Michigan State University Network Breached In Ransomware Attack (bleepingcomputer.com) 8
Netwalker ransomware-as-a-service (RaaS) operators have reportedly breached Michigan State University's network, threatening to leak private files to the public if they don't pay a ransom in time. BleepingComputer reports: A countdown timer on the attacker's website shows that the university has about six days to comply or "secret data" will become public. The site set up by the Netwalker ransomware gang gives no details about the attack but they posted images with directories, a passport scan, and two financial documents allegedly stolen from the university's network. Information about how and when the attack happened, its impact on MSU, and the ransom demand remain unknown at this time.
Never pay off terrorists or criminals (Score:2)
Re: (Score:2)
Re: (Score:2)
If it was happening in secret, I think the university would pay the ransom, but by forcing the publicity I think they will have to commit to not paying.
Are you serious? You know that they are going to pay.
Re: (Score:1)
If you feed the trolls... (Score:2)
...more trolls will come.
Public companies, universities, and government agencies should commit to
- securing their networks. Enough of this "we didn't get around to it" stuff.
- not paying ANY ransomware or encryptionware or malware demands
- keeping offline [cold storage] backups so they can restore in under 24 hours, and TEST THAT RESTORE function
- hire competent people, not just "that guy who's been here forever so he's in charge now"
There's more but you get the point.
NEVER EVER GIVE IN TO TERRORISM because
Re: (Score:1)
> In the real world, aka the one where MONEY rules all, you pay because you will not accept going out of business based on principle.
Dude, please read what I wrote.
- hire people who know what they're doing
- have cold storage backup
- test your backups
This "we had our backup system hooked up to our main system and it all got encrypted because Windows and someone clicked something" is so old it's not funny anymore. The threats (including zero-day) get worse, but the IT infrastructure (including aging peopl
And if they need money again (Score:2)
Do they threaten to release the same data multiple times? I mean honestly how do you verify that the data is deleted once you've paid the ransom?
It's not like kidnapping where there is only one unique individual that can be returned. It's like a kidnapping where they return a clone and can make infinitely more. The economics of it don't scale in a sensible way.