastline’s solution to prevent ransomware from attacking your company.