Page 2 of 2 FirstFirst 12
Results 11 to 15 of 15
Like Tree6Likes

Thread: Cyber Attack At My Local CC

  1. #11
    dfrecore is offline Emperor / Empress
    Join Date
    Apr 2013
    Location
    San Diego
    Posts
    3,633

    Default

    Quote Originally Posted by cookderosa View Post
    "I received an email about twenty minutes ago saying that the school's servers were infected with a ransomware virus, "

    And I was like "what?" He's a member here! And we are connected on LinkedIn...... oh wait... that's Ransomsoul. He's not a virus. He's a dad. Whew!

    Ok, in all seriousness, $28,000? So maybe I watch too much tv, but is someone really taking such a huge risk of prison time for $28,000? If I were a cyberhacker (control your laughter) I'd ask for WAY more than that. Add a zero.
    You have to find the sweet spot - enough money that it's worth your while, but not so much that they won't pay it. I guess for a CC, that's about $28k! If you asked for a million bucks, they probably wouldn't be able to come up with it. But large institutions can come up with $28k in 5 minutes. I'll bet the hackers can figure out the amount each company is willing to pay. Smart, not to go crazy. And do that a few times, and you're rich (at least, if you live in a 3rd world country).
    TESU BSBA in HR (in progress) - 108cr, only 4 more classes to go...
    GGU Certificate in Management - 2000

    TECEP - Technical Writing 84% (3cr), English Comp II 79% (3cr), Applied LibArts Math 90% (3cr), Public Relations 70% (3cr), Computers 75% (3cr)
    DSST - Intro to Computers/437 (3cr), Prin of Pers Finance/458 (3cr) - 2011 CLEP - Management/69 (3cr UL), Marketing/67 (3cr UL) - 2011

    Penn Foster
    - Financial Management 92% (3cr UL)
    ALEKS - Int Alg (3cr) - 2011, College Algebra (3cr) - 2015 Sophia - Project Management 85% (3cr UL) - 2015 Insurance Inst. of America - Ethics 72% (2cr) - 2015 Kaplan PLA (3cr) - 2015 Add'l ACE Credits (5cr UL) - 2000

    Palomar College
    - Organizational Theory (3cr) - 2015 Mission College (36cr) - 92-98 Golden Gate Univ (12cr UL, 3cr LL) - 98-00 San Jose State Univ (12cr UL, 9cr LL) - 88-89

  2. #12
    mednat is offline Viscount / Viscountess
    Join Date
    Oct 2013
    Posts
    541

    Default

    With the current software available on the market, automatic backup checking should be in the minimum feature set when selecting backup. A long duration persistent infection is a possible attack, however it's unlikely to be effective with crypto varieties, because the goal is not to stay hidden but to be seen. It is pretty typical to keep months worth of backups with the current technology of incremental forward backups, and the cheap cost of disk. At a minimum, even since the 1990's I've kept 7 years of month end backups, for non-transaction data which seems to be what all auditors have asked m. Transaction data I typically keep incremental changes by capturing database log files before purging.

    I would guess this is a case of a school who hired too few staff, or hired staff who did not have enough experience in this area -- or even worse they outsourced it to a provider who told them they had it under control. Backup is one of the items any IT professional learns early on is their first line of defense against the unemployment line -- operations professionals don't skimp on it.
    jsd likes this.
    Currently studying for: University of the Cumberlands - PHD Leadership (2019)

    Done!
    2016 - WGU MBA Mgmt & Strategy
    2015 - Thomas Edison State College - BSBA Marketing & CIS

  3. #13
    davewill is offline Duke / Duchess
    Join Date
    Dec 2015
    Location
    San Diego
    Posts
    892

    Default

    Quote Originally Posted by mednat View Post
    ...
    I would guess this is a case of a school who hired too few staff, or hired staff who did not have enough experience in this area -- or even worse they outsourced it to a provider who told them they had it under control. Backup is one of the items any IT professional learns early on is their first line of defense against the unemployment line -- operations professionals don't skimp on it.
    It also sounds like they timed the lockout to coincide with registration for a new term, putting extreme time pressure on any restore efforts.
    Accepted to Georgia Tech's Online MSCS program for Fall 2016.
    TESU BA Comp Sci completed. 51 units completed in 20 months.
    TECEP:Env Ethics (2015); TESU PLA:Software Eng, Computer Arch, C++, Advanced C++, Data Struct (2015); TESU Courses:Capstone, Database Mngmnt Sys, Op Sys, Artificial Intel, Discrete Math, Intro to Portfolio Dev, Intro PLA (2014-16); DSST:Intro to Anthro, Pers Fin, Intro Astronomy (2014); CLEP:Intro to Soc (2014); Saylor.org:Intro to Computers (2014); CC: 69 units (1980-88)
    PLA Tips Thread - TESU: What is in a Portfolio?

  4. #14
    TrailRunr is offline Viscount / Viscountess
    Join Date
    Dec 2015
    Posts
    524

    Default

    Obviously, this college is just like the thousands of other organizations that thought it was OK to skimp on IT infrastructure.


    Here is UCSF, a leading hospital in the US, trying to skimp by outsourcing backups and other IT infrastructure to India.


    It's not enough to bring H1B to American soil. The real goal is to move these jobs to India permanently as part of a cloud offering for infrastructure as a service. This is why I'm no fan of those who go to school to become sysadmin/devops/network admins. Choose software engineering, security, MIS, or data analytics/data science instead.
    Last edited by TrailRunr; 01-10-2017 at 08:24 PM.
    TESU BA CS and Math (graduated December 2016)
    Courses/exams for both CS and Math: SL Calc 1, SL Calc 2, APU Linear algebra, TESU capstone
    Courses/exams for CS: TESU Computer Architecture, DSST MIS, DSST cybersecurity, CSU-Global System Analysis, rest B&M courses from the past
    Courses/exams: TESU College Geometry, TESU Mathematical Modeling, edX differential equations (2 courses), rest B&M courses from the past

  5. #15
    mednat is offline Viscount / Viscountess
    Join Date
    Oct 2013
    Posts
    541

    Default

    Ready for your CLEP exam?

    Study for your exam using the same CLEP Study Guides used by thousands of members of this discussion forum!


    Quote Originally Posted by TrailRunr View Post
    Obviously, this college is just like the thousands of other organizations that thought it was OK to skimp on IT infrastructure.


    Here is UCSF, a leading hospital in the US, trying to skimp by outsourcing backups and other IT infrastructure to India.


    It's not enough to bring H1B to American soil. The real goal is to move these jobs to India permanently as part of a cloud offering for infrastructure as a service. This is why I'm no fan of those who go to school to become sysadmin/devops/network admins. Choose software engineering, security, MIS, or data analytics/data science instead.
    I don't disagree with the move of IT to other countries, but I can definitely say it's not limited to operations. In my career, i've seen more development jobs go overseas than operational. Business Analyst roles are typically the positions that stay, those who type the code often do it off of spec sheets submitted by the BA with little to no interaction with the end-user in many large organizations.

    I don't agree with the model, and I have voiced my concerns every time I hear it suggested, but that is the trend. From what I've seen it's not cheaper, easier or faster. It's just easy for a sales person to present in a way that makes it appear to be cheaper, easier, faster. As connected as we are, there is still a significant cost for culture differences, and a journey across the globe. Informal interpersonal communications almost always play a larger role in organizations than executives think. This link between IT and business is severed pretty abruptly in this type of outsourcing situation.
    Currently studying for: University of the Cumberlands - PHD Leadership (2019)

    Done!
    2016 - WGU MBA Mgmt & Strategy
    2015 - Thomas Edison State College - BSBA Marketing & CIS

Page 2 of 2 FirstFirst 12

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10