New Laws of Commercial Registration and Trade Names take effect on Thursday    Civil Defense warns of heavy rains across Saudi Arabia until Monday    Saudi Exchange suspends trading of seven companies over financial disclosure delays    New fleet of 76 public transport buses starts operation in Jeddah on Tuesday Environmentally friendly electric buses introduced for first time    Foreign investors are allowed to engage in real estate business outside Makkah and Madinah Commercial speculation should not be the purpose of real estate transaction    EU preparing 'further countermeasures' to protect its interest, von der Leyen says    Tesla sales plunge after backlash against Elon Musk    Musk's X is suing India, as Tesla and Starlink plan entry    Israel announces expansion of military operation in Gaza to seize 'large areas' of land    US cancels visa of Nobel Peace Prize winner Oscar Arias    Danish prime minister refutes US claim on Greenland on visit to the Arctic territory    Aubameyang fires Al Qadsiah into King's Cup final with stoppage-time winner over Al Raed    Cristiano Ronaldo joins Fatal Fury: City of the Wolves    Saudi Arabia welcomes trilateral border treaty between Tajikistan, Kyrgyzstan, and Uzbekistan    Swedish table tennis legend Jörgen Persson appointed head coach of Saudi national team    Danilo Pereira fires Al Ittihad into King's Cup final with dramatic stoppage-time double    Screen time in bed linked to insomnia, study finds    Mexico bans junk food in schools to fight childhood obesity epidemic    Sweet sales surge ahead of Eid as Saudi chocolate imports top 123 million kg in 2024    Saudi creatives shine at Jeddah's Fawanees Nights with art, fashion, and storytelling    Bollywood actress vindicated over boyfriend's death after media hounding    Grand Mufti rules against posting prayers and preaching in mosques on social media    King Salman prays for peace and stability for Palestinians in Ramadan message King reaffirms Saudi Arabia's commitment to serving the Two Holy Mosques and pilgrims    Bollywood star Saif Ali Khan 'out of danger' after attack at home in Mumbai    Exotic Taif Roses Simulation Performed at Taif Rose Festival    Asian shares mixed Tuesday    Weather Forecast for Tuesday    Saudi Tourism Authority Participates in Arabian Travel Market Exhibition in Dubai    Minister of Industry Announces 50 Investment Opportunities Worth over SAR 96 Billion in Machinery, Equipment Sector    HRH Crown Prince Offers Condolences to Crown Prince of Kuwait on Death of Sheikh Fawaz Salman Abdullah Al-Ali Al-Malek Al-Sabah    HRH Crown Prince Congratulates Santiago Peña on Winning Presidential Election in Paraguay    SDAIA Launches 1st Phase of 'Elevate Program' to Train 1,000 Women on Data, AI    41 Saudi Citizens and 171 Others from Brotherly and Friendly Countries Arrive in Saudi Arabia from Sudan    Saudi Arabia Hosts 1st Meeting of Arab Authorities Controlling Medicines    General Directorate of Narcotics Control Foils Attempt to Smuggle over 5 Million Amphetamine Pills    NAVI Javelins Crowned as Champions of Women's Counter-Strike: Global Offensive (CS:GO) Competitions    Saudi Karate Team Wins Four Medals in World Youth League Championship    Third Edition of FIFA Forward Program Kicks off in Riyadh    Evacuated from Sudan, 187 Nationals from Several Countries Arrive in Jeddah    SPA Documents Thajjud Prayer at Prophet's Mosque in Madinah    SFDA Recommends to Test Blood Sugar at Home Two or Three Hours after Meals    SFDA Offers Various Recommendations for Safe Food Frying    SFDA Provides Five Tips for Using Home Blood Pressure Monitor    SFDA: Instant Soup Contains Large Amounts of Salt    Mawani: New shipping service to connect Jubail Commercial Port to 11 global ports    Custodian of the Two Holy Mosques Delivers Speech to Pilgrims, Citizens, Residents and Muslims around the World    Sheikh Al-Issa in Arafah's Sermon: Allaah Blessed You by Making It Easy for You to Carry out This Obligation. Thus, Ensure Following the Guidance of Your Prophet    Custodian of the Two Holy Mosques addresses citizens and all Muslims on the occasion of the Holy month of Ramadan    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Cyber attacks said to be initiated by email
Layan Damanhouri Published in The Saudi Gazette on 25 - 01 - 2017

JEDDAH – Industry sources revealed that some 5 to 10 public and private organizations have been impacted by the second Shamoon virus attack, a aggressive disk-wiping malware, on Monday.
Research shows the attack took place at 4 a.m.
While it's not confirmed that this is the same variant of the Shamoon malware which attacked Saudi Arabian organizations in the past, the infection patterns, file creation and lateral movement is identical to the pattern documented by Palo Alto Networks in those previous instances, sources said.
The initial infection came through an email attachment.
The malware infected systems, possibly via stolen or weak credentials, and then stayed dormant for some time until it was capable of causing maximum damage.
The virus follows the same destructive pattern as in the past where machines have their partition tables deleted and only a complete system restore will be able to recover the IT environment.
"Email has always been a major infection vector and organizations need to implement technologies and also enforce policies that safeguard against malicious email attachments," said Nicolai Solling, CTO at Help AG, a cyber security services, solutions and consultancy provider.
"Similar to the attack that occurred in December 2016, this malware lay dormant and executed at 4 a.m., when most in-house IT teams aren't at work. This highlights the need for 24x7 monitoring of security events so as to react to and tackle them as soon as possible thereby mitigating their impact," he added.
"A successful defense is to utilize solutions such as OPSWAT Metadefender which secures emails by utilizing multiple malware inspection engines and reconstructs data without potential weaponized document features," he explained. "As an example, it could remove macro's, scripts or calls to external applications from inside an Office document."
Warnings circulated on social media since Monday about banks, ministries and private entities under cyber attack.
However, software company Symantec revealed a new cyberespionage group called Greenbug that targets Middle East organizations to have possible links to Shamoon during investigations.
Symantec further noted that investigations reveal a possibility Greenbug could be responsible for getting Shamoon the stolen credentials enabling the attack.
According to research, the group uses a custom information-stealing remote access Trojan (RAT) known as Trojan.Ismdoor as well as a selection of hacking tools to steal sensitive credentials from compromised organizations.
Links were not fully confirmed, however.
As threats arise, CEOs and organization leaders in the region will revamp and boost their cyber security strategies, according to Charles Habak head of financial services at Booz Allen Hamilton who predicted digital bank trends for 2017.
"Financial institutions that are ahead of the curve and effectively embed cyber security into their risk frameworks will invest significantly in building the right capabilities and governance structures," he said.
"These, in turn, will equip them to preemptively address incidents that could potentially damage their operations as well as reputation."
The last Shamoon attack took place last November and the major attack before that took place in Saudi Arabia's energy sector in 2012.
One expert as cited on Alekhbariya local news network said such cyber attacks could cost the Kingdom SR2.8 billion in losses.

Clic here to read the story from its source.