Blog Posts Business Management

‘Maze’ Ransomware

Blog: NASSCOM Official Blog

A leading global IT service provider confirmed on 18th April that a security incident involving its internal system led to some disruption, as the result of a Maze ransomware attack. As a responsible industry player, the company has not only informed its clients but also reported the incident to the relevant government authorities. Security teams of the company, with the help of experts, are actively taking steps to contain this incident. It has also engaged with law enforcement authorities on the matter.

The Indian industry takes such incidents seriously. At an individual level, companies take all desired precautions, deploy forward-leaning measures, and monitor diligently. Indian IT industry is aware of rising attacks globally in the backdrop of COVID-19 outbreak. The industry has joined NASSCOM and DSCI’s efforts for creating a collective response to security challenges through sharing of the learnings and best practices.

The Maze ransomware attack is an example of advancing malware that tends to move laterally in the network and has the potential to cause disruptions and information stealing for extortion, as per the information available.

Since the COVID-19 outbreak, Maze ransomware is targeting companies across sectors, including Healthcare, IT/ITeS and Banking across the globe. It supposedly gets delivered via emails having attachment embedded with macros to encrypt files using sophisticated techniques. NASSCOM and DSCI advise caution and vigilance against such attack family.

Based on the learnings and information available, we recommend:

Follow best practices for granting system permissions to the files NASSCOM and DSCI advise referring to the advisories issued by government authorities, such as CERTs. For the benefit of our members, we have also published a technical report.

Read the Maze Technical Analysis Report

For any queries, please reach out to

Download a copy of this advisory and visit our website to read all advisories!

The post ‘Maze’ Ransomware appeared first on NASSCOM Community |The Official Community of Indian IT Industry.

Leave a Comment

Get the BPI Web Feed

Using the HTML code below, you can display this Business Process Incubator page content with the current filter and sorting inside your web site for FREE.

Copy/Paste this code in your website html code:

<iframe src="" frameborder="0" scrolling="auto" width="100%" height="700">

Customizing your BPI Web Feed

You can click on the Get the BPI Web Feed link on any of our page to create the best possible feed for your site. Here are a few tips to customize your BPI Web Feed.

Customizing the Content Filter
On any page, you can add filter criteria using the MORE FILTERS interface:

Customizing the Content Filter

Customizing the Content Sorting
Clicking on the sorting options will also change the way your BPI Web Feed will be ordered on your site:

Get the BPI Web Feed

Some integration examples