Carnival Cruises hitted by a Ransomware attack

Image Source : Andy Newman/Carnival Cruise Line

These days, ransomware attacks on high profile companies are common. In the previous weeks, some big companies like Travel firm CWT, Canon and Garmin have been hit by ransomware attacks. 

Cruise operator Carnival Corp is the latest victim of this trend. Chief financial officer, David Bernstein, confirmed on this Monday that the company had suffered from a ransomware attack and in this attack some files had been stolen.

He further said that on Aug. 15, the company detected a ransomware attack. With this unauthorized access, they have downloaded certain of our data files. 

Once security teams of Carnival discovered the attack, they called Police for investigation. Police have implemented a series of containment and remediation measures to address this situation. 

In the initial investigation, it is discovered that the attack was contained to one brand’s system. 

But Bernstein said that “there can be no assurance that other IT systems of the other company’s brands will not be affected.”

Ransomware rising as a service

Image by Pete Linforth from Pixabay

Senior director of Security strategy at Exabeams, Richard Cassidy, said, “According to a recent report, 82% of security operation centers are confident in their ability to detect cyberthreats, but 40% also report staff shortages and only 22% of frontline workers tracking dwell time.   

As the knowledge of Cyber criminals and ransomware-as-a-service are rising, we can expect to see the increase in ransomware attacks continue throughout 2020. In fact, some experts predict that by the end of 2021, ransomware will hit a business in every 11 seconds.

Terence Jackson repeats Cassidy’s urgent concern about the importance of ransomware-as-a-service. Terence Jackson is a Chief Information Security Officer at Thycotic. Jackson said that he has seen the development of ransomware from something that required a fair amount of coding to a more simplified as-a-service offering.

Jackson noted that Exploit kits can be bought from online just like other custom software, leading a rise in the number of attacks.