The University of California has been hit by a ransomware attack that cost the institution $1.14 million.
A ransomware criminal gang called “Netwalker” hacked the university’s servers and encrypted large amounts of data, some of which university officials told BBC News is “important to some of the academic work we pursue as a university serving the public good.”
Authorities advise against companies paying the ransom as there is no guarantee that the attackers will release the data or destroy their own copies of it. It also serves to fund their criminal enterprises. Regardless, the University of California representatives decided to move forward with the negotiations.
An anonymous tip to BBC News allowed them to follow the negotiations on the dark web, which they published on Tuesday. The criminals’ original asking price was $3 million as they pointed out that the University pulls in “$4-5 billions per year.”
The UC negotiator countered with $780,000 saying that the pandemic has been hard on the university’s finances.
After a long afternoon of negotiations, the two sides settled on a price of $1,140,895 to be delivered in bitcoin. The UC is working with law enforcement officials to investigate the case. On Memorial Day, Michigan State University faced a similar situation but took a hard stand to not pay the ransom.
It’s becoming increasingly difficult for businesses to protect themselves against ransomware attacks. Backing up files offline is highly recommended as well as thorough training of staff on cybersecurity. Most attacks start with a single phishing email being opened.
-
Ransomware cartels are fragmenting into volatile splinter groups, warns Met Police cyber chiefNews Commoditized "cyber crime bazaars" and AI data mining are forcing law enforcement to rewrite its playbook
-
New ransomware threat group, The Gentlemen, has become one of the most active ransomware operators, accounting for 10% of all attacksNews NTT researchers warn that the RaaS group is leveraging SystemBC malware to establish covert tunnelling, evade detection, and support rapid lateral movement across enterprise environments
-
Instructure chose to a pay ransom following the Canvas cyber attack – research shows more than half of security leaders would follow suitAnalysis Opting to pay ransoms creates huge risks for enterprises – you’re relying on the word of criminals
-
Ransomware negotiator sentenced for role in major cyber crime groupNews Deniss Zolotarjovs was a key player in a group associated with Conti
-
Threat actors ditch ‘spray and pray’ attacks in shift to targeted exploitationNews A dip in ransomware volumes points to a more targeted approach focused on vulnerability exploitation
-
Security leaders overconfident about ransomware recovery
News Few manage to recover all their data, and many experience business disruption
-
German authorities want your help finding the hackers behind GandCrab and REvilNews Daniil Maksimovich Shchukin and Anatoly Sergeevitsch Kravchuk are believed to have made millions from ransomware as a service schemes
-
The rise of teen hackers ‘makes for a good headline’, but cyber crime activities peak later in life
News With family responsibilities and mortgages to pay, it's not teenagers dishing out malware or carrying out cyber extortion
