this post was submitted on 07 Nov 2023
58 points (95.3% liked)

Technology

59390 readers
3596 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
top 10 comments
sorted by: hot top controversial new old
[–] [email protected] 10 points 1 year ago* (last edited 1 year ago) (1 children)

Digging customers out from this is quite literally what I do for a living. Issues aren't always as simple as "don't pay."

The article seemed to be aimed at average desk workers. It didn't contain any data or suggestions not commonly told in phishing tutorials offered by companies.

This is an entry level explanation of a highly complex problem. I would suggest you send it to your grandma or a blue collar friend who doesn't work on computers.

[–] [email protected] 3 points 1 year ago (3 children)

I want to know -

  1. Do the kidnappers (I do not know the term) keep the promise?
  2. What happened after the paying the ransom money?
  3. What else are involved in addition to paying or not paying?
[–] [email protected] 6 points 1 year ago* (last edited 1 year ago) (1 children)

If they don't uphold their promises, they can't repeat the scam. I've dealt with the hackers and they're better tech support than larger corps in many ways. They want you to be successful, in a weird way.

They're dicks for doing it, but when your admin password is "1991mustang" for 16 years, maybe you deserve a lesson in security.

@[email protected] is exactly right in their comments.

[–] [email protected] 4 points 1 year ago (1 children)

My admin pasword is Hunter2

[–] [email protected] 2 points 1 year ago (1 children)

Mine is Password (with capital p)

[–] [email protected] 0 points 1 year ago

••••••••? Like this?

[–] [email protected] 4 points 1 year ago (1 children)

Also do this in my business. 1. Most do. Otherwise there would be nobody that pays. 100% of my insured customers got their data back. I cannot speak on Personal ransomware. I never paid myself. 2. We got the key to reverse the encryption and gave that to the lawyers and then started work on decrypting. 3. Are you insured? Does your insurer pay? Do your lawyers know? How did they get in? Is that fixable? Why wasnt it closed before? Is it fixed now? Is there proof that what happened will not immediately happen again? And lots more lawyer stuff.

[–] [email protected] 6 points 1 year ago

This is my first time hearing involvement of insurance and lawyers.

Thank you for sharing.

[–] [email protected] 3 points 1 year ago (1 children)

They will demand payment in cryptocurrency, usually bitcoin, which is untraceable. There's no guarantee that they will really keep their word; since it's completely anonymous, there's nothing you can do. If you get infected, you just have to accept that your files are gone. The best thing you can do is backup while you still can.

[–] [email protected] 4 points 1 year ago

Make sure some of your backups are kept offline (so that they won't be encrypted along with everything else) and also test that they work regularly! Otherwise they might not do what you think they do.