Ransome-ware - Survivalist Forum
Survivalist Forum

Advertise Here

Go Back   Survivalist Forum > >
Articles Classifieds Donations Gallery Groups Links Store Survival Files


Notices

The Tech Zone Discussion on computers, software and games.

Advertise Here
Similar Threads
Thread Thread Starter Forum Replies Last Post
Deputy AG Rosenstein - Americans should be ware of news with "anonymous sources". Re3UBCS General Discussion 10 06-17-2017 08:46 AM

Reply
 
Thread Tools Display Modes
Old 05-20-2019, 04:28 PM
Pitbull_Dallas's Avatar
Pitbull_Dallas Pitbull_Dallas is online now
Survivor
 
Join Date: May 2015
Posts: 9,252
Thanks: 10,697
Thanked 26,841 Times in 7,055 Posts
Default Ransome-ware



Advertise Here

Can someone please explain to me why ransome-ware is so tough to overcome? I understand the risk, but what I don't understand is why a computer or server system can't be backed up daily? If I can do it, they can. Seems all they'd have to do is reformat and reload or Ghost the system. Another option would be swapping out the drives that are already ready to go and reload the data. But, everytime you read a story about someone being hit with ransome-ware it's the end if the world..
Quick reply to this message
Old 05-20-2019, 05:46 PM
KLF KLF is offline
Hunter
 
Join Date: Jun 2011
Location: FIN
Posts: 1,022
Thanks: 76
Thanked 1,074 Times in 565 Posts
Default

I've seen some big servers that have so much data that a full backup doesn't go overnight on tape drives and even incremental may have problems if there is a lot of users doing stuff. Likewise a company having that much data probably has so many workers who use computers that backing them up individually is possible but also costs a lot of money.

So, when a some city or hospital system gets 5-15 thousand computers locked up by ransomware at once it is a juicy bit of tech news :D

Usually just users files in the network are backed up, so the infected computers need to be reinstalled anyways. If thousands of computers are affected that will take time, money and manpower.
Quick reply to this message
The Following 2 Users Say Thank You to KLF For This Useful Post:
Old 05-20-2019, 08:13 PM
hawk55732's Avatar
hawk55732 hawk55732 is online now
The Hawks Nest
 
Join Date: Jan 2011
Posts: 12,537
Thanks: 11,820
Thanked 21,262 Times in 7,763 Posts
Default

Im guessing this has to do about Baltimore?
__________________
Father, husband, son, Marine.

"A terrorist is only as strong as the fear he creates."

"Things you own end up owning you"
- Tyler Durban
Quick reply to this message
 
Old 05-20-2019, 08:32 PM
Corpus Corpus is offline
Hunter
 
Join Date: Feb 2013
Posts: 1,716
Thanks: 1,413
Thanked 2,542 Times in 1,155 Posts
Default

Quote:
Originally Posted by KLF View Post
I've seen some big servers that have so much data that a full backup doesn't go overnight on tape drives and even incremental may have problems if there is a lot of users doing stuff. Likewise a company having that much data probably has so many workers who use computers that backing them up individually is possible but also costs a lot of money.

So, when a some city or hospital system gets 5-15 thousand computers locked up by ransomware at once it is a juicy bit of tech news :D

Usually just users files in the network are backed up, so the infected computers need to be reinstalled anyways. If thousands of computers are affected that will take time, money and manpower.


I think it also has to do with the fact that the “ransom ware” doesn’t declare itself right away. It might be weeks or months before it activates and by then even the backups will be compromised.
Quick reply to this message
The Following 2 Users Say Thank You to Corpus For This Useful Post:
Old 05-20-2019, 08:37 PM
HomeDefense's Avatar
HomeDefense HomeDefense is online now
Bad Dog
 
Join Date: Oct 2009
Location: Hellfire, Arizona
Posts: 3,223
Thanks: 1,871
Thanked 13,119 Times in 2,762 Posts
Default

As someone who has worked in IT off and on for a couple of decades, I can say with absolute certainty that 95%+ of home users rarely, if ever, back up their PCs.

The problem with ransomware is that it typically encrypts everything on the PC.

Most PCs in large businesses with networks do back up files (Word, Excel, etc) or the files are saved on a server. Even if a network of PCs is backed up, it can take a long time to restore all the PCs if everything on the network gets hit. Think about a large business with 1000 PCs getting hit with a ransomware virus that spreads throughout the network. Sometimes it is easier to pay the ransom, although most hackers do not give you the encryption key after payment and there is no guarantee that they won't strike again.

The weakest security link in any network is the employees. Someone's PC picks up the bug while surfing the web of they let it in by downloading something they shouldn't.
Quick reply to this message
The Following User Says Thank You to HomeDefense For This Useful Post:
Old 05-21-2019, 01:08 AM
KLF KLF is offline
Hunter
 
Join Date: Jun 2011
Location: FIN
Posts: 1,022
Thanks: 76
Thanked 1,074 Times in 565 Posts
Default

Quote:
Originally Posted by HomeDefense View Post
The weakest security link in any network is the employees. Someone's PC picks up the bug while surfing the web of they let it in by downloading something they shouldn't.
...and that's why windows updates are forced automatic these days.
Quick reply to this message
Old 05-21-2019, 07:17 AM
gungatim gungatim is offline
Hunter
 
Join Date: Nov 2014
Posts: 1,082
Thanks: 341
Thanked 1,375 Times in 594 Posts
Default

I'm not sure large corporations have all their databases backed regularly. i'm not talking your personal files, documents, etc., i'm talking about their main ERP systems.

my current employer has a customer, very large retail chain, their stores are literally on almost every other corner, fell victim to ransomware last year. missing several months of data to this day. nothing that made the news, or that impacted their business immediately, but for suppliers, not having access to their POS and inventory data made life pretty difficult for a while.

that's the kind of thing people don't think about. disrupts the supply chain and can have an eventual impact on revenue for a short while, so it can be cheaper to pay off the ransomware or just deal with it rather than spending the money on backup storage for historical data.

at least that's what they told us.
Quick reply to this message
Old 05-21-2019, 02:05 PM
STEEPOE's Avatar
STEEPOE STEEPOE is offline
Hunter
 
Join Date: Mar 2011
Location: Dallas, Texas
Age: 47
Posts: 1,672
Thanks: 1,797
Thanked 2,443 Times in 982 Posts
Default

You can't backup a ton of data daily. Our lovely IT department started Friday nights and it would finish on Sunday night. However, we got zinged by ransomeware where they attacked our network and our IT department never backed up one of our servers - you know, for our biggest client. You can see all the data and read them in the preview pane but just can't open them up. People are f'd up.
Quick reply to this message
The Following User Says Thank You to STEEPOE For This Useful Post:
Old 05-21-2019, 04:25 PM
America's Patriot's Avatar
America's Patriot America's Patriot is offline
LEGAL citizen
 
Join Date: Aug 2012
Location: Texas
Posts: 14,601
Thanks: 2,799
Thanked 28,783 Times in 9,475 Posts
Default

Yes, back-up your data and you're only in it for time lost restoring. But most home users don't perform data backups. Also, the really bad ransomwares encrypt all the data. When you are a large corporation with dozens upon dozens of servers to restore, that's a lot of man hours (mostly overtime) to get the restores done.
Quick reply to this message
The Following User Says Thank You to America's Patriot For This Useful Post:
Old 05-21-2019, 04:50 PM
Corpus Corpus is offline
Hunter
 
Join Date: Feb 2013
Posts: 1,716
Thanks: 1,413
Thanked 2,542 Times in 1,155 Posts
Default Ransome-ware

Quote:
Originally Posted by America's Patriot View Post
Yes, back-up your data and you're only in it for time lost restoring. But most home users don't perform data backups. Also, the really bad ransomwares encrypt all the data. When you are a large corporation with dozens upon dozens of servers to restore, that's a lot of man hours (mostly overtime) to get the restores done.


With respect, I think many are missing the nastiest point about ransomware:
It does not lock up your files the second it hits your hard drive... it may be weeks or months before it does that and in that time you’ve backed up your files to a remote drive which is now also infected.

By backing up regularly you are ensuring that all of your files will be inaccessible.

The best plan I’ve heard of (not guaranteed) is to have three or more backups but only use one for a month, then airgap that one while backing up to the other for a month, airgap that one and backup to a third. Then rotate back to the first. Hopefully if you get hit it will only be the first or second backup that is lost. You won’t have your newest files but at least you won’t lose everything.

Edit to clarify:
Actually it would be your most recent back up that is possibly affected. In the above example that would mean that hopefully only the third and maybe second backup that is lost and the oldest, (the first) is safe.
Quick reply to this message
The Following 3 Users Say Thank You to Corpus For This Useful Post:
Reply

Bookmarks



Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Survivalist Forum forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:
Gender
Insurance
Please select your insurance company (Optional)

Log-in

Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.



Thread Tools
Display Modes

Posting Rules
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -5. The time now is 09:03 AM.


Powered by vBulletin®
Copyright ©2000 - 2019, vBulletin Solutions, Inc.
Search Engine Optimisation provided by DragonByte SEO (Lite) - vBulletin Mods & Addons Copyright © 2019 DragonByte Technologies Ltd.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2019 DragonByte Technologies Ltd.
Copyright © Kevin Felts 2006 - 2015,
Green theme by http://www.themesbydesign.net