The City of New Bedford, in Massachusetts, has found a way to deal with ransomware without paying: shoring up defenses, restoring from backups, and rebuilding systems.Good on them. A good data backup strategy cures a multitude of security sins. You can find ASM826's and my recommendations here.
The attack on the American city's systems was identified on July 5, after employees noticed unusual network activity upon returning from the July 4th holiday, Mayor Jon Mitchell explained in a press conference on Wednesday.
"We haven't seen any interruption in municipal services at all," said Mitchell.
The city's Management Information Systems (MIS) staff identified the presence of the file-scrambling RYUK nasty, a sophisticated form of ransomware, and through prompt action managed to limit its impact.
Unwilling to pay $5.3m, Mitchel said he made a counter-offer of $400,000, based on cyber-insurance proceeds available to the city. The cyber-crim declined and the city continued negotiating, buying the IT staff the time needed to bolster defenses and restore files from backups, to the extent possible.
Tuesday, September 10, 2019
A simple cure for Ransomware?
We've seen a rash of ransomware attacks against small towns. This is malware that encrypts all the files on the computer and demands a ransom for a key to decrypt them. Most recently we saw a bunch of towns in Texas succumbing to the attack. But not all towns submit: