Linked: Wanted: Disgruntled Employees to Deploy Ransomware

ByMike McBride August 21, 2021August 21, 2021 Reading Time: 2 minutes

Saw this from Brian Krebs recently and just sort of nodded my head. Because, of course this would happen:

“Criminal hackers will try almost anything to get inside a profitable enterprise and secure a million-dollar payday from a ransomware infection. Apparently now that includes emailing employees directly and asking them to unleash the malware inside their employer’s network in exchange for a percentage of any ransom amount paid by the victim company.”

Look, it makes sense at any time, but right now with companies varying sets of rules around a pandemic, forcing employees back to an office, mandating a vaccine if they do, closing offices, etc. there is bound to be at least one person who just isn’t very happy with whatever stance the company has taken.

Would the vast majority of them stoop to purposefully installing ransomware on the corporate network? Probably not, but the hacker doesn’t need the majority, they need 1. Just one person to be so angry, and also unethical, and they are in.

First, don’t be that person. I don’t care how horrible your boss has been, leave, don’t do this. There are plenty of jobs open at all levels, no need for you to stat someone you are this unhappy with. In fact, I’ve seen numerous people suggesting that companies who are making efforts to keep their employees safe, and support their wellbeing should start headhunting from companies that are doing less than that. I fully support this, by the way.

On other hand, as an organization, are you 100% sure you can trust everyone who works for you? Like I said, it only takes one to be tempted by this. It also only takes 1 employee to simply fall for ransomware without doing it on purpose.

A good backup plan, and a response plan, is necessary. Now. Not next quarter, next month, next fiscal year. Now. It takes 1 employee almost no time to unleash ransomware on your environment. That plan you’re making next quarter isn’t going to help you tomorrow.

https://krebsonsecurity.com/2021/08/wanted-disgruntled-employees-to-deploy-ransomware/

Follow these topics: Links, Security

Links | Travel

Linked – The 10 airports where your phone is most likely to get hacked

ByMike McBride July 19, 2018July 19, 2018 Reading Time: 1 minute

The thing I hate about lists like this is that way too many people will read the list of airports, and assume they can be “protected” by just not using Wi-Fi there. In fact, every public Wi-Fi network has vulnerabilities and should never be trusted. Use a VPN everywhere, whether the airport in question made…

Links | Tech

Linked – Best practices for passwords updated after original author regrets his advice

ByMike McBride August 10, 2017August 9, 2017 Reading Time: 1 minute

Yeah, so everything you know about passwords? It might be wrong…. “Burr’s eight-page password document, titled “NIST Special Publication 800-63. Appendix A,” advised people to use irregular capitalization, special characters, and at least one numeral. That might result in a password like “P@ssW0rd123!” While that may make it seem secure on the surface (neglecting, of…

Career | Links

Linked: 4 video meeting rules that should follow us back to the office

ByMike McBride October 13, 2021October 12, 2021 Reading Time: 1 minute

I agree, I have noticed that people do seem to be more aware of when someone else is trying to talk and how they might have interrupted or stepped over them. We absolutely should make time for just socializing. One of my biggest pet peeves about the argument that remote workers just don’t connect as a team and collaborate is that it is possible if you simply intentionally create the space for it. We should trust our employees enough to multitask during the parts of meetings that aren’t really relevant to them, and by all means, we should consider having fewer meetings.

Links

What I’m Sharing (weekly)

ByMike McBride February 3, 2019February 3, 2019 Reading Time: 1 minute

When E-Discovery Became a Thing: Judges Reflect on Court’s ESI Evolution Zero to Sixty in Ediscovery: The Value of On- and Off-the-Job Training Why We Need to Talk about Mental Health Regularly at the Workplace “Not conducting exit interviews on your departing employees? You should be!” A Lawyer’s Obligation to be Technologically Competent – Part…

LawFirms | Links

Linked – IBM’s machine argues, pretty convincingly, with humans

ByMike McBride June 21, 2018June 20, 2018 Reading Time: 1 minute

Lawyers, take note – “While the humans had better delivery, the group agreed, the machine offered greater substance in its arguments. That, IBM said, spoke to the heart of its goal: augmenting human beings to make decisions quickly and with more data than ever before.” In front of a jury, the human lawyer has the…

Career | Links

Linked: Feeling Burnt Out? Maybe It’s Because You Haven’t Taken A Real Day Off In A Year

ByMike McBride May 3, 2021May 3, 2021 Reading Time: 1 minute

Take time off, real time off, not “no meetings during the day but catching up on emails for 4 hours that evening” time off, actual disconnected, unreachable, time away from work. And, encourage the people who work for you to do exactly that too.

Linked: Wanted: Disgruntled Employees to Deploy Ransomware

Like this:

Linked – The 10 airports where your phone is most likely to get hacked

Like this:

Linked – Best practices for passwords updated after original author regrets his advice

Like this:

Linked: 4 video meeting rules that should follow us back to the office

Like this:

What I’m Sharing (weekly)

Like this:

Linked – IBM’s machine argues, pretty convincingly, with humans

Like this:

Linked: Feeling Burnt Out? Maybe It’s Because You Haven’t Taken A Real Day Off In A Year

Like this:

Leave a Reply Cancel reply

Top Posts

Like this:

Similar Posts

Like this:

Like this:

Like this:

Like this:

Like this:

Like this:

Leave a Reply Cancel reply

Follow Me

Top Posts