REvil took credit for the incident and claimed to have encrypted more than one million systems.
The group then demanded a ransom of $70m (£50.5m) in Bitcoin for the release of a universal decryption tool that would allow those affected to recover their crucial files.
Hacking experts warn that such attacks are likely to become more frequent, and suggest businesses cannot afford to underestimate the hidden impact the pandemic has had on their vulnerability.
‘Bad cyber-security habits’
A recent survey from the UK and US-based security firm, Tessian, found that 56% of senior IT technicians believe their employees have picked up bad cyber-security habits while working from home. Worryingly, the survey found that many employees agreed with that assessment.
Nearly two in five (39%) admitted that their cyber-security practices at home were less thorough than those practiced in the office, with half admitting that this is a result of feeling less scrutinised by their IT departments now, than prior to Covid.
“One of the main mistakes we’ve seen is moving company data to personal e-mail accounts,” says Henry Trevelyan-Thomas, Tessian’s vice-president of Customer Success.
“When you do that, it’s likely you don’t have any sort of two-factor authentication. This then makes it easier for attackers to exploit that data. If data is leaked, attackers compromise it and it can end up in the wrong hands.”
‘Climate of uncertainty’
Experts also warn of significant growth in the number of coronavirus-themed phishing emails targeting employees, being reported by several companies around the world.
Barracuda Networks said it had seen a 667% increase in malicious phishing emails. Google also reported, at the time, that it was blocking over 100 million phishing emails daily.
“Social engineering and phishing work best when there’s a climate of uncertainty,” Casey Ellis, founder of the security platform, BugCrowd, tells the BBC. “As an attacker in that scenario, I’ve got a base of fear to work off of.”
Mr. Ellis says, for example, one method hackers may use in a post-pandemic world could be an email that lures victims in with the promise of appointments for those who are currently unvaccinated against the virus.
“You’ve got an entire population wanting the pandemic to end. They’re more likely to click on that,” he says. “I think that companies should proactively consider that it’s a really good time to invest in training to work through these kinds of scenarios.”
The consequences of such phishing attacks can often be dire. While global multinationals may be able to recover from substantial losses, cyber-attacks can be catastrophic for both small businesses and individuals.
In November 2020, a Sydney-based hedge fund collapsed after a senior executive clicked on a fraudulent Zoom invitation. The company – Levitas Capital – reportedly lost $8.7m to the cyber-attack and was forced to close.
“The hackers were able to access their systems, sending out multiple fraudulent invoices, and the damage was so great that their largest client pulled out of a planned multi-million-dollar investment,” says Tony Pepper, the co-founder of security firm Egress. “With enough pressure, businesses will fold.”
Now, with many employers demanding workers return to the office at least part-time, experts say there are several steps companies should take to ensure that proper security procedures are put in place to keep both themselves and their employees safe.
New Tech Economy is a series exploring how technological innovation is set to shape the new emerging economic landscape.
‘Prepare to face the ramifications’
Mary Guzman, the founder of Crown Jewel Insurance, is urging firms to carefully screen personal devices that have been used for work on a remote basis during the pandemic.
“Before anyone is allowed to use them, or connect to any corporate network, appropriate analysis, and protective measures should be taken to ensure the malware is not present,” she tells the BBC. “Until that can safely take place, perhaps personal devices should not be allowed back in the office.”
Mrs. Guzman says that employers now have two options to consider; they can re-train their employees so they know how to navigate cybersecurity in a post-pandemic world, or prepare themselves to “face the ramifications are for failing to do so.”
Meanwhile, Tessian’s Henry Trevelyn-Thomas says that the most important thing is that companies urgently take steps to address threats if they haven’t already. He believes the current heightened risk of cyber-attacks is likely to become the new normal.
“This isn’t a short-term phenomenon. It’s a long-term issue… this is the new world that we live in.”