Next:
TCU @  Utah
ESPN

Anyone hear about this?

Donate in the 2024 Fundraiser! Forums Misc Anyone hear about this?

Viewing 5 reply threads
  • Author
    Posts
    • 08/21/2020 at 9:13 AM #128084
      1
      EagleMountainUte
      Participant

      UofU pays 457k in ransom

      “All what organizations are paying for in this scenario is a pinky promise from a bad faith actor that the stolen data will be destroyed. Whether the groups do ever destroy data is something only they know, but I suspect they do not. Why would they? They may be able to monetize the information at a later data or use it for spear phishing or identity theft.”

       

    • 08/21/2020 at 9:50 AM #128085
      dystopiamembrane
      Blocked

      Comedy of errors

    • 08/21/2020 at 9:56 AM #128086
      2
      Duhwayne
      Participant

      FWIW paying is pretty much what even the “consultants” do.

      https://features.propublica.org/ransomware/ransomware-attack-data-recovery-firms-paying-hackers/

    • 08/21/2020 at 10:09 AM #128087
      6
      Tony (admin)
      Keymaster

      They paid the criminals not to release the data?  SO the criminal has a half a million and can still release the data. Makes sense.

    • 08/21/2020 at 11:55 AM #128098
      Duhwayne
      Participant

      Oddly it’s like random kidnapping schemes. If you kill the victims no one will pay. I’m sure some do both.

    • 08/21/2020 at 12:02 PM #128099
      3
      AlohaUte
      Participant

      So I’m a cybersec professional with primary focus on Cyber Intelligence – where I track some of these groups. It is a strange move that the U paid the ransom to not release data because others are right that they have to trust the criminals.  However, you’d be surprised how business like some of these groups are. What we see researching these more organized groups is they asses business risk like any company does and it is not in their own best interest to release the data to the public because if they do, the word gets out and it makes other victims less inclined to pay to the ransom.  

      However, I’m also confident that there is no way the hackers actually deleted the data they stole and they can monetize it without releasing it publicly. They do that by using the data for other attacks. Whether to attack individuals directly, develop intelligence on them and track their careers to see if in the future they get a job somewhere they want to target, or send phishing emails and compromising their email and using that person’s email to send phishing emails to others who would be more likely to open an attachment or click a link from someone they know.   So the hackers can still make a lot more money while still adhereing to their agreement to not release the data publicly.  

      • 08/21/2020 at 12:18 PM #128100
        3
        EagleMountainUte
        Participant

        I assume the odd amount was Sales tax on internet purchase. 

        It really is alarming the amount of data people store on people.  Giving as little information to the least amount of people is best practice. I almost feel like a data base consolidation at a federal level should take place. Like you can unlock that data to allow access to an inquiring company through various permissions.  Obviously the government isn’t immune from attacks. 

        Word of advice to all: LOCK UP your credit. There is no longer a fee so you can lock those up when you are not using credit. 

        • 08/21/2020 at 7:30 PM #128116
          1
          PhiladelphiaUte
          Participant

          The $457K payable was the University of Utah’s portion of the entire ransom.  Their insurance company picked up the other portion.

          Plus, they had a coupon.

  • Author
    Posts
Viewing 5 reply threads
  • You must be logged in to reply to this topic.