- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
We were hacked today - Ransomware
Posted on 11/19/18 at 6:03 pm
Posted on 11/19/18 at 6:03 pm
I own an architectural signage company and today we were hacked. We were infested with a ransomware called Ryuk and the bastards want $11,000 (or 2 BTC) to release our files. We know exactly where this originated from, one of our employees opened a file that they shouldn't have about 10 days ago and now here we are. We came into the office this morning and our entire operation was shut down. We ended up sending everyone home as it was going to take all day to backup our files, which luckily about a year ago we spent a small fortune on our backup solution. We spent approximately $7k on a DATTO box and then the upkeep is approximately $600/mo, which at this point is well worth it.
Tomorrow is going to be a new day but our IT company is going to have to essentially clean every computer which means reloading Windows and starting from scratch.
This thread is no more than a make sure that if you own a company or are in a position where technology is your career, to have a backup solution in place. If we didn't have DATTO then we would probably be negotiating with the hackers right now.
Tomorrow is going to be a new day but our IT company is going to have to essentially clean every computer which means reloading Windows and starting from scratch.
This thread is no more than a make sure that if you own a company or are in a position where technology is your career, to have a backup solution in place. If we didn't have DATTO then we would probably be negotiating with the hackers right now.
15
Posted on 11/19/18 at 6:18 pm to CHiPs25
My computer has a backup image made every week by IT and images are stored for three months. In addition, I have a local USB backup that is scanned every evening. One of my coworkers got random ware and lost everything until he sent it to IT and they reimaged his computer.
Posted on 11/19/18 at 6:51 pm to HubbaBubba
The one thing that we weren't doing is backing up the individual machines. We have advised everyone in our organization that we were not backing up the machines and not to put anything they didn't want to lose on it. We do not need to backup the machines with the DATTO as that's another couple of hundred bucks per month, but I think we can use a inexpensive or free backup of the machines into the cloud each week.
Posted on 11/19/18 at 7:17 pm to CHiPs25
quote:
This thread is no more than a make sure that if you own a company or are in a position where technology is your career, to have a backup solution in place.
fricking this. I'll add that it is important to practice a recovery before you need it. Buy new hardware that is bare metal. Now do a complete restore without having any access to your existing machines.
If you can't do it smoothly, you aren't ready.
Posted on 11/19/18 at 7:53 pm to CHiPs25
anytime we have a customer come to us with this. we only have three options really.
restore backups or
start googling nearest bitcoin atm or
start from scratch(not really an option)
restore backups or
start googling nearest bitcoin atm or
start from scratch(not really an option)
Posted on 11/19/18 at 7:55 pm to CHiPs25
anytime we have a customer come to us with this. we only have three options really.
restore backups or
start googling nearest bitcoin atm or
start from scratch(not really an option)
restore backups or
start googling nearest bitcoin atm or
start from scratch(not really an option)
Posted on 11/19/18 at 8:23 pm to CHiPs25
Your IT company should be fired immediately for not using bitlocker and app locker. They are free MS apps and easy to manage
We have had zero instances of malware or ransom ware despite some seriously stupid moves by our employees.
We have had zero instances of malware or ransom ware despite some seriously stupid moves by our employees.
This post was edited on 11/19/18 at 8:25 pm
Posted on 11/19/18 at 9:07 pm to Tigeralum2008
We will definitely be discussing this with them after they fix it.
Posted on 11/19/18 at 9:38 pm to CHiPs25
This shite is a huge fricking deal in healthcare. We are staring to put fortigate firewalls behind all of our instruments to protect us from the hospital network (and vice versa). If my moms cancer treatment would have been impacted a day because of one of these frickers I would go insane.
Posted on 11/19/18 at 9:44 pm to Tigeralum2008
quote:
Your IT company should be fired immediately for not using bitlocker and app locker. They are free MS apps and easy to manage
We have had zero instances of malware or ransom ware despite some seriously stupid moves by our employees.
I'm not familiar with AppLocker, but Bitlocker is only going to protect drives that are locked (at rest), though the whole Secure Boot apparatus protects against root kits and tampering with boot files. BitLocker's not going to help if someone downloads a program that proceeds to do its own encryption of their Bitlocker-encrypted files on an unlocked volume.
Posted on 11/19/18 at 10:23 pm to CHiPs25
quote:
Tomorrow is going to be a new day but our IT company is going to have to essentially clean every computer which means reloading Windows and starting from scratch.
Microsoft System Center Configuration Management image deployment would help tremendously.
One thing about backups, make sure they are encrypted..
Posted on 11/19/18 at 11:28 pm to flyAU
quote:
This shite is a huge fricking deal in healthcare.
I worked at a hospital that got hacked. That was not a fun 2 weeks.
It got put on diversion which helped, but taking care of people without computers in a system designed to do away with non-computer charting was awful. Even still when they go down from time to time, that hospital "downtime" plan was not great.
And as for the backups:
Previous life for me was in a state government IT position. We had an off-site server with tape drive backup. We did not have a remote backup, though if I were dealing with an operation like that today, I'd probably argue we need it/would benefit from it.
I had 4 "daily" tapes for Mon-Thurs
I forget the number of weekly tapes, but it was definitely over 30 and I want to say 60. These were made of Friday and the reason I didn't have Friday tapes
I had 11 monthly tapes and then lept a December copy as an "annual" going back a handful of years (I believe from when this backup was implemented. Maybe 5-7 years)
Posted on 11/20/18 at 8:02 am to CHiPs25
I work in IT and a major part of my job is backups and replication. Not only do I need to verify backups ran, but I need to do a test restore of them every now and then.
Posted on 11/20/18 at 8:14 am to Chimlim
so what is the best "free" solution for your home computers? Is windows backup sufficient to a spare HDD in my computer? or should it do to an external drive?
Posted on 11/20/18 at 8:15 am to CHiPs25
We're a medium sized glass company and we went through this a year or two ago. We had daily backups on tape, but after the attack we hired an actual IT contractor to help us out and they instituted 15 minute backups.
Like you, we did not back up individual machines, which sucked when we had to bring everything back up, but we learned from our mistakes and now backup everything. I even backup files from our CNC machine that I'll likely never need again, but you never know.
Like you, we did not back up individual machines, which sucked when we had to bring everything back up, but we learned from our mistakes and now backup everything. I even backup files from our CNC machine that I'll likely never need again, but you never know.
Posted on 11/20/18 at 8:24 am to BottomlandBrew
quote:can i have it... i have tons of cool shite i want to route on a CNC.
our CNC machine
Posted on 11/20/18 at 8:48 am to CarRamrod
It's highly specialized for heavy glass fabrication. I don't think it would do you much good. But yeah, make me an offer. You've got to come pick it up, though. 
Posted on 11/20/18 at 8:54 am to CarRamrod
quote:
so what is the best "free" solution for your home computers? Is windows backup sufficient to a spare HDD in my computer? or should it do to an external drive?
For home, I use Macrium Reflect. All my PCs get backed up to a NAS.
For work, I retain the Windows Deployment Services images I used deploy the workstation for disaster recovery.
Posted on 11/20/18 at 8:57 am to CHiPs25
quote:
The one thing that we weren't doing is backing up the individual machines. We have advised everyone in our organization that we were not backing up the machines and not to put anything they didn't want to lose on it. We do not need to backup the machines with the DATTO as that's another couple of hundred bucks per month, but I think we can use a inexpensive or free backup of the machines into the cloud each week.
have you ever though about going to a zero client solution aka dumb box so you don't have to worry about backing up every machine.
Posted on 11/20/18 at 9:14 am to foshizzle
quote:
practice a recovery
x billion...
Page 1 of 3
Popular
Back to top
Follow TigerDroppings for LSU Football News