
The "fix" was out decades ago. Does no-one take backups any more?
An international law enforcement effort has released a decryptor for victims of MegaCortex ransomware, widely used by cybercriminals to infect large corporations across 71 countries to the tune of more than $100 million in damages. The decryptor, built by Europol, cybersecurity firm Bitdefender, the NoMoreRansom Project, the …
How far back do you trust your backups? How far back can you go before what you did since and is now lost is more than the company is worth? Can you go back to last years backup and fill in 12 months worth of blanks?
"According to Europol, the miscreants often spent months on the compromised networks without being detected,"
I trust them as far as I test them. You test your backups, right?
> "According to Europol, the miscreants often spent months on the compromised networks without being detected,"
Do check for that occasionally, too. It is part of the job description.
Oh wait. They changed it to devops now...
Who gives a shit about how long an intruder was inside your network. So long as you can validate that data was not compromised, eg: they just want to steal your shit for secondary ransom. Your extended backups are generally quite valuable.
If your backups weren't valuable, why would these criminals bother fucking with your backups? I mean, time is money - crims have new targets to fuck.