A recent ransomware attack on a 158-year-old Northamptonshire transport company, KNP, highlights the devastating consequences of weak passwords in the face of cyber threats. The hackers, believed to be part of the Akira gang, gained entry into the system by guessing an employee’s password, resulting in the encryption of data and shutdown of internal systems.
The attack, which was facilitated by a single weak link, led to significant financial losses and ultimately forced KNP to cease operations, leaving 700 people without jobs. The National Cyber Security Centre (NCSC) warns that such attacks are becoming increasingly common, with an estimated 19,000 ransomware attacks on UK businesses last year.
The NCSC’s CEO, Richard Horne, emphasizes the need for companies to prioritize cyber-security and improve their systems to prevent such attacks. “We’ve seen a wave of criminal cyber-attacks over the last few years,” he says. “Companies need to take steps to secure their systems, to secure their businesses.”
However, experts note that prevention may not be enough, as hackers are becoming increasingly sophisticated and finding new ways to exploit vulnerabilities. The National Crime Agency (NCA) has seen a significant increase in ransomware attacks since its team took over the unit two years ago, with incidents almost doubling to about 35-40 a week.
The NCA’s Director General of Threats, James Babbage, attributes the rise in hacking to the growing appeal of cybercrime, particularly among younger generations who see it as a lucrative career path. “They’re recognising that their sort of skills can be used to con help desks and the like into getting them access into companies.”
As the threat of ransomware continues to grow, the NCSC is urging companies to take action to protect themselves. The government has proposed banning public bodies from paying ransoms and may require private companies to report attacks and obtain permission to pay. In the meantime, experts such as Paul Abbott of KNP are emphasizing the importance of up-to-date IT protection and the need for more robust cyber-security measures to prevent such devastating attacks.
With the threat of ransomware continuing to escalate, it is essential for businesses to prioritize their cyber-security and take proactive steps to protect themselves from these increasingly sophisticated threats.
Source: https://www.bbc.com/news/articles/cx2gx28815wo