MAZE ransomware warning from the Law Society of Manitoba
The following ransomware warning was published by the Law Society of Manitoba on April 9, 2020. Ontario lawyers should also be aware and share this with their staff.
In the past two weeks, two Manitoba firms have called us at The Law Society of Manitoba to say they been hit by viruses – not Covid-19, but computer viruses, specifically a ransomware virus called MAZE.
As a result of the virus attack, they have no access to email, Word, their accounting software, or any of their backups, including cloud backups. Everything is tied up by MAZE and they have been asked to pay an enormous ransom to regain access to any of their work.
The firms are working with IT professionals and cyber insurers and still are not sure how the virus took hold. We suspect that someone clicked on a link or an attachment in an email that was infected with a virus which in turn infected the firms’ entire systems. At this point, we do not know when or if they will ever regain complete access to their kidnapped data.
You are vulnerable. A ransomware virus could take over and lockdown everything a lawyer or law firm has ever created electronically – accounting software, client lists, document management systems, financial software, email, everything you ever did in Word, Excel, all the photos taken at firm events, and whatever treasures were kept on personal computers.
Ransomware viruses are often hidden in email attachments. Recently, the infected attachments appear to have been about COVID-19 including:
• Emails with a COVID-19 outbreak maps in an attachment.
• Emails inviting you to a seminar to discuss responses to COVID-19, which includes a link to register for the seminar.
• Emails claiming to be from vendors or associations about COVID-19 that include links to PDFs and Word documents.
• SMS (text) messages, indicating you need to “click here” to find out about modified firm operations.
These emails and attachments can be loaded with malware which can gain control of your remote access into firm computers and encrypt your home and work computers and anything else the malware can reach through your network.