undefined | Better HN

0 pointsTZubiri4y ago0 comments

Why not?

Why would you assume an attacker uses all of the best cloaking tactics?

This doesn't seem like a complex attack at all: monitor common 0 day vuln feeds, attack, install off the shelf ransomware sold by 5$.

It might as well have been a script kiddie.

0 comments

acdha4y ago

That’s my prediction: these guys are like bike thieves who found out the hard way that they just stole a bike belonging to the police chief and so it’s actually being investigated rather than written off. I don’t think they were remotely prepared for this level of scrutiny.

mike006324y ago

My thoughts exactly. Isn't the tactic to phish multiple potential victims and then they just get email responses from the victims whose data was caught? From the attackers' perspective they could have accidentally made a big catch instead of "targeted critical national infrastructure".

acdha4y ago

I’d bet that’s exactly what happened. These guys don’t want a big deal, they want a quick payment from the company’s insurance company and moving on.

j / k navigate · click thread line to collapse

0 comments

acdha4y ago

mike006324y ago

acdha4y ago

I’d bet that’s exactly what happened. These guys don’t want a big deal, they want a quick payment from the company’s insurance company and moving on.

j / k navigate · click thread line to collapse