Uppgift: MSB varnade kyrkan för brister innan attacken
En dryg vecka innan cyberattacken mot Svenska kyrkans IT-system varnade Myndigheten för samhällsskydd och beredskap (MSB) för säkerhetsbrister, enligt SVT Nyheters uppgifter.
Enligt MSB kunde bristen åtgärdas genom en uppdatering, men SVT:s källor uppger att det inte gjordes förrän efter att de utländska hackarna lamslagit systemet med ett så kallat utpressningsvirus.
– Vi har haft en beredskap men det är uppenbart att den inte varit tillräcklig, säger Svenska kyrkans kommunikationschef Pia Dahlén.
Attacken skedde den 23 november och IT-systemet är fortfarande lamslaget.
bakgrund
Utpressningsvirus/Ransomware
Wikipedia (en)
Ransomware is a type of cryptovirological malware that permanently block access to the victim's personal data unless a ransom is paid. While some simple ransomware may lock the system without damaging any files, more advanced malware uses a technique called cryptoviral extortion. It encrypts the victim's files, making them inaccessible, and demands a ransom payment to decrypt them. In a properly implemented cryptoviral extortion attack, recovering the files without the decryption key is an intractable problem, and difficult to trace digital currencies such as paysafecard or Bitcoin and other cryptocurrencies are used for the ransoms, making tracing and prosecuting the perpetrators difficult.
Ransomware attacks are typically carried out using a Trojan disguised as a legitimate file that the user is tricked into downloading or opening when it arrives as an email attachment. However, one high-profile example, the WannaCry worm, traveled automatically between computers without user interaction.Starting as early as 1989 with the first documented ransomware known as the AIDS trojan, the use of ransomware scams has grown internationally. There were 181.5 million ransomware attacks in the first six months of 2018. This record marks a 229% increase over this same time frame in 2017. In June 2014, vendor McAfee released data showing that it had collected more than double the number of ransomware samples that quarter than it had in the same quarter of the previous year. CryptoLocker was particularly successful, procuring an estimated US$3 million before it was taken down by authorities, and CryptoWall was estimated by the US Federal Bureau of Investigation (FBI) to have accrued over US$18 million by June 2015. In 2020, the IC3 received 2,474 complaints identified as ransomware with adjusted losses of over $29.1 million. The losses could be more than that, according to the FBI. Globally, according to Statistica, there were about 623 million ransomware attacks in 2021, and 493 million in 2022.
Omni är politiskt obundna och oberoende. Vi strävar efter att ge fler perspektiv på nyheterna. Har du frågor eller synpunkter kring vår rapportering? Kontakta redaktionen
