If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)

Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Extortionists attack small business servers encrypting their data

probe · 2010-03-05 15:56:51

Several small businesses in Ireland found their computer systems hacked recently, the files encrypted, and a demand for $700 for the key to decrypt the data left on their systems. It is obviously happening over the internet from some low cost economy given the small amounts being demanded. One suspects that the companies…

05-03-2010 3:56pm

#1

probe

Closed Accounts Posts: 2,055 ✭✭✭

Join Date: October 2005

Posts: 1566

Several small businesses in Ireland found their computer systems hacked recently, the files encrypted, and a demand for $700 for the key to decrypt the data left on their systems. It is obviously happening over the internet from some low cost economy given the small amounts being demanded.

One suspects that the companies in question have Windows Small Business Server systems (or similar) connected to the internet. The hackers are probably using email attachments, or flash websites or malware in .pdf, word or excel files to install keystroke loggers on the victim PCs to capture their admin passwords. They then log into the victim server(s) over the internet and upload their encryption software and encrypt the entire hard drive.

Everyone needs to keep their PCs patched – including software applications – especially office, Flash and Acrobat reader.

Someone faced with this extortion has probably two choices – (a) pay the money and hope they get a key in return that works to decrypt everything or (b) re-format their hard drive(s), re-install the operating system and applications, patch them, restore the data from a recent backup etc.

You really need at least three backups – an onsite backup (eg using a USB hard drive that is disconnected from the system when not being used for backup or restore), another backup kept offsite (eg tape) and a near real-time backup made over the internet automatically in the background (eg to www.carbonitepro.com or similar).

Social networking websites should be blocked by the firewall system – ideally only “safe” websites required for business use (eg online banking) should be accessible from a system running mission critical applications. If necessary one or more separate isolated PCs with their own internet connection should be available for general web browsing.

http://www.siliconrepublic.com/news/article/15466/cio/garda-investing-cyber-attacks-on-irish-businesses

0

Comments

#2 05-03-2010 4:08pm

KoolKid

Moderators, Home & Garden Moderators, Technology & Internet Moderators Posts: 24,789 Mod ✭✭✭✭

Join Date: August 2006

Posts: 24128

This is being discussed over on this thread
http://www.boards.ie/vbulletin/showthread.php?t=2055845632

0

This discussion has been closed.