[AusNOG] Ransomware...
James Warne
jwarne at vigilant.it
Fri Sep 23 10:18:22 EST 2016
I used this service called Dr Web to remove the decryption from a Friend's parents computer.
Ended up being about $200 AUD and got everything back...
https://support.drweb.com/new/free_unlocker/for_decode/?lng=en
From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Matt Richards
Sent: Friday, 23 September 2016 6:28 AM
To: ausnog at lists.ausnog.net
Subject: Re: [AusNOG] Ransomware...
What's wrong?
http://www.networkworld.com/article/3073495/security/kansas-heart-hospital-hit-with-ransomware-paid-but-attackers-demanded-2nd-ransom.html
"Yes, the hospital paid the ransom. No, the hackers didn't decrypt the files-at least it was described as not returning "full access to the files." Instead, the attackers asked for another ransom."
That's what's wrong.
Matt.
On 23/09/2016 5:03 AM, Skeeve Stevens wrote:
What's wrong with negotiating? I've had a couple of customers talk down Ransomware attacks to about half the price.
If you need the data (no backup, can't restore), what's the harm in asking?
...Skeeve
Skeeve Stevens - Founder & The Architect - eintellego Networks Pty Ltd
Email: skeeve at eintellegonetworks.com<mailto:skeeve at eintellegonetworks.com> ; Web: eintellegonetworks.com<http://eintellegonetworks.com/>
Cell +61 (0)414 753 383 ; Skype: skeeve ; LinkedIn: /in/skeeve<http://linkedin.com/in/skeeve> ; Expert360: Profile<https://expert360.com/profile/d54a9> ; Keybase: https://keybase.io/skeeve
On Thu, Sep 22, 2016 at 10:58 PM, Kristoffer Sheather @ CloudCentral <kristoffer.sheather at cloudcentral.com.au<mailto:kristoffer.sheather at cloudcentral.com.au>> wrote:
Rule #1 - never negotiate with terrorists.
________________________________
From: "James Hodgkinson" <yaleman at ricetek.net<mailto:yaleman at ricetek.net>>
Sent: Thursday, September 22, 2016 10:56 PM
To: "Michael Bullut" <main at kipsang.com<mailto:main at kipsang.com>>, "Australian Network Operators Mailing List" <ausnog at lists.ausnog.net<mailto:ausnog at lists.ausnog.net>>
Subject: Re: [AusNOG] Ransomware...
Nuke the machine, restore from backup.
Pub?
James
On Thu, 22 Sep 2016, at 22:45, Michael Bullut wrote:
Greetings Team,
Anyone that has succeeded in eradication without sending a ransom?
Warm regards,
Michael Bullut.
---
Cell: +254 723 393 114.
Skype Name: Michael Bullut.
Twitter: @Kipsang<http://twitter.com/Kipsang/>
Blog: http://www.kipsang.com/
E-mail: main at kipsang.com<mailto:main at kipsang.com>
---
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
Message protected by MailGuard: e-mail anti-virus, anti-spam and content filtering.
http://www.mailguard.com.au/mg
Report this message as spam<https://console.mailguard.com.au/ras/1PiQVdD2wb/EO2vpAoqT19a9Dnr06wpm/0.212>
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20160923/2971fd12/attachment.html>
More information about the AusNOG
mailing list