Those spreading ransomware are seen targeting companies and individuals only at nights and weekends says a study taken up by FireEye. The Cybersecurity firm confirms that 76% of ransomware infections take place at night time in the enterprise sector and 49% of them take place during the weekends.
FireEye researchers claim that the hackers are targeting companies only in odd hours is because most firms do not employ IT, staff, at night time or even if they do they do it in a thin line.
However, some security researchers argue that most of the hackers are operating from Asia & Middle East and due to time differences between nations, the attack repercussions are only visible in odd hours.
Technically speaking, most of the ransomware spreading gangs infiltrate into a company’s network and spend their time in analyzing the network and the endpoints. After that, they start infecting the workstations on a manual note and then trigger the infection.
FireEye claims that the Dwell time for a ransomware infection is on an average 3 days and could prolong to 7 to 14 days in some instances. And in all cases, the infection is triggered only at the will of the hacker and not as soon as it enters the network, which says us a fact that most of the spread is automated.
In a ransomware spread report released by FireEye on a recent note, it is estimated that the human-operated ransomware attacks have gone by 860% and have impacted almost all sectors and companies operating across the world, and not just the Donald Trump-led nation.
Note- Microsoft calls such infection spread as “Human operated ransomware attacks”, the OS maker has already issued a list of tips to secure a network and help detect the ransomware in time- before it locks down a company on a digital note.