On March 23, 2021, the FBI’s Cyber Division issued a “Flash” warning for several business sectors, including industrial, commercial, manufacturing and construction businesses. The FBI is warning that a strain of ransomware, known as “Mamba,” has been used to weaponize a widely-used encryption software known as DiskCryptor. Mamba works through the open-source DiskCryptor program to encrypt a company’s operating system and demand ransom payment. This new ransomware attack is a threat to any business which employs DiskCryptor, specifically manufacturing and construction companies.
What Should I Do?
If your company utilizes DiskCryptor, the FBI suggests a number of recommendations to mitigate and ward off any ransomware attack. Most of these suggestions fall within the guidelines of proper cyber hygiene, and include (but are not limited to) the following:
- Regularly back up data, as well as copies of data;
- Segment your network;
- Request administrator credentials to install software;