this post was submitted on 07 Nov 2023
58 points (95.3% liked)

Technology

55940 readers
3798 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world
58
Raising awareness of Ransomware (medium.com)
submitted 8 months ago by TechCodecPawx@programming.dev to c/technology@lemmy.world
10 comments fedilink hide all child comments
top 10 comments
sorted by: hot top controversial new old
[–] Orbituary@lemmy.world 10 points 8 months ago* (last edited 8 months ago) (1 children)

Digging customers out from this is quite literally what I do for a living. Issues aren't always as simple as "don't pay."

The article seemed to be aimed at average desk workers. It didn't contain any data or suggestions not commonly told in phishing tutorials offered by companies.

This is an entry level explanation of a highly complex problem. I would suggest you send it to your grandma or a blue collar friend who doesn't work on computers.

[–] tun@lemm.ee 3 points 8 months ago (3 children)

I want to know -

  1. Do the kidnappers (I do not know the term) keep the promise?
  2. What happened after the paying the ransom money?
  3. What else are involved in addition to paying or not paying?
[–] Orbituary@lemmy.world 6 points 8 months ago* (last edited 8 months ago) (1 children)

If they don't uphold their promises, they can't repeat the scam. I've dealt with the hackers and they're better tech support than larger corps in many ways. They want you to be successful, in a weird way.

They're dicks for doing it, but when your admin password is "1991mustang" for 16 years, maybe you deserve a lesson in security.

@nobsi@feddit.de is exactly right in their comments.

[–] Nobsi@feddit.de 4 points 8 months ago (1 children)

My admin pasword is Hunter2

[–] tun@lemm.ee 2 points 8 months ago (1 children)

Mine is Password (with capital p)

[–] Nobsi@feddit.de 0 points 8 months ago

••••••••? Like this?

[–] Nobsi@feddit.de 4 points 8 months ago (1 children)

Also do this in my business. 1. Most do. Otherwise there would be nobody that pays. 100% of my insured customers got their data back. I cannot speak on Personal ransomware. I never paid myself. 2. We got the key to reverse the encryption and gave that to the lawyers and then started work on decrypting. 3. Are you insured? Does your insurer pay? Do your lawyers know? How did they get in? Is that fixable? Why wasnt it closed before? Is it fixed now? Is there proof that what happened will not immediately happen again? And lots more lawyer stuff.

[–] tun@lemm.ee 6 points 8 months ago

This is my first time hearing involvement of insurance and lawyers.

Thank you for sharing.

[–] TechCodecPawx@programming.dev 3 points 8 months ago (1 children)

They will demand payment in cryptocurrency, usually bitcoin, which is untraceable. There's no guarantee that they will really keep their word; since it's completely anonymous, there's nothing you can do. If you get infected, you just have to accept that your files are gone. The best thing you can do is backup while you still can.

[–] ramjambamalam@lemmy.ca 4 points 8 months ago

Make sure some of your backups are kept offline (so that they won't be encrypted along with everything else) and also test that they work regularly! Otherwise they might not do what you think they do.