ฝัง
- เผยแพร่เมื่อ 13 ก.ย. 2022
- All over the world, criminals are locking up important computer systems and demanding crypto as a ransom. So-called ransomware is officially an epidemic, and cryptocurrencies sit at the nexus of the crisis.
In this episode of Cryptoland, we sift through the fallout of a ransomware attack at schools in Afton, Missouri, and our panelists discuss the history and current role of crypto in this booming type of cyber-crime.
Check Out More Here - • CRYPTOLAND
Help keep VICE News’ fearless reporting free for millions by making a one-time or ongoing contribution here. - vice.com/contribute
Subscribe to VICE News here: bit.ly/Subscribe-to-VICE-News
Check out VICE News for more: vicenews.com
Follow VICE News here:
TikTok: www.tiktok.com/@vicenews?lang=en
Facebook: / vicenews
Twitter: / vicenews
Instagram: / vicenews
More videos from the VICE network: www. vicevideo
Follow VICE World News here:
TikTok: www.tiktok.com/@viceworldnews...
Facebook: / viceworldnews
Twitter: / viceworldnews
Instagram: / viceworldnews
#VICENews #News
as a current IT professional, the primary reason companies fall victim to ransomeware, and other scams is most don't value IT until they need to value IT. They will put off upgrades etc to the bitter end. Most budget very small (some not at all) and will not invest in things they don't fully understand.
AMEN
Its like those who hate the police until they themselves NEED HELP
@Hshs Bshs yeah you right lol.. it's unfortunate though
@@Brock_Corb wrong convo bro
@@Brock_Corb Those that pay 1/3 of their taxes to the police and demand competent service? Competent service for themselves and others. Defund the police, even though a bad idea, put a fine point on exactly what they are. A service with customers. If that service not adequate, the customers can stop paying.
Do you know why these groups always manage to get away? Because they ran-somewhere
Good one
Can’t cap that was funny asf
Ba dum tsss
What's amazing to me is all these COMPANIES knew they needed to physically secure their facilities, but never thought they needed to digitally secure everything they connect to the internet. Same thing for IoT consumer products.
they did, but no matter how protected is your castle is just a question of time and technic and it will fall. Nothing is unbreakable
@@ltgdr6298 yes. Its a catch-22 game
@@ltgdr6298 While it's true that no system can be 100% safe, a whole lot of companies aren't even really trying. I've worked at companies that have laughably bad cybersecurity practices even when they are handling sensitive info. They just don't care enough to invest the money needed to properly secure their networks because they don't think that a ransomware attack will ever happen, until it does.
I’ve had this unexpected client (technically not really since I don’t charge her) after working at Office Depot in my younger years.
She’s an elderly lady (75+) who’s been hit with ransomware twice. Every time she’d call me frustrated that her computer is down and you can tell it takes a huge toll on her body. At that age stress can kill you.
It’s frustrating, they need to use their skills for the greater good and stop ruining peoples lives.
good on you
It takes a huge toll on her body?
@@03greedo29 She gets anxious and you can noticeably see her freak out a bit. People of old age can have heart attacks for even the slightest trigger.
lol why didn’t u attack-proof her computer after the 1st ransomware hit? 😎🧐
⬆️⬆️ chat him 👆👆he can help ⬆️⬆️
So many scammers here, Jesus
The problem with the digitization of everything is that there is minimal emphasis on security. Levels of security in the physical world allow us to protect our loved ones and assets. Without the proper cyber security education and physical and financial accessibility, the threat of these hacks will continue to escalate.
Exactly. Companies today should definitely educate employees and hire or make sure they have proper ways to recover from ransomware.
I once stopped a live, running ransomware on a laptop. Fortunately, it was on a single network with no NAS or other devices connected to it, but by the time I logged in and figured how to stop it, multiple files got locked. Have backups, but also keep them disconnected after backup tasks are done!
I have 2 zfs backups on 2 different hardware. They are shut down after every backup task.
or have the backup server pull instead of pushing to it
A simple ransomeware script can be developed in just over 100 lines of code. Companies are to comfortable to think they won’t be attacked. Cheap hardware, insufficient security practices, outsourcing IT. These can all be solved but the bottom line is money. Nobody ever wants to fund these programs until it’s too late.
The response of the authorities worldwide was quicker and better in the early 2000's than it is now. I am amazed that so much people and even institutions actually pay, and doing so make this racket thrive.
There’s more scammers and scams than there was in the 2000s that might be why
The authorities aren't going to catch any of the bad actors - ever. There's no chance of that happening.
@@MattTee1975 not entirely true. Depending on where they’re located…… you never know. Russian and Siberian dark-net threat actors? Of course not. But an American black hat or someone in Canada or Mexico? Very possible, and it has been done before.
@@1teamboy That's fair - but in the interest of having to have files restored/recovered within a couple of days for most businesses, that's why the FBI recommends just paying the ransom
@@MattTee1975 that is true. But you said they’d never catch the actors. What’s that have to do with restoration and getting your files back. I agree though.
Very interesting topic. Thanks for educational info. 👍
these companies should have had backups and done phishing simulations. ransomeware starts with phishing.
honestly in this day and age, everyone should understand what "social engineering" and "phising" is and should be able to spot it like a sore thumb. But I guess some folks just dont get the phrase "too good to be true"
@@TheLazyass111 yet 91% of breaches begin with a phish according to DBIR and Mtrends reports.
@@TheLazyass111 yeah teh bro we can't all be geniuses like you of course
@@TheLazyass111 You're naive to think we can spot all social eng attack. Some are very very clever even security professional can fall for it.
@@jeffGordon852 True. It's like an ecosystem, so scammers are always upping their game. If security professionals & other competent ppl (one of the headlines was of a group that targeted CEOs) can be mistaken, anyone can.
This is funny cause, my sister works for the state, and her part has been ransomed, all there computers are stuck, they literally have to do everything by hand, and the applicants get free passes basically she said, she said they can’t do background searches or anything so they have to take these people on their word. 😂 it’s crazy. I’m not sure if it’s still happening but she told me this like day and half ago..
Which state? There are 50 of them
Someone needs to be held to account either the business state or attacker. As soon as I heard HR then SSN I was like 👍 this info should not be that easy to obtain. The fact they are putting SSN on their computer file systems seems so dumb
Omg which state
Whats the update????
⬆️⬆️⬆️ chat him 👆 he can help ⬆️⬆️
Read up on how to secure your personal systems, and business IT systems if you’re a business owner/manager.
Back up your systems regularly, test your cyber security systems once a year like a fire drill or any other major incident. (Hospitals managers especially should do this, as patients have actually died when they aren’t prepared)
Implement 2FA for all systems, and if a manager make opt-out default vs opt-in, and invest in the best method - security key use by all users - (if your employees are reliable enough to keep track if their car keys, they can keep track of security keys).
Lastly, require admin credentials to override/encrypt any system data to avoid ransomware attacks.
And just to add, companies should be using a hardened backup repo, plus offline archives.
This was known from the outset of the Internet, and yet we develop it anyway. It was never safe to begin with, and it will never be as safe as traditional methods of doing things.
Apparently being able to read data off a website makes you a "Ransomware expert" lol
lol right
It was just a paid add spot for Chainalysis as far as I could tell.
Imagine getting scammed like that.
RIP
Unbelievable in 2022 still a lot of people are not aware of the basics of IT security (soft but also user's behavior)
In our modern culture, we solve for the wrong problem. We try to solve for "how do we limit our exposure to cyber criminals?" What we should be solving for is "what are the factors that create a cyber criminal?" If cyber criminals don't exist then there is nothing to defend from. I know that people today don't understand that. We put far too little resources into understanding why people act the way that they act. This is why we'd rather send people to prison instead of rehabilitate them. Everything is pushed by something else. Flowers do not grow, they are pulled by the sun and pushed up by the nutrients in the soil. In the same way, people are pushed to act certain ways based upon the configuration of their environment. Change the environment and you'll get different behavior. People in the future will understand that just as clearly as we understand evolution today, but people today do not understand it.
As someone who is studying for their Bachelor's in Cybersecurity and has their Associate's in Public Safety I can tell you that your vision is impossible for a multitude of reasons.
What creates a criminal whether it's cyber or usual can be for greed, mental reasons, or they are desperate. Now there are possabilities that your methods would work on a select few, however most criminals do not think like you or I. Let's say we do pool all of the resources we can into rehabilitation and psychology, even with all of those workers and resources availaible I can gaurentee a majority of criminals either don't care about getting better, they are mentally gone to the point where they can't get better, or they want to get better but they end up always falling back into their criminal habits. I have seen all of these in action.
You can bring a horse to water, but you can't force it to drink. Along with other matters cybercrime is so different to your usual criminal activities that a lot of crime can come from outside your country. Ransomware can come from anywhere in the world, not just your home country. These things will happen no matter what, just educate yourself and others not to click on that particular link and double check your emails for phishers.
@@agiliteaV It sounds like you're saying that we don't know what factors create a cybercriminal. In a lot of ways, you're right. We don't spend much time trying to figure that out. But you can't KNOW that there is no solution while also not actively looking for one. If we hadn't spent billions of dollars working to send people to the moon, would we have gone to the moon? No. You have to invest time and effort into problems before you can work them out. I assure you that if we don't spend time working on this problem that we won't make any progress.
I work as a software developer in a government institution that is very cybersecurity-heavy. I watch daily as we waste our time focusing on the wrong problems, only to watch them grow. We focus on how to block cybercriminals from causing damage to computer systems and infrastructure. The real problem that we should also be solving for is, what factors lead to the creation of a cybercriminal? If you don't work towards solving the second question, we're going to get more of what we already have. More security, more patching, at greater frequency, increased training of staff, and guess what, more actual damage to government property. Which means, all of the mitigations that we have in place, all of the security programs, are not a solution. All of this is one giant band aid.
The good news is that there are people working on understanding human behavior and they have made great strides not only in the last 50 years, but even in the last decade. Why don't we start there? What factors lead to the creation of a murderer? We've made great strides in answering that question. By the way I'm not advocating for rehabilitation. I advocate for a top-down adjustment of the society with the goal of meeting the mental and physical needs of its inhabitants, the people. That's not what we have now. We have a profit system that rewards people and institutions for all kind of behaviors, many of which harm the people and the environment that we live in. And yes, our environment, the human habitat, is the entire world.
@@SocietyNeedsImprovement We do know what makes a cyber criminal because it's the very same way to make any other kind of criminal.
My point is that nurtureing everyone alone isn't enough, there is always their nature and you can try as much as you like to change someone's nature it's nigh impossible.
We make jokes about racial stigmas and sterotypes but more times than not it's true. Why? because it is in our genetic code to do things and act a certain way as much or even more than what we were taught or raised to act.
I agree some people can be helped, but I am saying there will always be those criminals who take away freedoms of others because they can.
**Some** criminals don't think like us. They're irrational and either don't care to get help or pretend to do so just to get their way.
@@agiliteaV Saying that it's in someone's nature to behave a certain way is a cop-out. It assumes that people are fixed. If that was the case, no one would learn a new language. The fact is that there are lots of cultures around the world with a wide range of values and beliefs. They're not all the same. They don't speak the same or act the same. Some cultures exist without money systems and give things to each other without the expectation of something in return. The Amish, for example, have next to no reported deaths from murder. Even DNA isn't fixed. Our environment is so strong that it actually changes our DNA. This is the field of epigenetics.
I think that there's some truth in the fact that some people are so damaged in their current state that it's tremendously difficult to make major improvements with them. So then start with something easier. Let's ask how to raise the next generation of children so that these behaviors don't come about.
Most nursing homes are wide open as a nurse with some tech experience it’s scary
great episode!
I work at a library and have gone a month without new titles because our book wholesalers had a problem with ransomware.
⬆️⬆️ chat him up ⬆️⬆️
Staff must be trained and bring them up to speed with all these new threats.
Nah, then you'd have to take away from their high production slave labor
It's crazy to see all of this developing in real time..
90% of the IT guys working at these corporations have zero idea what they're doing. Had a big company I do work for get ransom wared not once, but twice. Couple million dollars and a new IT guy later, they're MORE secure but not completely.
I work in crypto compliance. Good job getting this stuff out there guys.
You'd have to live under a rock to not know about this. This reporting is lacking and not as good as Vice used to be
Ever heard of offline 3TB tapes?
Good backup material
"Protect Your System Amigo" Lol
"Stay thirsty my friend" lol
This type of thing makes me nervous because people that have that power and skill to do something like that to people
what kind of school district buys ROG gaming rigs and MSI screens for their computer labs???
E-Sport school of course
rich white districts.
the weirdest bit is that because of the hack, they had to do their classes online that day. christ
bro i was thinking the same thing how did the school afford the budget 💀
is this why Cyber Security is like the fastest growing sector within IT? I recently applied to a Cyber security course at uni
Well it's the fastest growing because the need to secure tech which every business relies on is growing.
Yea, if I were you I would 1000% build your resume and career around the sector if you enjoy it. Or atleast start out in the field if u like it.
4th industrial revolution and the pandemic have made us use much more technology based solutions. We are even running out of chips.
@@davidferreira9731 are you working in the cyber security sector?
True, cyber security, secops, infosec, is one of the fastest growing sectors in tech. Esp with the use of public cloud and Containers.
Similar to the changes that had to happen after 9/11 this is a weakness that will probably get taken advantage of in a massive way before the government really makes systemic changes.
You talk like the government has a choice.
Best way to protect against ransomware is to have offline backups and NEVER PAY
I almost closed this video when the guy said "HyperBOWL"
I’m from the hood. Ransom involves kidnapping, this is crazy. The world might be a little better with less need for money. If that could work somehow
I really want to learn how
Look how many scammer are in these comments
Unfortunately, Netwalker was most likely up the next day under a new name and continued business as usual, just like a boiler room.
Damn.
Double extortion is CRAZY
Its Over my head but thank goodness we have people that do to arrest these cyber criminals and the guy standing on the classic Camaro and GTR with his sneakers on
If u start up ur pc in save mode u can work around it
Not always
Bit coins is the worst thing for criminal activities
⬆️⬆️ chat him 👆👆he can help ⬆️⬆️
Here comes the "security measures" .. sigh ugh
Lmfaooo just turn off your computer
I know very little about computers, but sure seems like computers should be partitioned. Have the internet browsing / email in a partition and the other network related stuff in another partition.
Would never happen to germany...
We still use overhead projectors
isn't this a reupload?
I heard about the dark web when I was reading an RollingStone article on it. That was 2015. That was when I went to the Apple Store because my phone was stolen. I had gotten my iPhone back the same night, but the thieves had changed my passcode on the phone. So I had to make an appointment at the store to fix the problem
⬆️⬆️chat him ⬆️⬆️
So what you're saying is..if I didn't study for my exam next week I can just send my teacher some ransom ware and infect the whole school so they cancel class.. That was my big takeaway 🤔
Great job vice! You make a video about scammers and your not even deleting all the bot comments trying to scam in your video!!!!!!!!!!!!!
Go back to using paper. Technology is inherently vulnerable. Floppy disk. Cd-Roms and flash drives for sending a co-worker info.
Just try to get work more offline.
Not everything needed internet to function when I was growing up.
Laptops shouldn’t be required by students to use in education.
Go back to paper, pencil and chalkboard.
Lol
3:50 lmao they forgot to blur the screen
This will lead to businesses storing their data on the blockchain. I mean that's one of the major functions of the technology
At a cost of $76,000/GB I don't think so.
Hyperbole is pronounced hyper-buh-Lee 😂
That's not hyperbowl! 😂
Give him a break, they learned that word last week
might be a British pronunciation? They pronounce some things differently for some reason, even some words that aren't spelled differently.
@@moogle68 i am British and we definitely don't pronounce that way
@@incars1000 didn't think so, but wasn't positive. The way this guy says it sounds like some Chinese (or in his case, British) knock off of the annual Superbowl in American Football 😆
Could you please talk about AMZFS9 it’s very strong and took off in short time thanks.
"...and that's not hyper-bowl"
That made me chuckle. Do brits actually pronounce hyperbole (HYPER-bowl) that way ? (instead of hy-PER-bo-lee)
It's Pronounced 'Hyperbole' where I come from...
-bole as in -hole
3 min ago posted and was on my recommended
10:30 but we have seen cyberattacks target nuclear power plants… it was called stuxnet.
Great episode ⭐
5:37 wtf kinda pcs they got at that school lmao
That lady was bamboozling clients “what are the centers of gravity for disruption”
Yeah, her whole clips was hilarious. I kept waiting for her to say a sentence that actually meant anything, but all she did was use vague language and terms that sounded technical and professional, but that really had no meaning. Either she was intentionally not explaining how they did anything to keep it from being used by others, or she was just one of those people that simply had enough money to start a company, and a couple of connections to people that were talented enough to make it work moderately well.
That is a real cyber security term. Think about it - if someone knocks you off your center of gravity, you’ll fall over
@@camtap757 it's literally an unnecessarily long way of saying "most influential target" or just "the leader" of an operation. I get what it means, but coming up with unnecessary, complicated and/or catchy phrases and/or words that just confuse newcomers and those not in the trade is something every industry seems to do for some reason. If a profession has to create a 'lingo' just to sound more intelligent/professional, or to prevent customers from understand how to do the work themselves, then that's just pathetic.
I'm not saying that these criminals should get away with it but I don't understand why more of them don't require monero
Did you even watch the whole video? Your average person has no clue what Monero is but the word Bitcoin everyone knows now. They're greedy, they do what gets them funds even if its less secure.
@@happydaze1721 Exactly, they can just mix their coins themselves.
@@freshaquatics3652 Not to mention you can't buy Monero in the US straight up you have to swap for it.
Where's the crypto marketplace for local food?
She said 2021 is on pace to surpass 2020 in ransom-ware ... so you created this a year ago and are just now releasing it.... go Vice!!
Pretty sure they're just re-uploading it. Must be tough times if they're having to recycle content
Any thing some one can do. There's some one out there can do beter.
it feels like this video was just an ad for chainalysis
I have a conspiracy theory that the Rogers outage in Canada this summer (entire internet and cell network went down for a day) was some sort of hack or ransomware attack. the officially story is that it was due to an update... that excuse is very weak IMO
Very soon, big crypto funds, bankers and brokers will be hit by ransonware and the price of btc will go down hard due to fear among institutional holders. Bad for everyone in the ecosystem.
Very thrilling, ofc the companies who get hit wont be so thrilled.
An observation here would be that inspite of US’ technological prowess, their companies are increasingly falling prey to such attacks.
India and its companies by comparison are doing much better, we rarely hear of such attacks here.
Is it that our firms and their tech talent have all their bases covered, or are cyber-criminals not interested in Indian companies/data?? 😅
You always have to back up your data’s, cybercrime is a big deal now
Absolutely. Also, make sure your backup repo resides on a hardened server or stored offline.
Omg look criminals use the U.S dollar also….omg…
Somehow I don't have any data worth ransoming so I don't particularly care.
I used a RAT to see what my old manager at rite aid was telling the district manager about me. But I found a video of my manager sneaking into the bathroom with a coworker for like 30mins.. they were both married and both guys...
Than I sent anonymous email to his wife and she came in and caught him red handed...
I was working the night his wife caught him, I was dying laughing cause she was screaming "SO THIS IS WHY YOU WANTED ME TO F YOU IN THE ASSS WITH THAT FKN STRAP ON!!"
Funniest sht ever.
Like 2 days later they got fired and like 2 weeks after I got the job I'm at now..
Big business!
I thought he said his name was “Christiaan deVogel” or something like that 😩
Fighting reported at Elizavetovka (14/9)
description
"The Armed Forces of Ukraine attacked Russian servicemen near the village of Yelizavetovka on the border of the Sumy and Kursk regions, but were repulsed and retreated."
Pretty sure this same story was posted on TH-cam within the last 12 months. School getting hacked, etc, same ppl interviewed. Too bad Shane Smith left cause it’s gone downhill over the last 5 years or so. Occasionally solid content
Hey, if anyone found this video interesting, I recommend checking out the podcast called Darknet Diaries. Some pretty wild stuff out there.
AMZFS9 is less that $1 just like the 2012 bitcoin days... time to buyyyyyyyyyyy
How do you feel about AMZFS9 moving into the nft marketplace? Is it still a buy?.
END: fake sentiment block
:P
Since Mr 19 is all played out expect to see whether disasters and cyber warfare occurring as the next false flag
Haven't had a firewall or a virus scanner on my computer in years don't download or click on anything you don't know where it comes from..
Haha you muppet, they are talking about companies with heaps of employees, you have NO CLUE what its like maintaining hundreds of PC's on a network. I see so many companies these days with terrible security practices.
If you use Windows, you've at least had a firewall. That is, unless you went ant specifically turned it off for some stupid reason. It's fine to turn off a firewall if you have a decent Anti-virus program running, but you claim to not have had one for some time, so why would you turn off your only form of defense otherwise, especially since it's a comparatively free way of protecting yourself that's built into the OS?
Someonbe has yet to explain to me how a comprehensive backup and restore policy DOESN't completely blunt this problem. In addition to encryption at rest and encryption in transit. The school used to demonstrate the problem LITERALLY solved their problem by restoring backups. Think the only change you really need to a proper backup and restore strategy. Is air gap storage of backups. Though given the current technology level of the ransomware. If you can store the backups on a drive partition that requires a reboot to access. Then you dont need the air gap so much.
As for the comment crapping on crypto/bitcoin. It is only for criminals. If your definition of criminals is expanded to include anyone the banking system refuses service to and is unable to service. Does that population include actual criminals yes. But the population is not entirely made up of criminals. The fact that criminals can leverage bitcoin/crypto in this way literally demonstrating why it is a good thing. As it demonstrates that no longer can government decide who has access to money. What they get to decide is who your allowed to transact with.
cool
POV : Your boss has sent you an email
I think what is needed to combat cybercrime is strong laws, make all crypto currency illegal, major penalties and a declaration of war. It is needed to allow funding and military resources to suppress this.
Make murder illegal so people don't do it 😂 foolish statement
floppy disk gang and yeah ICBM ain't getting hacked lol
it hasn't changed much, its not helping artists. it helping criminals
Meanwhile the schools port 8080 is wide open for business. Lol
The smart ones ask for Monero or Zcash which you can't trace on the Blockchain.
I'm sure those who paid on non-privacy coin is still being tracked.
If you didn't do anything you're embarrassed of this wouldn't be a thing
Watching this episode of Cryptoland opened my eyes to the alarming rise of ransomware attacks worldwide, especially the recent incident in Afton, Missouri. Checked out the video at th-cam.com/video/TPrk8B7jOw8/w-d-xo.html - and I couldn't help but think that Parablu might be a market fit for tackling these issues. Their innovative approach to data protection could be a great solution in the fight against ransomware.
Left grey sweater guy is based AF. Crypto is not a currency, you speculate with it like gold.
Currency is anything that is generally accepted to have value as a medium of exchange so that it can be traded for goods and services.
Ransomware only works if you pay smh
It exists because it works. Are you a cretin? You attack enough people and a percentage of people will feel they have no other option in that moment but to pay. Some elderly people might not even question the legitimacy of it. Trust me it works and it wouldn't be out there if it didnt
ransom only works on dumb IT's. anyone with half a brain would restore offline back ups and replace the hard drives.
Or until your sick of getting shocked, incapacitated and driven crazy by psychological manipulations.
AMZFS9 has as much potential as ethereum. But unlike ethereum it has a bigger growth potential.
Coooool, yet another ''blessing'' unleashed on this world by crypto and crypto greed.
people using malware and hijkacing systems isn’t “crypto” …. some people use cash for illegal purposes, does that mean we should ban all cash??? schmuck
@Sion Barzard Ransomeware existed before crypto ever existed. So what are you saying?
@Alessandro Plomo never seen a better advertisement for Communism ty
@@ZeroKool_ They're saying they don't understand ransomware, but they really hate crypto. It's like saying the US dollar is evil because it enables drug dealers and organized crime
It always seems as though vice is against bitcoin.
go back to sleep, michele
Michele I know your portfolio in crypto is red right now
You are correct. They aren't interested in talking to real experts or having un-biased discussions. They're always good for a laugh though 😂
Shout out NCFTA!
Why is this pretending to be new? This is from 2021. Why isn't this stated anywhere. It looked familiar.
chainalysis doesn't work with Monero sooo