[AusNOG] Ransomware...

Sat Sep 24 10:26:48 EST 2016

The way it works in the real world Skeeve is that we ask "Do you have
backups?", and then even if the answer is no, we investigate, because
sometimes users aren't aware of things like VSS.

But then we also say "And our advice is that no matter where this
individual event may lead us, that we look at implementing a new/more
appropriate backup and recovery solution to ensure that if this happens
again, you are in a better situation."

And if that advice is ignored, I would personally stop servicing the client
after the current issue is dealt with, or look for another employer.
Because if sensible advice is being ignored, I would rather be elsewhere,
instead of being the one desperately trying to recover data at 4am the next
time it happens.

That you actually think that we say "you didn't have backups, haha!" and
not help? That says more about you than it does about us.

On 24 Sep 2016 9:49 AM, "Skeeve Stevens" <
skeeve+ausnog at eintellegonetworks.com> wrote:

> Back-ups and recovery are the number one way to deal with these issues.
>
> But, if you don't have access to backups, and it happens a lot, then you
> need to do what you need to do to get back online. And if I ever hear an IT
> guy say something like 'well, you should have backed up' I would recommend
> terminating them.
>
> It's very easy in hindsight to make judgement or stand on the sideline and
> make moral judgements on others.... but I deal with real people with real
> suffering, and you deal with the immediate pain, then you worry about the
> failure that caused the situation later - as long as you do.
>
> There are so many arrogant, biased and self righteous people in IT who
> forget who pays them - whether it be a customer or employer. If you don't
> have empathy for your customers... go find another job. IT us a customer
> service business.
>
>
> ...Skeeve
>
> *Skeeve Stevens - Founder & The Architect* - eintellego Networks Pty Ltd
> Email: skeeve at eintellegonetworks.com ; Web: eintellegonetworks.com
>
> Cell +61 (0)414 753 383 ; Skype: skeeve ; LinkedIn: /in/skeeve
> <http://linkedin.com/in/skeeve> ; Expert360: Profile
> <https://expert360.com/profile/d54a9> ; Keybase: https://keybase.io/skeeve
>
> On Sat, Sep 24, 2016 at 9:04 AM, Karl Auer <kauer at biplane.com.au> wrote:
>
>> On Fri, 2016-09-23 at 23:08 +1000, Skeeve Stevens wrote:
>> > But... You've been hit at work (where you are responsible), family
>> > business (where you may or may not) and at home (where you are likely
>> > responsible).
>> >
>> > This is not a fantastic testament to you skills is it.
>>
>> Skeeve - all the prevention in the world sometimes doesn't work. The
>> trojan slips through, the tired worker clicks... And the more you do
>> with IT the more likely it is to happen. We have lots of customers -
>> ransomware attacks are a certainty.
>>
>> The key is to have backups and a plan.
>>
>> Our customers have been hit too - and we've got them up and running
>> from good, current backups. It costs them a day or two of
>> inconvenience, and they lose a few hours work. We (and they) consider
>> that a very good thing. Testament to our fantastic skills, in fact :-)
>>
>> Regards, K.
>>
>> --
>> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>> Karl Auer (kauer at biplane.com.au)
>> http://www.biplane.com.au/kauer
>> http://twitter.com/kauer389
>>
>> GPG fingerprint: E00D 64ED 9C6A 8605 21E0 0ED0 EE64 2BEE CBCB C38B
>> Old fingerprint: 3C41 82BE A9E7 99A1 B931 5AE7 7638 0147 2C3C 2AC4
>>
>>
>>
>> _______________________________________________
>> AusNOG mailing list
>> AusNOG at lists.ausnog.net
>> http://lists.ausnog.net/mailman/listinfo/ausnog
>>
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20160924/398b0752/attachment.html>