[AusNOG] Ransomware...
Darren Ward (darrward)
darrward at cisco.com
Fri Sep 23 03:15:50 EST 2016
A more worrying trend is that a number of newer ransomware apps also exfiltrates data from infected machines and networked volumes
DLP technologies getting more critical all the time and for goodness sake lock down DNS! :)
Which raises an interesting question - as technology and network providers should filtering of DNS to legit servers become the norm?
Sent from my iPad
On 22 Sep 2016, at 8:04 PM, Skeeve Stevens <skeeve+ausnog at eintellegonetworks.com<mailto:skeeve+ausnog at eintellegonetworks.com>> wrote:
What's wrong with negotiating? I've had a couple of customers talk down Ransomware attacks to about half the price.
If you need the data (no backup, can't restore), what's the harm in asking?
...Skeeve
Skeeve Stevens - Founder & The Architect - eintellego Networks Pty Ltd
Email: skeeve at eintellegonetworks.com<mailto:skeeve at eintellegonetworks.com> ; Web: eintellegonetworks.com<http://eintellegonetworks.com/>
Cell +61 (0)414 753 383 ; Skype: skeeve ; LinkedIn: /in/skeeve<http://linkedin.com/in/skeeve> ; Expert360: Profile<https://expert360.com/profile/d54a9> ; Keybase: https://keybase.io/skeeve
On Thu, Sep 22, 2016 at 10:58 PM, Kristoffer Sheather @ CloudCentral <kristoffer.sheather at cloudcentral.com.au<mailto:kristoffer.sheather at cloudcentral.com.au>> wrote:
Rule #1 - never negotiate with terrorists.
________________________________
From: "James Hodgkinson" <yaleman at ricetek.net<mailto:yaleman at ricetek.net>>
Sent: Thursday, September 22, 2016 10:56 PM
To: "Michael Bullut" <main at kipsang.com<mailto:main at kipsang.com>>, "Australian Network Operators Mailing List" <ausnog at lists.ausnog.net<mailto:ausnog at lists.ausnog.net>>
Subject: Re: [AusNOG] Ransomware...
Nuke the machine, restore from backup.
Pub?
James
On Thu, 22 Sep 2016, at 22:45, Michael Bullut wrote:
Greetings Team,
Anyone that has succeeded in eradication without sending a ransom?
Warm regards,
Michael Bullut.
---
Cell: +254 723 393 114.
Skype Name: Michael Bullut.
Twitter: @Kipsang<http://twitter.com/Kipsang/>
Blog: http://www.kipsang.com/
E-mail: main at kipsang.com<mailto:main at kipsang.com>
---
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
Message protected by MailGuard: e-mail anti-virus, anti-spam and content filtering.
http://www.mailguard.com.au/mg
Report this message as spam<https://console.mailguard.com.au/ras/1PiQVdD2wb/EO2vpAoqT19a9Dnr06wpm/0.212>
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20160922/713208aa/attachment.html>
More information about the AusNOG
mailing list