Know Your Threats: Birele File Encryption Malware

Gunn2Matt Gunn, Managing Editor | TechComply

A newly identified threat known as the Birele file encryption malware could cause a big problem for infected workstations.

We recently became aware of the threat, a ransomware that infects a machine and encrypts personal files and data, including images and documents. The Birele malware can make recovering lost files and data virtually impossible, says Safe Systems Noc engineer Kai Xu. Even a system restore or malware removal won’t necessarily bring an infected machine back to life — ultimately the files will still be encrypted. Files encrypted by this type of attack can only be accessed via password. And the password exists on the server of whomever infected the machine in the first place. It’s not stored locally on the machine. Of course, in some cases, the attacker will offer to provide the password — for a cost.

Safe Systems has not encountered this type of malware on any of the more than 26,000 devices it manages for banks and credit unions. At this time we don’t know whether it encrypts data on mapped drives, or is simply limited to individual machines. The Birele file encryption malware may be a variation of something that was first identified more than a year ago as Trojan-Ransom.Win32.Rector. Kaspersky has additional details on that particular attack.

When it comes to security, Safe Systems recommends financial institutions take a systematic approach that addresses three key areas: system hardening, security monitoring and validation. Systems hardening includes measures such as automated patch management, integrated antivirus and automated security baseline measurements. Monitoring includes firewall monitoring, network intrusion prevention services, server intrusion prevention and vulnerability scanning. Validation means being able to provide comprehensive reports, regular assessments and exam preparedness to ensure banks are up to snuff with regulators.

One Response to “Know Your Threats: Birele File Encryption Malware”

Leave a Reply

 

Client Testimonials

“I can say that Safe Systems is the very best vendor that I deal with on a day to day basis- from the top down their focus has always been on customer service and support and making sure that we as bankers are able to do our jobs without letting technology get in the way.”

Leesa Anderson, CTO
State Bank of Cochran

group of people

“I’ve been a very satisfied customer of Safe Systems for over 13 years. I use their NetComply solution to keep on top of my patching, antivirus, as well as all the reporting that I have to do both internally and for auditors and examiners.”

Leesa Anderson, CTO
State Bank of Cochran

group of people

“The thing I get most out of Safe Systems is peace of mind- I don’t lose sleep at night worrying about our network. I don’t really sweat the examinations as much as I used to and examiners have been very pleased with our IT programs and IT compliance programs.”

Richard Jefferson, CFO
Coastal Bank and Trust

group of people

“We rely heavily on Safe Systems and I believe they are a key reason that we’ve been able to be successful in IT and compliance. They have helped our bank tremendously in growth, security, efficiency, and in helping us to implement the right technology tailored to community banks.”

Loren Long, CTO
Macon Bank

group of people

“Safe Systems has evolved from being just an IT vendor for us to being what I call a strategic partner. We are a better bank and a better business as a result of using Safe Systems.”

Charles Schwabe, EVP Chief Administrative Officer
Howard Bank

group of people

“Safe Systems allows us to be compliant with a wide variety of regulations surrounding information security. I highly recommend Safe Systems to other banks.”

Wayne Byers, CFO
Resurgens Bank

group of people

“The biggest thing thing that sets Safe System apart from other IT Consulting firms is their people- they are very knowledgable, very friendly, easy to talk to, and always willing to teach you.”

Jamie Roller, AVP IT Manager
Keyworth Bank

group of people

“Safe Systems helps us save time and money by freeing up our back office staff so that we can more efficiently support the front line with new membership that has come our way.”

Sherry Presley, EVP of Operations
Coosa Valley Credit Union

group of people

“Safe Systems has helped our bank save time and money by taking a lot of the day to day load off our shoulders as far as AVG, Antivirus and patching of all of our workstations and servers.”

Jamie Roller, AVP IT Manager
Keyworth Bank

group of people

“Safe Systems is clearly knowledgeable and understands technology, but the fact that they also bring together their knowledge of financial institutions is really what makes a difference.”

Charles Schwabe, EVP Chief Administrative Officer
Howard Bank

group of people

“Safe Systems helps us free up our time in that we don’t have to worry about our systems being up and running and there are a lot of talented folks that are ready, willing and able to help us out. I highly recommend Safe Systems to other banks.”

Wayne Byers, CFO
Resurgens Bank

group of people

“Safe Systems has superior products and excellent service. We have a great partnership with Safe Systems. I would recommend them to anyone in need of any of their products or services.”

Nicole Rinehart, VP/Chief Operations Officer
American Pride Bank

group of people