[AusNOG] Ransomware...

Matt Richards matt at shakesbeare.com
Fri Sep 23 06:27:50 EST 2016


What's wrong?

http://www.networkworld.com/article/3073495/security/kansas-heart-hospital-hit-with-ransomware-paid-but-attackers-demanded-2nd-ransom.html

"Yes, the hospital paid the ransom. No, the hackers didn’t decrypt the 
files—at least it was described as not returning “full access to the 
files.” Instead, the attackers asked for another ransom."

That's what's wrong.

Matt.


On 23/09/2016 5:03 AM, Skeeve Stevens wrote:
> What's wrong with negotiating? I've had a couple of customers talk 
> down Ransomware attacks to about half the price.
>
> If you need the data (no backup, can't restore), what's the harm in 
> asking?
>
>
> ...Skeeve
>
> *Skeeve Stevens - Founder & The Architect* - eintellego Networks Pty Ltd
> Email: skeeve at eintellegonetworks.com 
> <mailto:skeeve at eintellegonetworks.com> ; Web: eintellegonetworks.com 
> <http://eintellegonetworks.com/>
>
> Cell +61 (0)414 753 383 ; Skype: skeeve ; LinkedIn: /in/skeeve 
> <http://linkedin.com/in/skeeve> ; Expert360: Profile 
> <https://expert360.com/profile/d54a9> ; Keybase: https://keybase.io/skeeve
>
>
> On Thu, Sep 22, 2016 at 10:58 PM, Kristoffer Sheather @ CloudCentral 
> <kristoffer.sheather at cloudcentral.com.au 
> <mailto:kristoffer.sheather at cloudcentral.com.au>> wrote:
>
>     Rule #1 - never negotiate with terrorists.
>     ------------------------------------------------------------------------
>     *From*: "James Hodgkinson" <yaleman at ricetek.net
>     <mailto:yaleman at ricetek.net>>
>     *Sent*: Thursday, September 22, 2016 10:56 PM
>     *To*: "Michael Bullut" <main at kipsang.com
>     <mailto:main at kipsang.com>>, "Australian Network Operators Mailing
>     List" <ausnog at lists.ausnog.net <mailto:ausnog at lists.ausnog.net>>
>     *Subject*: Re: [AusNOG] Ransomware...
>     Nuke the machine, restore from backup.
>     Pub?
>
>     James
>     On Thu, 22 Sep 2016, at 22:45, Michael Bullut wrote:
>>     Greetings Team,
>>     Anyone that has succeeded in eradication without sending a ransom?
>>     Warm regards,
>>     Michael Bullut.
>>     ---
>>     *Cell:* /+254 723 393 114./
>>     *Skype Name:* /Michael Bullut./
>>     *Twitter:*//**@Kipsang <http://twitter.com/Kipsang/>//
>>     */*Blog: *//http://www.kipsang.com//*
>>     *E-mail:* /main at kipsang.com <mailto:main at kipsang.com>/
>>     /---/
>>     _________________________________________________
>>     AusNOG mailing list
>>     AusNOG at lists.ausnog.net <mailto:AusNOG at lists.ausnog.net>
>>     http://lists.ausnog.net/mailman/listinfo/ausnog
>>     <http://lists.ausnog.net/mailman/listinfo/ausnog>
>
>     Message protected by MailGuard: e-mail anti-virus, anti-spam and
>     content filtering.
>     http://www.mailguard.com.au/mg
>
>
>     Report this message as spam
>     <https://console.mailguard.com.au/ras/1PiQVdD2wb/EO2vpAoqT19a9Dnr06wpm/0.212>
>
>
>
>     _______________________________________________
>     AusNOG mailing list
>     AusNOG at lists.ausnog.net <mailto:AusNOG at lists.ausnog.net>
>     http://lists.ausnog.net/mailman/listinfo/ausnog
>     <http://lists.ausnog.net/mailman/listinfo/ausnog>
>
>
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20160923/f731ea6b/attachment-0001.html>


More information about the AusNOG mailing list