User Account

All Pages

What is a profile of a threat actor using this ransomware

Assignment Help Other Subject
Reference no: EM132659657

Question: ABC Services Ltd (‘ABC') is a global financial services provider. To comply with local regulatory frameworks, they operate offices around the world, most of which have a legal requirement to store their Know Your Customer (‘KYC') information in on-site servers.

One of these servers, located in Lebanon, was recently infected with a variation of malware called ransomware, which has prevented ABC from accessing their local KYC data by encrypting it with a secret key. The threat actor behind the attack left behind a file on the server that demands a ransom for the return/decryption of this data.

Once they became aware of this incident, they instructed their local IT team to bring the server offline to mitigate the risk of the malware spreading across their network. They also activated their business continuity plans to minimize disruption to their core business, which involved recreating the servers from backups taken over a month ago.

ABC approached you to help them answer several questions, specifically:

1. What type of ransomware was used?

2. How is the ransomware typically delivered?

3. What is the likely profile of the original developers of the ransomware?

4. What is the likely profile of a threat actor using this ransomware?

5. Are there any known methods of decrypting the data encrypted by the ransomware?

6. What is the likelihood that the ransomware has exfiltrated data?

7. What additional information would you require to investigate whether the threat actor has exfiltrated KYC data?

They have provided you with a sample of the ransomware and asked you to carry out a preliminary investigation. The sample they provided contains the following key information:

Info.exe (the ‘executable') - this is the file name of the ransomware that was used to encrypt ABC's data.

[email protected] and [email protected] - these email addresses are provided in the ransom note left as a text file on the client's systems, as a means of contacting the threat actor.

.no_more_ransom - this file name suffix is present on files encrypted by the ransomware that affected your systems and data.

Your Task: Please research and prepare a written summary of findings to answer ABC's questions in an MS Word report. While you will certainly have to make assumptions about the situation, we will expect you to be able to explain and answer above questions at a high level about some of the key technical concepts involved in your findings.

Examples of topics you may consider including in the report are:

RDP, asymmetric encryption, brute forcing, and phishing. Please be sure to capture the key findings from your research into the malware as well as the potential implications of this incident for ABC.

Reference no: EM132659657

Questions Cloud

Describe the importance of agriculture from economic : Describe the importance of agriculture from economic and environmental perspectives
What is per-share value of van buren to harrison corporation : What is the per-share value of Van Buren to Harrison Corporation? Merger Valuation Harrison Corporation is interested in acquiring Van Buren Corporation.
Describe the availability heuristic : 1. What is a heuristic? 2. Describe the availability heuristic
Estimate the production function using linear regression : Estimate the production function using linear regression (convert the Cobb Douglas function into a form that can be estimated with linear regression.
What is a profile of a threat actor using this ransomware : ABC Services Ltd (‘ABC') is a global financial services provider. To comply with local regulatory frameworks, they operate offices around the world, most.
Identify the tax issues relevant to Simon : The holding period for the stock will short term. Identify the tax issues relevant to Simon in deciding whether to give the stock or the sale proceeds to Fred
Make sense to terminate the project after two rather three : If you decide to terminate the project in year two (2) what would be the NPV of the project? Make sense to terminate the project after two rather three year
Identify the relevant tax issues Ron faces : Ron sold his sailboat for a $5,000 loss in the current year because he was diagnosed with skin cancer. Identify the relevant tax issues Ron faces
Compare and contrast modernization theory : Compare and contrast modernization theory, dependency theory, and globalization theory. Which do you think is more useful for explaining global inequality?

Reviews

Write a Review

Other Subject Questions & Answers

  Cross-cultural opportunities and conflicts in canada

Short Paper on Cross-cultural Opportunities and Conflicts in Canada.

  Sociology theory questions

Sociology are very fundamental in nature. Role strain and role constraint speak about the duties and responsibilities of the roles of people in society or in a group. A short theory about Darwin and Moths is also answered.

  A book review on unfaithful angels

This review will help the reader understand the social work profession through different concepts giving the glimpse of why the social work profession might have drifted away from its original purpose of serving the poor.

  Disorder paper: schizophrenia

Schizophrenia does not really have just one single cause. It is a possibility that this disorder could be inherited but not all doctors are sure.

  Individual assignment: two models handout and rubric

Individual Assignment : Two Models Handout and Rubric,    This paper will allow you to understand and evaluate two vastly different organizational models and to effectively communicate their differences.

  Developing strategic intent for toyota

The following report includes the description about the organization, its strategies, industry analysis in which it operates and its position in the industry.

  Gasoline powered passenger vehicles

In this study, we examine how gasoline price volatility and income of the consumers impacts consumer's demand for gasoline.

  An aspect of poverty in canada

Economics thesis undergrad 4th year paper to write. it should be about 22 pages in length, literature review, economic analysis and then data or cost benefit analysis.

  Ngn customer satisfaction qos indicator for 3g services

The paper aims to highlight the global trends in countries and regions where 3G has already been introduced and propose an implementation plan to the telecom operators of developing countries.

  Prepare a power point presentation

Prepare the power point presentation for the case: Santa Fe Independent School District

  Information literacy is important in this environment

Information literacy is critically important in this contemporary environment

  Associative property of multiplication

Write a definition for associative property of multiplication.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +91-977-207-8620

Phone: +91-977-207-8620

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd