HSE/Department of Health Hack (1 Viewer)

my brother is peddling the hypothesis that when coveney was talking to lavrov, he may have pulled out a 'hey, we're on the security council now. how's about you get your lads to pull their claws in a bit?' line.
and maybe the russians did a 'ah here lads, that's a bit much now' with the lads they were happy to ignore/coddle.

make of that what you will.
 
Maybe they're giving the encryption key after getting some of their millions?
thats what I thought but I read around a bit and, apparently this isn't that unusual for them. At this stage they have the data, its been made clear to them that data can be recovered without their help, they change their tactics to get the most value from the data they've robbed. They did the same in Germany before. Gave up the decryption key so the systems could get back online, and started talking about payment for not abusing the data.

Or, maybe they just got their ransom. The wording from Donnelly was very curious. No money was paid by the 'Irish State'. Someone else could have paid it.
 
I think he was trying to be as broad as possible - like if he’d said “HSE DIDN’T PAY!” people would be all “oh so the department of health paid?” If he’d said “no government department paid!” then some would assume that some other part of government paid. Now he says “Irish state” and people are still “oh well someone must have paid.”
 
I guess I don't understand conceptually how paying them fixes the problem.

Paying them (to my eyes) just tells them that they should continue to attack and expect payments in the future.

Presumably they are still able to access the devices, and can pull the trigger at any point in time, either to decrypt or encrypt? If they aren't this moment they likely can be fairly soon.

MS and Apple have purposefully backdoored their OS's and systems upon demands from the US Govt, there exists backdoors in these OSs waiting to be used.

The only way (again in my completely not informed at all opinion) is to nuke everything, set up everything again, and try to restore from backups. Slow, shitty, annoying. But anything else is a guarantee that you're on the list of people that'll pay, and you will be hit.


(This isn't a straw man argument, but it's probably a not very good one. I don't know what I'm talking about here, but I'm curious how these things are dealt with.)
 
The only way (again in my completely not informed at all opinion) is to nuke everything, set up everything again, and try to restore from backups. Slow, shitty, annoying. But anything else is a guarantee that you're on the list of people that'll pay, and you will be hit.
thats pretty much what they're doing. If you look at the doc @magicbastarder linked earlier in the thread about the plan to deal with the attack, thats pretty much what they described.

Its tedious as fuck and is gonna take a long time (less now because they have easier access to the data), but thats the price to be paid for cutting corners with their IT security and infrastructure.

The biggest surprise in all of this is that they weren't hit sooner.
 
thats what I thought but I read around a bit and, apparently this isn't that unusual for them. At this stage they have the data, its been made clear to them that data can be recovered without their help, they change their tactics to get the most value from the data they've robbed. They did the same in Germany before. Gave up the decryption key so the systems could get back online, and started talking about payment for not abusing the data.

Or, maybe they just got their ransom. The wording from Donnelly was very curious. No money was paid by the 'Irish State'. Someone else could have paid it.

Denis o brien.

its trapatoni all over again.
 
thats pretty much what they're doing. If you look at the doc @magicbastarder linked earlier in the thread about the plan to deal with the attack, thats pretty much what they described.

Its tedious as fuck and is gonna take a long time (less now because they have easier access to the data), but thats the price to be paid for cutting corners with their IT security and infrastructure.

The biggest surprise in all of this is that they weren't hit sooner.
Ah... haha. Oops. Fair enough though, paying them seems like the worst possible response. I'd probably take losing EVERYTHING over paying even a token amount, since it will keep happening.
 
20 million is pocket change to him

and they wanted it in bitcoin, and the value of bitcoin has dropped 45% since they announced the ransom. We missed a trick there.

it could be siteserv all over again.
we need to look into how tenders to cyber criminals are awarded.
tribunal anyone?

@pete you might want to delete these posts..
 

Users who are viewing this thread

Activity
So far there's no one here
Old Thread: Hello . There have been no replies in this thread for 365 days.
Content in this thread may no longer be relevant.
Perhaps it would be better to start a new thread instead.

21 Day Calendar

Mohammad Syfkhan 'I Am Kurdish' Dublin Album Launch
Bello Bar
1 Portobello Harbour, Saint Kevin's, Dublin, Ireland
Mohammad Syfkhan 'I Am Kurdish' Dublin Album Launch
Bello Bar
1 Portobello Harbour, Saint Kevin's, Dublin, Ireland
Bloody Head, Hubert Selby Jr Infants, Creepy Future - Dublin
Anseo
18 Camden Street Lower, Saint Kevin's, Dublin, Ireland

Support thumped.com

Support thumped.com and upgrade your account

Upgrade your account now to disable all ads... If we had any... Which we don't right now.

Upgrade now

Latest threads

Latest Activity

Loading…
Back
Top