Global Shipping Firm Pitney Bowes Affected by Ransomware Attack (Oct 14, 2019)
Pitney Bowes, a global mailing and shipping company has announced that it has been hit by a ransomware attack which encrypted certain systems. This resulted in a temporal system outage that affected customer access to various services. Pitney Bowes provides data, e-commerce, financial services, mailing and managing transactions for over 1 million clients which includes a large majority of Fortune 500 companies.This ransomware attack doesn’t come long after recent publications from the FBI regarding the increased numbers of ransomware attacks.
Recommendation: At this moment in time, Pitney Bowes as said there is no indication of customer or employee data being maliciously accessed but regardless of this, there are precautions that can be put in place to reduce the threat. Ransomware can potentially be blocked by using endpoint protection solutions (HIDS), but as this news shows, new threats are constantly evolving to bypass these protections. Always keep your important files backed up. In the case of ransomware infection, the affected system must be wiped and reformatted. Other devices on the network should be checked for similar infections. Always check for a decryptor before considering payment; avoid payment at all costs. Ransomware should be reported to law enforcement agencies who are doing their best to track these actors and prevent ransom from being a profitable business for cyber criminals.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.