Ready for another tech tip from techbrood? Well, here's Greg Doig with another one for you. Hey, everyone. Welcome back to the show. Today we're talking about something that's been making waves in the digital world. A ransomware group called play. I just read a joint advisory from the FBI and some other security agencies, and I wanted to break it down to you in pretty much plain English. So what's the deal with PLAY ransomware? Let me tell you.
First off, this group has been around since June of 2022, so it's not brand new, but definitely still causing headaches. The FBI, CISA and some Australian cyber folks just updated their advisory about play on June 4th. They're basically trying to warn everyone about this threat and give tips on how to protect ourselves. What's wild is how widespread this has become. These cybercriminals have hit businesses and important infrastructure across North America, South
America and Europe. In fact, they were one of the busiest ransomware groups last year. The FBI knows of about 900 organizations that have been attacked by these folks. That's pretty huge. Australia started seeing attacks in April of 2023, with the most recent one happening last November. These PLAY ransomware folks operate differently than some other groups. They're pretty secretive. It's thought to be a
closed group that keeps their operations tight. Their method is especially nasty because they use what experts call a double extortion model. So what does that mean? Well, they first steal your data and then they lock up your systems. Their ransom notes are interesting too. Unlike other ransomware groups that tell you right away how much they want, PLAY just gives you an email address to contact them. It's a unique German email for each victim. And get this,
sometimes they even call their victims on the phone. Can you imagine picking up your office phone and it's a ransomware attacker threatening to release all your data unless you pay up. That's pretty creepy. And if you don't pay, which they want in cryptocurrency, of course, they threaten to publish all your sensitive data on the dark web. It's like digital blackmail. So what can you do to protect yourself? The security agencies have some pretty straightforward advice. Some of this
you may have heard before and hopefully are doing. First, use multi factor authentication. You know, where you need both a password and a code from your phone. It's annoying sometimes, but way better than being hacked. Two, keep offline backups of your important data. It's like saving stuff on external drives that aren't connected to the Internet. And three, have a plan for what to do if you do get hit because scrambling in the moment is never good. 4. Keep everything
updated these annoying update notifications. Yeah, you should probably click them. And I know cybersecurity can seem overwhelming, but these basic steps can make a huge difference. And hey, if you run into business, the government actually has a website that's called stopransomware.gov with free resources to help you. That's it for today's episode. Until next time. Stay safe online and we'll talk to you soon. Thank you for tuning into another episode of Tech Brood. If you enjoyed
today's discussion, don't forget, forget to subscribe. Wherever you get your podcasts, have questions or suggestions for future topics, reach out on our website or social media channels. Until next time. Greg asked me to remind you that the future of tech is brewing right now and we're all part of that journey. Stay curious, stay connected and we will catch you on our next episode.