cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Johnson
Newcomer I

A ransomware attack is holding Baltimore's networks hostage

 

Baltimore city government computers were infected with ransomware Tuesday, the mayor’s office said, the second time in just over a year that hackers demanding payment disrupted the city’s technology systems....

7 Replies
Flyslinger2
Community Champion

Not to be contrary but because it's my nature I am going to slightly refute the title.  

 

Ransomeware is NOT holding Baltimore hostage. The absolutely horrific politicians of Baltimore are holding Baltimore hostage. This is small potatoes compared to what has been going on in that city for years.

 

And honestly. Grinding that city to a halt would be a good thing.

 

I am a Maryland resident who has heard daily the issues of Bmore.

rslade
Influencer II

> Johnson (Newcomer I) posted a new topic in Industry News on 05-09-2019 05:05 AM

 

>   Baltimore city government computers were infected with ransomware Tuesday,
> the mayor’s office said, the second time in just over a year that hackers
> demanding payment disrupted the city’s technology systems....

 

Backup.

 

I keep telling people, backup, backup, backup ...


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Flyslinger2
Community Champion

Friend of mine's company was hit with RansomWare. Even the backups for the last two months were infected-cloud and on-prem.

TXWayne
Newcomer II

Speaking of ongoing disasters, this is also a pretty significant one.....https://krebsonsecurity.com/2019/05/whats-behind-the-wolters-kluwer-tax-outage/

dcontesti
Community Champion


@Flyslinger2 wrote:

Friend of mine's company was hit with RansomWare. Even the backups for the last two months were infected-cloud and on-prem.


Sorry to hear, but hopefully they have backups older than two months?  The main issue is that you never know when you got hit.  I am surprised however that more folks are not implementing protection.

 

MHOO

 

d

 

denbesten
Community Champion

@Johnson wrote:

... infected with ransomware ....



@rslade wrote:

Backup.


Offline Backup.

 

Also, offsite != offline and synchronization != backup.

denbesten
Community Champion


@dcontesti wrote:
...hopefully they have backups older than two months?  ... more folks are not implementing protection.

Even worse, data retention policies shove the bar in the wrong direction.  The theory being is that backups make things discover-able and therefore ought not out-survive the data with the shortest retention period.  GDPR also risks shoving it the wrong way -- if I "erase" someone, do I need to do so on the backups or do I just toss them sooner?