Case Renner: Would a DNS Firewall solution avoided the ransomware attack suffered by Renner stores just over a month ago?
This is the question that echoes in the market since August 19, 2021. A day that lasted long and exhaustive 72 hours…
Undeniably, interest and concern are shared by all entrepreneurs with a minimum of notion about the severity of the case .
After all, the ransomware attack that left out of the air of the e-commerce system (website and application), the financial website and the card payment also generated slowness, unavailability and major inconvenience to retail giant operations.
Understand the ability to destroy a ransomware attack to prevent and protect your business
First of all, it is worth a warning. Do not get into the hole of thinking that cybership only happens to giant companies . That said, let's continue this analysis of the Renner case.
A well -configured DNS Firewall Prevents and protects against a ransomware attack?
In fact, this is a question that our customers ask the team of Lumiun Internet Security every time the press reports a great cybercrime .
It was no different in these last 30 and 30 days. Because the cyber attack of the ransomware type that Renner stores has suffered still gives a lot of cloth for mango…
It is impossible not to talk about it, since the ransomware attack has been the "darling" of digital criminals. In fact, in our newsletter , we report new attacks every week .
Unexpectedly, Renner stores spent three long days with its inoperative systems after a ransomware attack.
What would happen if your business was closed for the same period?
No doubt it doesn't matter the size. Small, medium or large, I'm sure no entrepreneur would like to go through such a situation .
However, it is these unfortunate incidents that generate interest and promote the always beneficial search for information .
In addition, being informed and attentive to risks and threats against data security is a first and important step towards prevention and protection .
In parallel to this many doubts arise as: what reduces the risks of a company to suffer a ransomware attack?
The amazing thing is that actions to reduce risks are relatively simple and any company has full ability to implement , such as a DNS Firewall solution, for example.
Understanding the Renner case and the ransomware attack that left it inoperative for three long days
Initially, to understand the Renner case, we will watch this news from CNN on August 20, 2021, one day after the cyber attack that apparently overthrew retailer's servers and encrypted their data: cyber attack leaves Renner's website out, understand the case.
At first, understanding the Renner case and the ransomware attack that occurred seems simple . A quick and easy explanation is:
Renner stores suffered a large cracker attack. A ransomware attack knocked down retailer systems and cybercriminals required a high rescue to decrypt the data. Even with difficulties, the company was able to overcome obstacles and the challenge that, on its own, resume the fullness of operations and the control, possession and access of its data and files.
Basically, perhaps with other words and different writing styles, this is the current explanation available in the most varied communication vehicles, specialized websites and those communicated to the Renner Lojas market .
Case Renner: Not everything that glits is gold…
Would a DNS Firewall solution avoided the ransomware attack suffered by Renner stores just over a month ago?
Surprisingly, the circumstances of the Renner case are so much more complex than the scenario and context of the ransomware attack that originated them, which go beyond the possible response, which is exclusively technical .
That is, the answer to the proposed question since the first paragraph of this article does not realize the reality and all the perspectives and approaches necessary for the Renner case .
That is, as assertive as the answer "yes, a DNS Firewall solution, if well configured and sized to the size of the company , would have contributed greatly to avoid and minimize the ransomware attack suffered by Renner stores."
Management of the ransomware attack crisis in the Renner case
Surely, it would be simple to answer the initial question about the effectiveness of DNS Firewall to avoid ransomware attack , if we had full knowledge of all facts, particularities, characteristics and details.
However, it is not an easy task. Mainly, for three reasons:
- The scarcity of official information . Among other reasons, such as the company is publicly traded, a series of restrictions and strict compliance rules imposed by the CVM (Securities Commission).
- Speculation has found fertile ground on the web. From rumors about the amount required (between $ 1 billion and $ 20 million). Anyway, we have a lot of news, facts, narratives, hypotheses and even lies about the Renner case. Probably, we can never say with full security which or which are true or not…
- The legal implications arising from the LGPD ( General Law on Personal Data Protection ). Indeed, Procon-SP has notified Renner stores and required information about which databases were compromised, what the real severity of the situation, and the exposure level resulting from the ransomware attack. Also, and then the direct implication with the LGPD (subject to inspection and fine), if sensitive and confidential data leakage has occurred.
Watch this short video that simply presents the idea of cyber resilience. In principle, a concept that applies well to the circumstances and context involved in the Renner case .
Renner case: cyber resilience and compliance
From the same point of view, logic indicates that the ransomware attack on Renner stores was not the most serious .
Despite the scarcity of information, in contrast, the reliability of data and information available is questionable .
However, evidence leads to the official version of Renner stores .
- Agility and reaction time. It may seem a long time and, of course, the damage was great. But restoring e-commerce and collection systems and resuming virtual and physical operations in just 72 hours is commendable and relevant.
- The action protocol, in agreement that required by the CVM. The word "ransomware" is not contained in the communications to the market. Officially, there was a “cyber attack” that generated “instability in part of its systems and the operation”.
- The recommended practice of not negotiating or paying ransom. The indicative of this procedure is the communication/denial directed to Exame magazine .
- So far, there is no evidence of data leakage. However, because it involves the LGPD (data collection, storage, treatment and encryption processes) is an issue that should be clarified and informed to Procon-SP.
What motivated the ransomware attack and originated the Renner case?
This print screen that circulated on the internet is explicit, direct and self -explanatory about the motivation of the ransomware attack on Renner stores: Money .
However, we can infer that the increase in the number of ransomware attack cases should be more than just the greed of crackers .
The vulnerability of security and internet access control processes is responsibility companies and entrepreneurs.
In fact, cybercrimes only occur because they are possible.
By the time the prevention and protection processes are effective, risks and threats of cyber attacks will be easily avoided .
According to the important warning of Daniel Avelar , software developer responsible for the YouTube channel programming beyond the code , in video about the Renner case :
"Anyone, anytime, can be attacked. It can be you, Zé da Esquina, Fedex or Renner stores."
In addition to bringing an interesting chronology, he makes a good analysis of the Renner case and, especially, an important reflection on data security.
The most remarkable, however, is what we can consider a lesson for the small, the middle and the great entrepreneur: indistinctly, everyone should be responsible for the data that captivates…
In this sense, to paraphrase Saint-Exupéry ( the little prince ), undeniably makes perfect sense in LGPD times.
Ransomware attack and case Renner: numbers that scare and cause damage
The numbers involved in the Renner case are not only superlative . They also give the dimension of the growth of cybercriminals .
In fact, it is a consensus among experts that the ransomware attack is an extremely harmful practice that will still grow exponentially.
As a result, it will cause incontrolable and difficult to measure damage and damage to measure. First, to the finances of the companies.
But mainly, the image and reputation. Assets as or more important than money.
By the way, another consensus is that attacks such as the practiced against Renner stores tend to intensify in Brazil and worldwide .
Above all, because the ransomware attack is considered by crackers a successful and efficient tool.
Lack of attention and investments in data protection, prevention and security and internet access control are factors driving risks and virtual threats .
Pandemic, home-office and piracy , likewise, are another combination that also drives the growth of cyber attacks.
Increasing the volume of remote access to sensitive and confidential data facilitates invasion and leaves more vulnerable systems, networks, hardware and software . Especially if they are pirate programs.
Kaspersky's 2021 Panorama of Threats 2021 ( specializing in the production of Internet security software) indicates 23% cybership growth in Brazil, only in the first eight months of 2021 compared to the same period of 2020.
Until August, the 20 most popular malware totaled 481 million malicious attacks . As a result, we have an impressive average of 1,400 blockages per minute .
Just as piracy needs to be banned from the corporate environment, the control and safety of remote access to the internet on a home-office should be complete . In fact, which begins with effective DNS Firewall solution.
DNS Firewall to avoid ransomware attack
If you want to know more about this, I suggest reading the DNS Firewall article reduces the risk of ransomware attack? , recently published on Lumun Blog .
