Lockbit ransomeware attack

Started by pspdfppdfxhd, September 22, 2021, 05:25:31 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

pspdfppdfxhd

We've had the second lockbit attack in 3 weeks. It encrypts all the files on a server with a .lockbit extension and the hackers are hoping that you will pay the money to unlock your files. Payable in bitcoin I think. I see today that files are being copied back slowly on the server so the IT guy must have been working overnight to fix it from a cloud backup. Hard to say how much work we lost depending on what the date is on the backup coming back in. Seems to be sidestepping our virus/malware software. Not affecting Macs yet, maybe it can't. Not sure how it's getting in but one of our salespeople is suspect, perhaps downloading porn?

:facepalm:

Designia(o_O)


Joe

Sounds like the password on the server has been compromised. What is the software running on the server and version of Windows OS? Do you keep up with security updates? Since this is the second time it sounds like your IT guy didn't properly secure it after the first time.
Mac OS Sonoma 14.2.1 (c) | (retired)

The seven ages of man: spills, drills, thrills, bills, ills, pills and wills.

David

either that or it's an inside job...

IT guy needs to make a caddy payment maybe?



:spy2:
Prepress guy - Retired - Working from home
Livin' la Vida Loca

Joe

Send this guy to have a word with the IT guy.

Mac OS Sonoma 14.2.1 (c) | (retired)

The seven ages of man: spills, drills, thrills, bills, ills, pills and wills.

pspdfppdfxhd

We lost monday and tuesdays data..... lucky actually, could have been worse.

The good news is: I get paid by the hour!

pspdfppdfxhd

Quote from: Joe on September 22, 2021, 07:29:40 AM
Sounds like the password on the server has been compromised. What is the software running on the server and version of Windows OS? Do you keep up with security updates? Since this is the second time it sounds like your IT guy didn't properly secure it after the first time.

I don't know about IT and neither does anyone else here. If the IT guy goofed up, nobody would ever know.


:drunk3: