Monday, November 14, 2016
Ind. Gov't. - "Delaware County investigating hacker safeguards"
Keityh Roysdon reported last week in the Muncie Star-Press:
Delaware County doesn't want to be the next Madison County, particularly when it comes to having information systems held hostage.See ILB post here, from Nov. 9th, on the Madison County attack.
Delaware County officials have authorized their information technology department to investigate methods, including software, to prevent the kind of ransomware attack that recently hit neighboring Madison County.
According to news accounts late last week, Madison County officials acknowledged they had been shut out of their servers and that the hacker responsible had demanded an undisclosed amount of payment to restore control. The county couldn't look up old court records or even use its inmate-booking computer program at the jail. Indiana State Police investigators were in charge of the case.
Sources say Madison County agrees to pay about $28,000 to computer hackers who demanded payment to unlock encryption key following a “ransomware” attack.Here is a more detailed story about the aftermath, including:
Indiana State Police Capt. Dave Bursten said the investigation is ongoing.
“Investigations of this nature are complicated, are rarely solved, and typically involve criminal actors from foreign countries,” he said.
Bursten said the best defense to malware attacks is daily backups to segregated backup sources or to third party backup vendors not on the same system. He said internal backups that are not segregated offer no protection to ransomware attacks
Concerning the payment of a ransom, Bursten said ISP concentrates on the criminal aspect of the investigation and makes no recommendation related to the payment or non-payment of ransom.
“Decisions to pay or not pay a ransom are business decisions,” he said.
Posted by Marcia Oddi on November 14, 2016 09:38 AM
Posted to Indiana Government