Th3 Core

Why We Are Here => Hardware & Technology => Topic started by: ergophobe on May 23, 2019, 04:31:29 AM

Title: Hackers have been holding the city of [______] computers hostage for 2 weeks
Post by: ergophobe on May 23, 2019, 04:31:29 AM
https://www.vox.com/recode/2019/5/21/18634505/baltimore-ransom-robbinhood-mayor-jack-young-hackers
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: gm66 on May 23, 2019, 02:17:21 PM
Nasty RSA4096 encryption. I've helped a couple of local companies with lesser attacks but i don't know of any decrypt tools for this one specifically.
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: littleman on May 23, 2019, 05:30:15 PM
I hope Baltimore backed up their data.
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: rcjordan on June 26, 2019, 10:47:00 PM
2nd Florida city pays hackers, as 3rd city faces breach
https://www.macon.com/news/business/technology/article231990407.html
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: Drastic on June 27, 2019, 12:34:59 AM
I was thinking that was a pretty bad precedent to set. This is going to get ugly.
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: rcjordan on June 27, 2019, 01:13:07 PM
>precedent

Prior to this, my feeds have turned up a few small cities being ransomed.  So this definitely looks like a trend.

I'm not sure if Greenville NC eventually paid the ransom:

City of Greenville bouncing back from ransomware attack
https://www.wnct.com/news/local-news/city-of-greenville-bouncing-back-from-ransomware-attack/1957044760

IMO, small cities are a perfect target.  Their IT tends to be 10-15yrs behind the times and their IT security is worse.  System management is handed down to the next bureaucrat who takes the job. They learn to run the system but don't know or understand the databases & files.  And city council doesn't want to pay for anything.
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: rcjordan on May 10, 2021, 05:12:36 PM
>perfect target

The Underbelly of Ransomware Attacks: Local Governments | Council on Foreign Relations

https://www.cfr.org/blog/underbelly-ransomware-attacks-local-governments
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: ergophobe on May 10, 2021, 06:33:48 PM
IMO, small cities are a perfect target.  Their IT tends to be 10-15yrs behind the times

As I mentioned previously I think, we had a discussion about this on the utility committee and the operator said we didn't have anything to worry about in terms of hackers. To adjust our small-time systems, someone has to go there and physically turn a dial. There's no aspect of our system that can be hacked remotely except for interrupting the electrical supply.

So you're probably right - small cities and towns have enough sophistication to automate, but not enough to protect it. It's the sour spot.
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: rcjordan on May 11, 2021, 02:56:51 PM
Wait! There's more!

Hackers find easy prey as US ignores one warning after another - U.S. - Stripes

https://www.stripes.com/news/us/hackers-find-easy-prey-as-us-ignores-one-warning-after-another-1.673054


Ransomware gang threatens release of DC police records

https://apnews.com/article/police-technology-government-and-politics-53e54780aa080decbb78d5b88d4ff44b
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: rcjordan on May 14, 2021, 01:49:15 PM
Not just US.

A division of Toshiba also said Friday its European business was the victim of a ransomware attack.

Irish health service hit by 'sophisticated' ransomware attack
https://www.cnbc.com/2021/05/14/irish-health-service-hit-by-sophisticated-ransomware-attack.html
Title: Re: Hackers have been holding the city of Baltimore’s computers hostage for 2 weeks
Post by: rcjordan on February 19, 2023, 05:50:34 PM
<warp>

>easy prey as US ignores one warning after another

Oakland ransomware attack prompts state of emergency

https://www.sfchronicle.com/eastbay/article/oakland-ransomware-attack-state-of-emergency-17786162.php
Title: Re: Hackers have been holding the city of [______] computers hostage for 2 weeks
Post by: rcjordan on May 06, 2023, 04:39:34 PM
City of Dallas hit by Royal ransomware infection • The Register

https://www.theregister.com/2023/05/05/dallas_royal_ransomeare/
Title: Re: Hackers have been holding the city of [______] computers hostage for 2 weeks
Post by: rcjordan on May 28, 2023, 03:29:06 PM
Augusta GA struggles with cyberattack as hackers brag about breach

https://www.wrdw.com/2023/05/26/hackers-say-theyre-holding-augustas-data-hostage-cyber-crisis/
Title: Re: Hackers have been holding the city of [______] computers hostage for 2 weeks
Post by: rcjordan on December 25, 2023, 05:45:38 PM
https://www.fastcompany.com/91002831/us-water-utilities-hacked-cybersecurity

Officials: U.S. water utilities hacked after leaving passwords set to 1111
Title: Re: Hackers have been holding the city of [______] computers hostage for 2 weeks
Post by: ergophobe on December 25, 2023, 11:43:13 PM
I think I mentioned this - I asked our local head of utilities about our exposure and he said that since everything still required someone to physically move a dial or a valve, we were safe from hacking. Our big worry is getting someone to the location in a storm. But cybercrime, not so much. I suspect that is true of most small, old systems. That fancy remote stuff just costs too much and for once that may be a good thing

I'm a little surprised that China is doing this. I would expect China to build backdoors that they can use when they would create the most disruption. Iran makes more sense. For them, any chance to get back at the US is probably welcome and they would want to exploit the vulnerability before it gets fixed.