Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Clever CryptoWall Spreading Via New Attacks
Newest First  |  Oldest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
7/2/2015 | 7:45:13 AM
Re: BACKUP!
Haha, thats a funny and interesting "parable". I am definitly going to be using that soon.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
6/30/2015 | 11:44:14 PM
PDs
It's been really disheartening to see police departments/law enforcement agencies in particular give in to ransomware demands.

I'm not sure which is the more depressing aspect of this -- that the organizations that are supposed to protect us are powerless against these attackers, or that they failed to back up their data.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
6/30/2015 | 11:41:56 PM
Re: BACKUP!
Reminds me of a story...

Jesus and Satan get into an argument over who the better programmer is.  They decide to settle it with a 24-hour contest (with God as the judge).

They take their seats before their respective terminals, the contest begins, and they get to work -- furiously typing non-stop.

Finally, a couple of minutes before the contest is about to draw to a close, there is a power outage!  The computers go out, and all the lights go out.

The power comes back on almost immediately, and the contest ends.

God approaches Satan, asking him to show his work.

Satan complains, "The power outage took everything!  I lost it all!"

God then turns to Jesus.  Jesus types in a command at the prompt, presses Enter, and the screen bursts forth with a vivid, colorful display while the speakers pump out Handel's "Messiah."

Satan is agape as God declares Jesus the winner.

"But...how???!!!" says Satan in disbelief.  "I lost my entire program.  How did he do it?"

God looks over at the fallen angel and replies, "Jesus saves."
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
6/30/2015 | 12:54:21 PM
BACKUP!
Can't state this enough. Always back up your important files to a remote location. I've seen this happen first hand and you can easily render ransomware ineffective if they do not have leverage over you. IE) The data they encrypted doesn't matter to you because you have a backup elsewhere.


COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/10/2020
Researcher Finds New Office Macro Attacks for MacOS
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/7/2020
Hacking It as a CISO: Advice for Security Leadership
Kelly Sheridan, Staff Editor, Dark Reading,  8/10/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Changing Face of Threat Intelligence
The Changing Face of Threat Intelligence
This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-15596
PUBLISHED: 2020-08-12
The ALPS ALPINE touchpad driver before 8.2206.1717.634, as used on various Dell, HP, and Lenovo laptops, allows attackers to conduct Path Disclosure attacks via a "fake" DLL file.
CVE-2020-15868
PUBLISHED: 2020-08-12
Sonatype Nexus Repository Manager OSS/Pro before 3.26.0 has Incorrect Access Control.
CVE-2020-17362
PUBLISHED: 2020-08-12
search.php in the Nova Lite theme before 1.3.9 for WordPress allows Reflected XSS.
CVE-2020-17449
PUBLISHED: 2020-08-12
PHP-Fusion 9.03 allows XSS via the error_log file.
CVE-2020-17450
PUBLISHED: 2020-08-12
PHP-Fusion 9.03 allows XSS on the preview page.