REvil Ransomware: Comment from Infoblox
July 2021 by Craig Sanderson, VP of Product Management, Infoblox
A comment from Infoblox in connection with the REvil Ransomware attack that infected at least hundreds and likely thousands of businesses worldwide with ransomware.
“The Kaseya attack, which paralyzed companies such as the supermarket chain Coop in Sweden, shows that anyone can be targeted. Instead of being blackmailed by cyber criminals, organizations need to proactively prepare defenses to mitigate against paying a painful ransom and reputation loss among customers and partners. To prevent such damages, companies should make their security strategies as proactive as possible and keep back-ups in case a system reset is needed. Because attackers commonly use DNS for communicating with malicious domains, DNS security can help block those communications while providing indispensable visibility into the activity of impacted machines, helping customers understand the scope of a breach for quick response.”