224
PandaBuy pays ransom to hacker only to get extorted again (www.bleepingcomputer.com)
submitted 3 months ago by umami_wasbi@lemmy.ml to c/technology@lemmy.world
21 comments fedilink hide all child comments

LOL

all 26 comments
sorted by: hot top controversial new old
[-] Olap@lemmy.world 96 points 3 months ago

Never pay ransomware. Just write the data off. Learn how to take decent backups

[-] saltesc@lemmy.world 47 points 3 months ago

It's bad business to not be honest and trustworthy. If a hacker group is known to always give back the data and not strike twice, they are obviously much more likely to get paid. No one's paying someone known for ripping off. We see this in company ransomwware all the time. They are friendly, helpful in explaining the breech, and professional. If they were the opposite, they'd be broke.

[-] Alphane_Moon@lemmy.ml 31 points 3 months ago

It's an interesting dynamic where the ransomware groups have to be reliable and professional for their business model to work.

[-] neshura@bookwormstory.social 10 points 3 months ago

It was the same with Pirates, if you get a bad Rep with your extortion business you're just making your own life harder down the line

[-] tal@lemmy.today 42 points 3 months ago* (last edited 3 months ago)

The article says that they weren't paying to recover their only copy of data, but to prevent it from being leaked:

to prevent stolen data from being leaked

Backups (or more backups) wouldn't have helped.

[-] umami_wasbi@lemmy.ml 16 points 3 months ago* (last edited 3 months ago)

Not ransomware but just ransom to data exfil by a vulnerable API. But paying is still a dumb idea.

[-] Jas91a@lemmy.world 5 points 3 months ago* (last edited 3 months ago)

I mean news like this is the best way to stop people paying, I hope every business that doesn't pay sends the hackers this article and says this is why

[-] ringwraithfish@startrek.website 8 points 3 months ago

Are ransom attacks on the rise in recent months? Any sites that track these sort of things?

[-] Linguist@lemmy.world 4 points 3 months ago

Closest I can think of would be haveibeenpwned.

[-] TheFunkyMonk@lemmy.world 4 points 3 months ago

Anecdotally, the Seattle Public Library is currently recovering from a ransomware attack and still has major systems offline. Of all targets, a public library is a pretty major low.

[-] BrikoX@lemmy.zip 3 points 3 months ago* (last edited 3 months ago)

Shameless promo !databreaches@lemmy.zip

[-] uriel238@lemmy.blahaj.zone 3 points 3 months ago

Isn't the next step to take the same amount of money and offer it to any bounty hunter that brings back the heads of the hackers (with sufficient evidence to link the heads to the attack)?

Maybe I watch the wrong movies.

[-] Wispy2891@lemmy.world 2 points 3 months ago

Wasn’t panda buy also recently targeted by a joint investigation from Nike and the Chinese government which led to the seizure of many warehouses for counterfeited items?

this post was submitted on 06 Jun 2024
224 points (97.9% liked)

Technology

58062 readers
3014 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world