Hackers Demand $70 Million to End Biggest Ransomware Attack on Record

Ghoti Ichthus

Pray so they do not serve alone. Ephesians 6:10-20
Hackers demand $70 million to end biggest ransomware attack on record

"Cybersecurity teams are working feverishly to stem the impact of the single biggest global ransomware attack on record, with some details emerging about how the Russia-linked gang behind it breached the company whose software was the conduit.
An affiliate of the notorious REvil gang, best known for extorting $11 million from the meat-processor JBS after a Memorial Day attack, infected thousands of victims in at least 17 countries on Friday, largely through firms that remotely manage IT infrastructure for multiple customers, cybersecurity researchers said.
REvil was demanding ransoms of up to $5 million, the researchers said. But late Sunday it offered in a posting on its dark web site a universal decryptor software key that would unscramble all affected machines in exchange for $70 million in cryptocurrency."
More
https://www.cbsnews.com/news/kaseya-atttack-biggest-known-ransomware/


This is not the same attack as the cyberattack against JBS
https://www.raptureforums.com/forum...-shutdown-all-companys-us-beef-plants.179830/
 

Tall Timbers

Imperfect but forgiven
Even if the ransomware were paid, I suspect the fix wouldn't work, which is sometimes the case. This mess is probably a little too complicated for a simple fix... My understanding is the fix given to JBS did not work.

There clearly needs to be some work in the area of security with regards to the internet system that the world has come to rely on. Everything attached to the internet is much too vulnerable as things stand now.
 

JSTyler

Well-Known Member
There clearly needs to be some work in the area of security with regards to the internet system that the world has come to rely on. Everything attached to the internet is much too vulnerable as things stand now.
Air gap all corporate networks from the web, no wifi usage at all. It's about the only "safe" way to operate in the digital age. Even then an internal bad-actor with a whit of hacking sense and the will can grab pretty much everything with a few simple tools can cripple or circumvent any security measures.

It if can be "secured" digitally, it can be hacked, cracked, broken and hijacked digitally. Access is key.

Back in the day when I did some IT work, it was always the HR departments that opened the way for hackers. The finance departments came in a far distant second. The IT goons would scratch their heads and answer, "Nuff'n" when asked how this could've been prevented. Now, it seems that curiosity and the typical connected employee is the main culprit. They're easy prey to email phishing scams and social engineering via spam emails and enticing links to click.

It's not that hard to close digital security gaps and reduce vulnerabilities but it is absolutely impossible to secure against ignorance, disaffected attitudes, ambivalence and most of all, stupid.
 

Footsteps

Well-Known Member
I have to wonder:

1. Does this administration have a "red line"?
2. What line must be crossed for retaliation to occur?
3. Does our planned retaliation include paying us to remove Ransomeware on Vodka production, or is it limited to "Your Russian momma is so fat" jokes on Facebook?
 

JSTyler

Well-Known Member
1. Does this administration have a "red line"?
Answer - Yes, Jesus Christ.
2. What line must be crossed for retaliation to occur?
Answer - Profess Jesus Christ.
3. Does our planned retaliation include paying us to remove Ransomeware on Vodka production, or is it limited to "Your Russian momma is so fat" jokes on Facebook?
Answer - Not my momma, your momma. And keep yer filthy hands off the aged potato juice.

:wink2
 

Ghoti Ichthus

Pray so they do not serve alone. Ephesians 6:10-20
It if can be "secured" digitally, it can be hacked, cracked, broken and hijacked digitally. Access is key.

Back in the day when I did some IT work, it was always the HR departments that opened the way for hackers. The finance departments came in a far distant second. The IT goons would scratch their heads and answer, "Nuff'n" when asked how this could've been prevented. Now, it seems that curiosity and the typical connected employee is the main culprit. They're easy prey to email phishing scams and social engineering via spam emails and enticing links to click.

It's not that hard to close digital security gaps and reduce vulnerabilities but it is absolutely impossible to secure against ignorance, disaffected attitudes, ambivalence and most of all, stupid.


HR departments routinely and deliberately allow/encourage/invite/require unvetted outsiders access to the system via online employment application systems and processes. They also open and answer email from unvetted people external to the company/organization all the time during the application process (applicants, references, interested parties seeking additional information, etc.) Attachments are downloaded and opened routinely (resumes, supporting documents, etc.) as part of the application and hiring process.
 

GHoe

Well-Known Member
I have to wonder:

1. Does this administration have a "red line"?
2. What line must be crossed for retaliation to occur?
3. Does our planned retaliation include paying us to remove Ransomeware on Vodka production, or is it limited to "Your Russian momma is so fat" jokes on Facebook?
Rest assured, when President Xiden gave Putin his list of hackables that are "off limits", there was also a "Please Don't Cross This Line" section as well.
 
Top