The Paris cyber crime brigade has just arrested a 22-year-old hacker for multiplying attacks against SMEs (small and medium-sized enterprises). according to the information received fromEuropean 1, the investigation had been open since last April, accusing the engineering school student of extortion and criminal conspiracy as part of an organized gang. With similar facts already known by the police, the young man has been offering his services in international hacker forums since 2019.
The principle is simple, it develops a ransomware that other hackers use to attack the computer systems of SMEs. This collective activity constitutesa new way of organizing cybercrimes“, – noted in Figaro Mathis Hammel, specialist and patron of the Guardia Cyber Security School.Historically, everyone developed viruses in their corner, today we are dealing with hackers who organize themselves into gangs. The hacker who developed the program collects the money from the scams and redistributes it to his partners. It is a very profitable business.»
For example, a student hacker was paid 1,000 to 1,500 euros per week to develop his software. “They are mostly young people who have no frame and want to prove something. But they could put their talents to work for the common good and legally earn higher wages.says Mathis Hammel. In total, the 22-year-old defrauded 150 SMEs, among the victims of which are French women.
More than two small businesses affected by cyber attack
These SMEs are increasingly exposed to cyber attacks. With ETIs (mid-sized enterprises) and VSEs (very small enterprises), they represented 52% of ransomware victims in 2021 (up 53% from 2020), well ahead of local authorities (19%) and strategic companies (10%). ), according to the overview of the National Agency for Security of Information Systems (Anssi). “As large organizations improve their defenses, smaller organizations are increasingly targeted by hackers because they can be reached more easily.“, – emphasizes Craig Dunn, cyber manager of insurer Hiscox Europe.
According to Medef and consulting firm BCG, smaller organizations face a lack of knowledge about cyberattacks, in addition to underutilization of state aid and public initiatives. “Despite their increase in response to the health crisis, 56% of companies say they are not aware of the digital component of their recovery plan, and only 10% have used help or support in this context (although 42% need funding. )“, the press release states. Among these aids is the Program for Investments for the Future (PIA), the fourth tranche of which is endowed with 20 billion euros, intended for “long-term support for innovation in all its formsand accelerate the state’s cybersecurity strategy.
Expert Mathis Hamel advises SMEs “update their system very regularly“, fromperform backups on hard drives disconnected from servers“and if the company has the necessary funds, “conduct audits with external companiesidentify possible defects; It also notes that guidance is being made available to companies to begin protecting their computer systems.
Source: Le Figaro
I am David Wyatt, a professional writer and journalist for Buna Times. I specialize in the world section of news coverage, where I bring to light stories and issues that affect us globally. As a graduate of Journalism, I have always had the passion to spread knowledge through writing.