DICT urges companies not to pay for ransomware to avoid repeat attacks

DICT urges companies not to pay for ransomware to avoid repeat attacks

By: - Reporter /
/ 02:08 PM January 16, 2024

DICT seeks add’l P5.6 billion in 2024 national budget cybersecurity confidential funds logo secret

| PHOTO: Department of Information and Communications Technology official facebook page

MANILA, Philippines — Lest becoming repeat victims, companies should never pay ransom to creators of ransomware, according to Department of Information and Communications Technology Secretary Ivan Uy.

Uy made the reminder as he noted that those who give in to the hackers’ demands become victims of more attacks.

Article continues after this advertisement

“Based on what have been observed worldwide, the moment these companies succumb and pay the ransom, then they are included by this criminal organization in the list of favorite ‘customers’,” Uy said in an ambush interview in a cybersecurity forum organized by Stratbase ADR and Canadian Embassy held at Manila Polo Club.

FEATURED STORIES

“This is a big lesson to companies. Do not ever pay ransom in any of these ransomware attacks. You will only open up your company to more attacks,” he added.

READ: Hackers attack PhilHealth’s website, systems

Ransomware is a type of malware that threatens to permanently block access to the victim’s files unless a ransom is paid.

Article continues after this advertisement

Uy noted that cyber attacks like ransomware are very preventable, but they still occur “because some of the best practices are not being adhered to.”

Article continues after this advertisement

He said that simply updating the antivirus and firewall could prevent ransomware attacks. Companies should also create a backup of their files and systems to have something to rely on, even as ransomware encrypts the original files.

Article continues after this advertisement

READ: PhilHealth spends P14M for new anti-virus system

“A lot of these are preventable if we practice cybersecurity standards. Unfortunately, a lot of the gaps we have seen is due to the lack of concern, lack of priority, lack of discipline on the part of our institutions, whether public and private, that cybersecurity and their information communication technology systems is something that needs to be strengthened, that needs to be protected,” Uy noted.

Last year, the website and online application of the Philippine Health Insurance Corporation (Philhealth) became the victim of a ransomware attack. Services and transactions of the state insurer were done offline before its website was restored several days later.

Article continues after this advertisement

Blaming the attack on outdated antivirus software, Philhealth invested about P14 million in a new antivirus system.

Unlike foreign companies that pay up, Uy also noted that Philhealth did not pay the perpetrators of the ransomware attack.

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our daily newsletter

By providing an email address. I agree to the and acknowledge that I have read the .

“Kuripot tayo, hindi tayo nagbabayad ng ransom (we are stingy; we don’t pay ransom),” Uy said.

TAGS: DICT, ransomware

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our newsletter!

By providing an email address. I agree to the and acknowledge that I have read the .

© Copyright 1997-2024 | All Rights Reserved

This is an information message

We use cookies to enhance your experience. By continuing, you agree to our use of cookies.