Back to the 70's

[HTM01]

...from the story I read that those behind it haven't posted claims about it and that it means they are in negotiations or it has been paid

From what little I know about ransomware, the advice from security experts is just to pay the ransom and beef up security after. Those running the ransomware are running a business. They research their victims. They know what it will cost them in time and dollars to get around the virus and set their price accordingly. Set the price too high and nobody pays, too low, you can't cover your expenses.

https://www.zdnet.com/article/colonial-pipeline-paid-close-to-5-million-in-ransomware-blackmail-payment/?ftag=TRE-03-10aaa6b&bhid=21421786193599705944230089918672&mid=13366532&cid=717039872">https://www.zdnet.com/article/colonial- ... =717039872">https://www.zdnet.com/article/colonial-pipeline-paid-close-to-5-million-in-ransomware-blackmail-payment/?ftag=TRE-03-10aaa6b&bhid=21421786193599705944230089918672&mid=13366532&cid=717039872

says they paid 5mil

[ghuns]

...says they paid 5mil

Chump change, really.

I know of a local company, many times smaller than Colonial Pipeline, that got taken for more than that.

[mkd]

https://www.marketwatch.com/story/biden-predicts-good-news-on-colonial-pipeline-in-next-24-hours-well-be-getting-that-under-control-11620853231?mod=mw_latestnews">https://www.marketwatch.com/story/biden ... latestnews">https://www.marketwatch.com/story/biden-predicts-good-news-on-colonial-pipeline-in-next-24-hours-well-be-getting-that-under-control-11620853231?mod=mw_latestnews

Biden taking care of it. Move on...  

^^^LOL.
Market watch is run by a punch of Liberal Progressives. Been nothing but Bidet fanboi 'articles' for months.

[mkd]

I immediately ran out and purchased 14 of The 10 gallon gas cans and filled them and stashed them in my apartment. I had to move my 10 cases of toilet paper over next to the wall. But I managed to stack everything in my bedroom closet. WHEW !! It smells a Little but if I keep the doors closed its not too Bad.

Now save on electricity by lighting a candle at night. Plus it's romantic.

I'm wearing my Jimmy sweater as we speak.

[ghuns]

Saw a great joke on Twitter, Biden is now plagiarizing Jimmy Carter.

[MIL-TFP-41]

So with this ungodly huge infrastructure bill...is there any money earmarked for cyber security to prevent this in the future? Seems to me that should be a #1 priority.

[HTM01]

we got hit by one of these a few years ago, i noticed when i went to post and got an error, *.pst was one of the first files encrypted so i unplugged from network and called IT

[Dan_AKA_ROY23]

we got hit by one of these a few years ago, i noticed when i went to post and got an error, *.pst was one of the first files encrypted so i unplugged from network and called IT

Hopefully no "IT chapter 2" (ok movie)

[gcode]

So with this ungodly huge infrastructure bill...is there any money earmarked for cyber security to prevent this in the future? Seems to me that should be a #1 priority.

no...

[Smit]

So with this ungodly huge infrastructure bill...is there any money earmarked for cyber security to prevent this in the future? Seems to me that should be a #1 priority.

Isn't Colonial Pipeline a private company? If so they are in charge of their own IT security. They paid a 5 million dollar fine for not doing a good enough job of it. Considering the havoc the hackers caused I'd say they got off cheap.

[mkd]

It funny seeing all the Fascist go all fake free markets after installing a hapless leader.
 Can't make this crap up.😅😂

[TylerBeer]

So with this ungodly huge infrastructure bill...is there any money earmarked for cyber security to prevent this in the future? Seems to me that should be a #1 priority.

Isn't Colonial Pipeline a private company? If so they are in charge of their own IT security. They paid a 5 million dollar fine for not doing a good enough job of it. Considering the havoc the hackers caused I'd say they got off cheap.

Still illegal to hack, like saying it's your fault for not securing your house when someone breaks in. Of course republicans will say that all day long but yeah

[Tim Johnson]

We got hit a few years ago along with Whirlpool and our local hospital. IT was working two days straight to get everything back up and running. One good thing was every department has individual isolated servers so the repairing wasn't as bad as it could have been. Our building didn't occur any damage.

[Smit]

Still illegal to hack, like saying it's your fault for not securing your house when someone breaks in. Of course republicans will say that all day long but yeah

Individual companies are in charge of securing their own networks. Same as homeowners are in charge of securing their homes. I don't think that's unreasonable. The company I work for spends a lot of time and resources on security.

Having said that, I think you're right on the bigger picture Tyler. Our energy infrastructure is very old and vulnerable. It's intertwined in ways that are difficult to secure.

Upgrading the entire infrastructure is way too big for private companies to do on their own. It has been clear for a long time this is a major problem and should have been a priority. It hasn't been so now there needs to be a priority going forward. The attack on Colonial Pipeline should make that very clear and it will likely be made even more clear in the near future.

Those hackers just wanted money. If it was a state sponsored hacker group who just wanted to cause damage to our people and economy it could have been a lot worse.

[TylerBeer]

Still illegal to hack, like saying it's your fault for not securing your house when someone breaks in. Of course republicans will say that all day long but yeah

Individual companies are in charge of securing their own networks. Same as homeowners are in charge of securing their homes. I don't think that's unreasonable. The company I work for spends a lot of time and resources on security.

Having said that, I think you're right on the bigger picture Tyler. Our energy infrastructure is very old and vulnerable. It's intertwined in ways that are difficult to secure.

Upgrading the entire infrastructure is way too big for private companies to do on their own. It has been clear for a long time this is a major problem and should have been a priority. It hasn't been so now there needs to be a priority going forward. The attack on Colonial Pipeline should make that very clear and it will likely be made even more clear in the near future.

Those hackers just wanted money. If it was a state sponsored hacker group who just wanted to cause damage to our people and economy it could have been a lot worse.

I don't think it's unreasonable either, but I don't think it's also unreasonable to ask the government to step up their game a bit in defending against cyber criminals (ask the people at Scripps hospital in San Diego).     It's like, maybe the difference in everyone needing razor wire on their houses, or just having a doorbell cam.

So many networks have ad-hoc extensions and the smart-phone, car etc. means companies have these high expectations of what should be possible in their place of business, network professionals struggle to implement, integrate and THEN secure -  security doesn't pay the bills until it does