232

PandaBuy pays ransom to hacker only to get extorted again(www.bleepingcomputer.com)

posted
by
Avatar
umami_wasabi@lemmy.ml
in
Avatar
technology@lemmy.world
21 comments
hidereport

LOL

Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments
Avatar
Olap@lemmy.world
101 points

Never pay ransomware. Just write the data off. Learn how to take decent backups

permalink
report
reply
Avatar
downpunxx@fedia.io
-7 points
*
Deleted by creator
permalink
report
parent
reply
Avatar
PhobosAnomaly@feddit.uk
3 points

How is someone getting control of their data by paying a ransom?

The opposing actor still has your data, so it doesn’t really matter how much you pay, you’ll never be able to mitigate that security issue, surely?

permalink
report
parent
reply
Avatar
downpunxx@fedia.io
-1 points
*
Deleted by creator
permalink
report
parent
reply
Avatar
downpunxx@fedia.io
-1 points
*
Deleted by creator
permalink
report
parent
reply
Avatar
umami_wasabi@lemmy.mlOP
16 points
*

Not ransomware but just ransom to data exfil by a vulnerable API. But paying is still a dumb idea.

permalink
report
parent
reply
Avatar
downpunxx@fedia.io
-4 points
*
Deleted by creator
permalink
report
parent
reply
Avatar
vvv@programming.dev
6 points
*

"Hi, I just sent the ransom payment to the Bitcoin address you provided.
"Now you’ll unlock my data, right?
“… right?”

permalink
report
parent
reply
Show more comments
Avatar
saltesc@lemmy.world
52 points

It’s bad business to not be honest and trustworthy. If a hacker group is known to always give back the data and not strike twice, they are obviously much more likely to get paid. No one’s paying someone known for ripping off. We see this in company ransomwware all the time. They are friendly, helpful in explaining the breech, and professional. If they were the opposite, they’d be broke.

permalink
report
parent
reply
Avatar
Alphane Moon@lemmy.ml
34 points

It’s an interesting dynamic where the ransomware groups have to be reliable and professional for their business model to work.

permalink
report
parent
reply
Avatar
Neshura@bookwormstory.social
10 points

It was the same with Pirates, if you get a bad Rep with your extortion business you’re just making your own life harder down the line

permalink
report
parent
reply
Avatar
Jas91a@lemmy.world
5 points
*

I mean news like this is the best way to stop people paying, I hope every business that doesn’t pay sends the hackers this article and says this is why

permalink
report
parent
reply
Avatar
tal@lemmy.today
44 points
*

The article says that they weren’t paying to recover their only copy of data, but to prevent it from being leaked:

to prevent stolen data from being leaked

Backups (or more backups) wouldn’t have helped.

permalink
report
parent
reply

Technology

!technology@lemmy.world

Create post

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

Community stats

  • 16K

    Monthly active users

  • 13K

    Posts

  • 592K

    Comments

Community moderators