Ransomware attack launched in the Netherlands: what happened?

In the last few days following the ransomware attack launched on the Lazio Region , news has begun to circulate on the national security of the Netherlands: but what is the situation really? In reality, the alarm raised by some organizations dealing with cybersecurity dates back to a few weeks ago and was brought to the fore only following the heavy blow inflicted in Italy. The situation is serious almost everywhere and it got worse after the spread of ransomware against Kaseya, a well-known US company that offers IT services to companies .

On that occasion, millions of locations around the world were compromised by what was called the greatest ransomware attack in history. The determining cause for such a devastating impact is the chain of interconnected systems . Since Kaseya had many subsidiaries and each of these customers it was easy to reach a very large number of machines.

The consequences of the ransomware attack in the Netherlands

Even the Netherlands in this tough campaign was a victim, albeit with not exactly clear data. In fact, in these situations it is really very complex to be able to correctly trace the lines of the attack and understand how many companies were impacted at the beginning or as a result.

The local news, however, took the opportunity to shed light on a situation that has been going on for a long time and is only destined to grow if adequate countermeasures are not taken. However, what happened in Italy is nothing more than an oversizing of the news as, among other things, it happened after the attack on the Lazio region. Headlines like "National Security Compromised" or "Holland Under Hacking" are more troubling than the actual situation which is difficult anywhere in the world anyway.

Netherlands ransomware attack
The Dutch situation is only one of many extremely compromised, in a global context that is of extreme concern for the spread of ransomware.

What are the reasons for the insecurity

Unfortunately, behind the widespread prevalence of ransomware attacks is a vast lack of preparedness for the computing world and a lack of resources dedicated to protection. In fact, it often happens that companies prefer to invest their budget on strategic resources for the business , seeing the security of IT systems only as an additional cost without real benefits. Therefore, a big problem is the underestimation of cyber risk which leads us to question the possible causes only following attacks of this magnitude.

Alongside the lack of attention to the issue of cybersecurity, there is an even more scarce awareness of employees. Tired of a thousand procedures that they are required to perform every day, they are often unwitting victims of the traps of the web. It is no coincidence that among experts in the sector it is said that the weak link in security is what lies between the chair and the keyboard, that is, the human being . Due to our physiology, we tend to be emotional and get carried away right where we shouldn't go.

The REvil

REvil is the name of the ransomware that has claimed victims all over the world. A few days after the attack, the servers of the cybercriminal group disappeared from the web , leaving many of the infected companies without decryption keys. The event had left quite astonished and had opened wide glimmers of thought on the reasons behind this choice.

The most serious fact that is occurring more and more is the payment of ransoms by companies in order to be able to continue their business . However, this choice could be one of the reasons behind the increase in attacks by means of ransomware . An easy way with which to make important gains.

Netherlands ransomware attack
The increasingly widespread attacks cause concern so much that even politics has begun to take the matter of cybersecurity seriously.

Meanwhile in Italy, after the heavy attack on the Lazio region, the Prime Minister Mario Draghi signed the Decree-law for the activation of the National Cybersecurity Agency very quickly . A few days ago, Professor Roberto Baldoni was appointed director, with the hope of prompt intervention on an extremely complex and difficult situation. In our country, especially in the public administration, the systems are old and there are very few resources for updating and maintenance. We hope that this event is a warning to stimulate attention on the issues of security and protection of strategic infrastructures.

The article Launched a ransomware attack in the Netherlands: what happened? comes from Tech CuE | Close-up Engineering .