Summary: A new ransomware variant named “Ghost” has surfaced, posing a significant threat since its appearance in 2021, targeting critical infrastructure across over 70 countries. Operating swiftly and exploiting vulnerabilities, the financially motivated group behind Ghost has escalated attacks on healthcare, financial institutions, and more. Organizations are urged to adopt comprehensive cybersecurity measures to defend against this pervasive threat.
Affected: Organizations across various sectors globally, including healthcare, financial services, government agencies, and manufacturing
Keypoints :
- Ghost ransomware, attributed to a financially motivated group in China, employs rapid encryption attacks to compromise systems in under 24 hours.
- The campaign exploits unpatched vulnerabilities, focusing on VPNs, web servers, and email servers to gain persistent access.
- Defense strategies include regular system updates, implementing multi-factor authentication (MFA), network segmentation, and robust incident response plans.
- International law enforcement efforts are ongoing, though prosecuting Ghost operators is complicated by their location in China.
Source: https://gbhackers.com/ghost-ransomware-targets-organizations/