The Inner Circle

Expand all | Collapse all

#repost - I love the uptick in ransomware

  • 1.  #repost - I love the uptick in ransomware

    Posted Aug 16, 2021 09:08:00 AM

    #repost from a thread I saw on reddit. Can the uptick in ransomware be viewed as a good thing and a way to weed out inferior companies through some sort of natural selection?

    "Not only are companies who care more about paying breach insurance companies over protecting user data getting exploited, but now companies also have to answer to investors when they can't continue business operations. Unlike breaches where companies just give 1 year of "credit tracking" and they are legally off the hook while some poor guy's credit is ruined for years.

    Now if you don't have backups, or reliable ways to restore those backups then your investors will get mad. This just opens the door for more cybersecurity sysadmins that actually care about security and it weeds out the ones who don't. It is kinda like natural selection in a way and I'm all for it."

    ​​

    ------------------------------
    Olivia Rempe
    ------------------------------


  • 2.  RE: #repost - I love the uptick in ransomware

    Posted 30 days ago
    Seems a pretty perverse argument to me. If we start from the idea that criminal extortion is a bad thing, which I think most people would accept, then it's clear that having more of it is an even worse thing.  The only merit in the argument, I can see, is that defences against ransomware (e.g. fully tested backups) will also give defence against some other threats, so there might be a positive side-effect. Otherwise it's like saying more burglars is a good thing because it makes householders strengthen their home security.  Maybe a criminal could try that as a defence in court!

    ------------------------------
    steve hancock
    Information security consultant
    Acacia Infosec
    ------------------------------



  • 3.  RE: #repost - I love the uptick in ransomware

    Posted 30 days ago

    I saw a similar argument made on Twitter. 

    Whilst it may kill off weakly managed companies, it is not like there is a DNA in companies, selection largely works in animals because they inherit traits from parents who survived. It is not clear the effects of selection will be preserved long term other than say in company norms, and I'd suggest there may be (short term!) competitive advantage in ignoring some security guidance.

    If I was taking the cynical view, all problems resolve themselves somehow, and in the case of ransomware the very worst way is all the companies with weaker security get ransomed.

    I like to believe people in companies can learn from others example, or from near misses, without having to go out of business or pay ransoms first. Although I know companies need systems in place to let them learn from others or near misses, otherwise it becomes very haphazard process reflecting who has the most internal influence.



    ------------------------------
    Simon Waters
    Founder
    Insufficient Entropy
    ------------------------------



  • 4.  RE: #repost - I love the uptick in ransomware

    Posted 27 days ago
    ola boa noite com extorsao ou sem extorsao os dados sera capturado na velocidade da luz voce pode fazer milhoes de email o software de rastreia na forma como voce digitar dentre outras informacoes e sera recuperado de forma bruta o ransomware nao tera mas espaco para pessoas que cometem crimes ciberneticos

    ------------------------------
    Danilo caio da silva vieira silva
    Danilo Caio Da Silva Vieira
    Danilo Caio plataforma general
    ------------------------------



  • 5.  RE: #repost - I love the uptick in ransomware

    Posted 29 days ago
    Edited by Robert 29 days ago
    Well, if these "inferior companies" think they'll just get the Cyber Insurance to cover the breach costs, they've got another thing coming according to this recent report: Howden Cyber Insurance - A Hard Reset report_1.pdf (howdengroup.com)

    "All the content provided in the pages ahead leads to one conclusion: ransomware is now the predominant cyber threat confronting businesses. With the prospect of risk aggregation and systemic events ever present – and reinforced in recent months by attacks on nation states that have targeted critical infrastructures and system providers – the insurance market is retrenching"



    ------------------------------
    Robert Pereira CCSK
    ------------------------------



  • 6.  RE: #repost - I love the uptick in ransomware

    Posted 27 days ago
    In the same mind as this, I have two comments:

    1.  In the last 20 years, insurance companies have changed how or if they offer insurance in hurricane prone areas.  The losses that led to such changes were catastrophic, and the companies simply could not afford to pay such huge claims.  Cybersecurity insurance offerors are confronted with the same scenario.
    2.  Insurance companies offering cybersecurity insurance do so largely in the blind.  This is because they do not have the wealth of data that life/property/casualty policy offerors have on which to base their underwriting activities.  Companies are loathe to share such data due to potential legal and regulatory consequences (there is not yet a "no fault" of doing this), not to mention the reputational and operational impact potential of such data becoming publicly available (which it no doubt would).

    ------------------------------
    Ross Leo, CISO
    Houston, TX
    ------------------------------



  • 7.  RE: #repost - I love the uptick in ransomware

    Posted 28 days ago
    The writer of this post clearly does not grasp how different the ransomware situation is from Darwinian natural selection.  Take the Anthem BCBS breach of 2014.  I would suggest that Anthem is not an "inferior" company.  Granted that when their cybersecurity and privacy met the cold light of day it was found severely lacking.  The event was caused by a deceived employee, and we all know that this can and does eliminate much of the best planned cybersecurity program's elements.  To think that such a program, which relies so heavily on the human element to succeed, could be made safer by some technical alchemy is dangerously naive and absurdly simplistic.

    More to the point, companies have many factors to balance to be successful in their business line.  Cybersecurity and privacy protection are essential elements in that balance, of course, and must be addressed appropriately.  But consider:  Symantec is not a security company - it is a security software developer and seller.  Brinks and Pinkerton are security (physical) companies.  For any company, ensuring adequate (there is no such thing as "perfect security" in this context) cybersecurity is a cost of doing business, as is the cyber insurance, breach protection/prevention/response.  As such, it must be kept in line with other OpEx variable cost line items - not an excuse, simple reality.  Symantec, CheckPoint, CrowdStrike, FireEye, and all the rest do the very same thing.

    Trying to take the human link out of this chain is no answer, and strengthening the human link requires patience and diligence.  If we had the employer-employee mutual loyalty that made the 30-year employee commonplace 50 years ago, this would be easier.  But we don't, and raising the cultural standard to be better and stronger is now a reiterative/generational problem to solve.  Sadly, governments, companies and humans in general rarely display this kind of patience and persistence.

    ------------------------------
    Ross Leo
    Galen Data, Inc.
    Galen Data, Inc.
    ------------------------------



  • 8.  RE: #repost - I love the uptick in ransomware

    Posted 27 days ago
    ola boa noite nao se desfazendo das qualificao das pessoas nem tampouco das empresas que se diz empresas de seguranca ciberneticas ok o software nao aparece da noite para o dia vice e versa certo o software e uma base de conhecimente entre uma pessoa fisica que vem no trabalho de transparencia e confica petante seu trabalho ao decorrer de ano exemplo a empresa ela pode ter 1000 anos mas o servidor armazena tudo e sobre todos existe uma avaliacao de responsabilidade na relacao aos dados de privacidade, o ransomware foi ultilazado por muito por pessoas incapaz estupidas e maliciosas que vem cometer crimes ciberneticos durante aos 50 anos muitas pessoas foram enganadas e dados roubados mas com a modernizacao e um grande caracter de transparencia nos trabalhos de modo global as grandes atividades de crimes ciberneticos serar bloqueadas e removidas  os sites os arquivos detido codificado para que nao venha cometer crimes futuro ok o dever da empresas ciberneticas e proteger os dados clientes nao entrar na intimidades deles nem tampouco vender as informacoes e sim protege-lo por esse motivo o software como muitos ransomware e codificado para bloqueio ok obrigado

    ------------------------------
    Danilo caio da silva vieira silva
    Danilo Caio Da Silva Vieira
    Danilo Caio plataforma general
    ------------------------------



  • 9.  RE: #repost - I love the uptick in ransomware

    Posted 27 days ago
    ola boa noite a preoucupacao das empresas e ter o acesso aos dados do clientes para vender para outras pessoas e logico que chegam uma hora que o clientes dar chegar de ser enganados por pessoas pilantras que se diz manter a seguranca de clientes ( vou descrever para voce o que er seguranca cibernetica ok.... seguranca cibernetica e aonde voce tem seu proprio projeto de monitoramento e sabem programar desenvolver hackear e ter transparencia no seu trabalho e confiaca no que faz muitas pessoas sao enroladas pelas empresas nessa seguinte forma bisbilhotar sua casa buscar evidencias sobre voce colocar cameras escondidas e bem que na  verdade  nao consegui saber de obsolutamente de nada e tambem nao proteger nada o  ransomware esta sendo programado e cofigurado codificado para bloqueio de pessoas inadequada que nao corresponde o perfil de transparencia pela politica de privacidade obrigado boa noite

    ------------------------------
    Danilo caio da silva vieira silva
    Danilo Caio Da Silva Vieira
    Danilo Caio plataforma general
    ------------------------------