APCSOC issues ransomware alert to all depts in the State
Amaravati: Fearing an attack of Robin Hood Ransomware, a type of computer virus, the AP Cyber Security Operations Centre (APCSOC) has blocked all private mail services in the Secretariat.
Based on experience of ransomware attack on Telangana power distribution companies' websites and servers, the APCSOC has been collecting information regarding the hacking. The APCSOC will analyse the attack pattern, said authorities concerned on Wednesday in a release.
The APCSOC issued threat advisory to AP State Data Centre (APSDC), APSWAN, AP Secretariat and other IT wings in government about the ransomware and made recommendations to secure IT infrastructure.
Government officials are directed to ensure all latest infrastructure patches are installed up to date, antivirus is up and running with latest updates, not to open any emails sent from unknown sender or suspicious attachment, forward suspicious mails to APCSOC Helpdesk at apcsochelpdesk@ap.gov.in and disable unused ports and services to ensure IT infrastructure strengthened. It also suggested to the officials of all departments to restrict the PowerShell, SMB port (445) and SNMP port (161, 162) access for the required applications only.