Lockergoga took down Hydro–ransomware used in targeted attacks on business

Aside | Posted on by

Lockergoga took down Hydro–ransomware used in targeted attacks on business

Incident representation
Hydro started the best incident representation response plan I’ve ever seen — they had a temporary website up, they told the press, they told their staff, they apparently didn’t hide any details — they even had daily webcasts with the most senior staff talking through what was happening, and answering questions. Security controls and industry
Several weeks ago, I highlighted on Twitter that despite a high profile attack on Altran in January (34,000 staff members) using LockerGoga, a vast majority of endpoint security anti-malware products were failing to detect it. Essentially, Norsk Hydro’s anti-malware solution did not have detection for the threat because not all the industry players were paying attention to a cartoon porg on Twitter (me) and a random person who I think doesn’t work in the industry (MalwareHunterTeam).

Source: doublepulsar.com