On 2021-09-02 13:56, RabidHussar wrote:
> On 2021-09-02 3:36 p.m., Lynn McGuire wrote:
>> "Introducing the Ransomware Economy"
>>
https://www.backblaze.com/blog/ransomware-economy/
>>
>> "Ransomware continues to proliferate for a simple reason—it’s
>> profitable. And it’s profitable not just for the ransomware developers
>> themselves—they’re just one part of the equation—but for a whole
>> ecosystem of players who make up the ransomware economy. To understand
>> the threats to small and medium-sized businesses (SMBs) and
>> organizations today, it’s important to understand the scope and scale
>> of what you’re up against.
>> Today, we’re digging into how the ransomware economy operates,
>> including the broader ecosystem and the players involved, emerging
>> threats to SMBs, and the overall financial footprint of ransomware
>> worldwide."
>>
>> There are hundreds of groups doing this ! The FBI is investigating
>> the top 100 and appears to be swamped.
>
> I'd go a little further and say that the malware threat, in general, is
> a pretty serious one in Windows.
Yes. not so much in Linux or BSD, having a smaller footprint AND better
security (unless set up by a MORON)
If possible ONLY run your windows machines with "guest" level
permissions, and use the admin-level ONLY when needed. UAP actually
works to help you when you set it up this way. And if a non-admin
account is FUBAR'd by malware, and you have backups, it's less likely to
have messed up EVERYTHING and you should be able to get your data back
(within reason of course) and clean off the malware.
> A lot of people assume that Windows Defender is enough to protect them,
I agree it only uses a signature file, has false hits, gets in the way
of software development (by checking what you just built all of the
time), and only CHASES the problem.
> but I notice that a lot of the malware out there circumvents Defender
> without effort and manages to find its way onto a user's computer
> without requiring user intervention at all.
For a while now, yeah.
I like to practice what I call "safe surfing" and do regular backups.
* If possible, do NOT 'surf the web' with a windows machine
* *NEVER* *READ* or *PREVIEW* *E-MAIL* (or USENET especially) as *HTML*
* do NOT use "Outlook" to read e-mail (or USENET if it can)
* Do NOT use a Microsoft browser to surf 'teh intarwebs'
* NEVER RUN ANYTHING you download or that is attached to an e-mail using
a PRIVILEGED (admin access) LOGON unless the source is VERY TRUSTWORTHY
* NEVER back things up to a share that can be written to by the login
you use for surfing 'teh intarwebs' OR reading e-mail
* ALWAYS USE a NON-admin login whenever possible
And so on
--
(aka 'Bombastic Bob' in case you wondered)
'Feeling with my fingers, and thinking with my brain' - me
'your story is so touching, but it sounds just like a lie'
"Straighten up and fly right"