cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion

Organisation held hostage: Canada

Hi All

 

It appears this organisation is being held hostage in Canada:  https://montreal.ctvnews.ca/mobile/hackers-target-city-of-chateauguay-in-cyber-attack-1.4845432

 

I wonder what the local news is stating?

 

Regards

 

Caute_cautim

4 Replies
dcontesti
Community Champion

From the local paper.  You should be able to translate it (there should be an option top right when you open the page), if not let me know and I will translate.

 

http://bit.ly/2xr39n1

 

Additionally, a Canadian Telco has been hit by the same Ransomware.

 

https://www.bleepingcomputer.com/news/security/telus-owned-koodo-mobile-announces-data-breach-stolen...

 

Regards

 

d

 

 

Caute_cautim
Community Champion

@dcontesti   Google Translate is a bit slower, but gets there:

 

Hackers have been holding the City of Château-guay hostage for five days. She is unable to access her data, made illegible by malicious software, our investigation has learned.

The program infiltrated the City network, before encrypting all of its files on Wednesday evening.

Interesting developments - I also noticed a 7Tbps DDoS extortion threat this morning too: 

 

https://exchange.xforce.ibmcloud.com/collection/Purported-Silence-Group-DDoS-Threats-ec26dc6ebf6dcc5...

On 26 February 2020, IBM received a call through the X-Force IRIS hotline from a client regarding a potential attack against their enterprise. The threatening email claimed that a Distributed Denial of Service (DDoS) attack of 7Tbps would be waged against their enterprise if their demands of 50 XMR (Monero cryptocurrency – approx. $4170 USD) were not met.

 

So it is not just Ransomware but DDoS threats as well.  What is next hold the entire smartbuilding to not let people into the lifts or foyer?
 
Regards
 
Caute_cautim

 

 

rslade
Influencer II

Well, first off, it's not all of Canada, it's just Chateauguay.

Second, from the (extremely limited) news story, it sounds like another
ransomware attack.

Yawn.

Been there, done that. Make a backup, people.

====================== (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org
Password must consist of 8-15 alphanumeric characters, 2 of the
Led Zeppelin band members' symbols and brief nudity. May contain
peanuts- https://twitter.com/OhNoSheTwitnt/status/377437751962251264
victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/
https://is.gd/RotlWB

............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Caute_cautim
Community Champion

@rslade   But check to make sure the backup is successful and actually works - don't leave it to chance.

 

Look at the error messages and react accordingly.

 

Regards

 

Caute_cautim