Con la capacit\u00e0 di distruggere il sistema informatico di un'azienda e di sottrarre dati sensibili, i ransomware sono tra le minacce informatiche pi\u00f9 letali in circolazione.
\nIl loro principio di funzionamento \u00e8 molto semplice: Volete riavere i vostri dati? Pagate il riscatto!<\/p>\n
Scoprite come ZADIG Smart pu\u00f2 proteggervi facilmente da questa tipologia di attacchi.<\/p>","protected":false},"featured_media":1764,"template":"","meta":[],"acf":{"stage":"This leading healthcare institution provides a wide range of medical services to its patients. As the hospital's digital infrastructure and reliance on technology continue to grow, ensuring robust cybersecurity measures has become a top priority.\r\n\r\nThis hospital operates in a highly interconnected environment, with an extensive network of medical devices, electronic health records (EHR) systems, and communication platforms.\r\nThe hospital handles a significant volume of personal health information (PHI), making it an attractive target for cyber threats such as ransomware attacks, data breaches, and unauthorized access attempts.","timeline_new":[{"title":"Morning","content":[{"hour":"07:23","description":"A targeted phishing email is sent to an unsuspecting employee. The email contains a link to download a malware that allows the attacker to establish a foothold within the hospital's systems"},{"hour":"08:12","description":"The phishing link is clicked and the malware downloaded. The malware immediately starts scanning the network for relevant devices, such as NAS, Servers and other relevant targets."},{"hour":"09:15","description":"Exploiting a public vulnerability on an outdated software, the malware moves himself on the central NAS. Here, transparently replacing the content of all Office Documents with himself, it starts moving on every connected computer. Since the docs are still readable and editables, no-one notice its presence"}],"gravity":"#FFFFFF"},{"title":"Afternoon","content":[{"hour":"16:18","description":"The propagated malware has established on nearly every computer. An automated backrgound scan starts looking for useful files, such as credentials or patients data."},{"hour":"17:17","description":"The malware starts a coordinated attack on every infected computer, starting a ransomware. Nearly every file on the hospital, ranging from invoices to prescriptions and patients record, is now fully encrypted and unrecoverable."},{"hour":"17:31","description":"The news of the attack is received by the IT department, that starts, immediately, the backup restoring procedure."}],"gravity":"#E7324A"},{"title":"Evening","content":[{"hour":"23:58","description":"Due to a bad backup management strategy, and facing a lasting, complete halt in operations, the hostpital has no other option than pay the ransom."}],"gravity":"#E7324A"}],"consequences":[{"title":"Disruption of Operation","description":"6 hours of data inaccessibility, 43 operations delayed, 721 canceled scheduled medical checks.\r\nLuckly, no deaths."},{"title":"Financial Consequences","description":"Over 1M$ ransom is expensive, even for a big hospital. All this without considering collateral costs from the attack, or legal consequences."},{"title":"Reputational Damage","description":"Hospitals are designed to withstand every type of disaster, however in this case if was knocked down by a simple phishing attack. Safety concerns are obviously rising."}],"the_other_way":"A strong url filter, a battle-tested backup solution and a proprietary Targeted Malware Defense.<\/strong>\r\n\r\nThose are the three main requirements for this hospital, to guard himself from similar attacks.","the_other_way_suggestions":[{"title":"Url Filtering","description":"Stopping many malware from even arriving to your computer is quite simple, no matter how hard it seems.\r\nThe same URL filter you already trust for blocking phishing pages can easily block access to known malware-related domains, even when accessed from unstrusted or uncontrolled software or devices.\r\nIn ZADIG Smart there is no way you can skip this filter, so there is no way you could have downloaded this ransomware...","image":1790},{"title":"Backup Solution","description":"3-2-1 rule is old, very old. With the introduction of the cloud, there is no more a separation between online backup and offsite backup. In addition, many ransomware, today, doesn't show their action till a later date, to prevent backups from being restorable.\r\nOur backup solution is different. It provides live backup, with per-file version history and notification when an abnormal activity is detected. We love creating the rules, not adapting to them!","image":1780},{"title":"Targeted Malware Defense","description":"Breaking Ransomware from the inside. It seems impossible, but we can do it.\r\nWe have collected a wide range of known network fingerprint that in many cases allows us to stop the ransomware from acting without any interaction with the host, just by intercepting his network traffic.\r\nAnd it doesn't matter if the ransomware was installed from an offline USB stick, we can stop it anyway!","image":1788}]},"_links":{"self":[{"href":"https:\/\/smart.zadig.cloud\/it\/wp-json\/wp\/v2\/scenario\/259"}],"collection":[{"href":"https:\/\/smart.zadig.cloud\/it\/wp-json\/wp\/v2\/scenario"}],"about":[{"href":"https:\/\/smart.zadig.cloud\/it\/wp-json\/wp\/v2\/types\/scenario"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/smart.zadig.cloud\/it\/wp-json\/wp\/v2\/media\/1764"}],"wp:attachment":[{"href":"https:\/\/smart.zadig.cloud\/it\/wp-json\/wp\/v2\/media?parent=259"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}