"so you can infect a company once you get inside, buuut... how can you get inside the company in the first place? well, YOU BUY your way in". i will remember this sentence for the rest of my life PS Jack, you are INCREDIBLE
The issue I have with the FBI and the Kaseya Ransomware is that *supposedly* the FBI had decryption keys for three weeks AFTER the start of the attack....then helped.
Do you realize how common this is that they have information of an attack whether it be physical or cyber and then they let it play out? Instead of preventing it? What the f*** are they paid for?
Fellow ticket jockey here. Good stuff, bud! I've been in IT for 20+ years and this was a fun one! I've been devouring your episodes recently. Thanks for your research efforts, rationality, and excellent presentation!
The existence of response companies to deal with ransomware at first surprised me , then I realized that Somalia forces shipping and insurance companies to react in similar ways but with the added threat of loss of life. I'm left with the feeling that ransomware will be a fact of life, a part of doing business for a very long time.
Wow, the fact that the FBI got one of the guys from REvil is crazy. But I don't doubt that they have some cryber security professionals who do nothing else but hack into people's shit. I remember hearing about robotnik getting indicted!. I always wanted to be that smart and work in cyber with the CIA or FBI. I bet they have some of the most insanely talented cyber guys and gals on the planet. I love your podcast dude. I hope that you get more and more recognition. This level of scripting and seemingly off the cuff takes and stuff is seriously good listening. Reminds me of old NPR news hours that covered specific topics, but way more interesting and with someone who knows what they're talking about
Yeah, the alphabet guys are actually pretty smart. When it comes to the truly terrifying talents and skills...they don't fight them. IF they serve a sentence, it's a minor slap on the wrist, and then they hire them. It's a perfect sales pitch. A get out of jail free card and still get to do what you have a passion for...without a single worry of looking over your shoulder.
A company I worked with occasionally got hit in 2019 with ransomware. Not sure which one, but the rumor was they ended up paying 100K to get their system back. They then got hit 2 more times that year, but after the first one they made backups so they did not have to pay again.
This is why you have a basic protection of storing one backup permanently offline with space enough to keep multiple and have someone manually update it.
All true. Companies just hack companies and then sell that access and there is a whole industry that steps in negotiating the ransoms. They lock everything and have great customer service. It’s so professional.
Wow I can’t believe this. I used to do freelance tech work for some offices around town. One day one got ransomware and we never knew how. Turns out they used Kaseya. Luckily my backups brought them back from the dead. I’m baffled that it didn’t reoccur since they continued to use Kaseya.
Jack, I'm not sure if you will see this, but OMG I love your videos! I'v recommended them to everyone i know who is remotely interested in IT. These videos are such a good source of inspiration for stuff to try. Thanks for making these videos! haha PS: the thumbnails are super cool, I want to make my desktop background rotate between all of them but they are very low rez when ripped from TH-cam, are there full size versions anywhere?
The tire manufacturer in my town Bridgestone got hit with one recently and made new here big time, its a facility that went under big technological update recently . In Joliette Quebec, i wonder if you heard, im aware there are thousand of similar cases tho . Love the podcast
With all these companies getting ransomwared, imagine how many bad actors have access to these companies who aren't ransomwaring them, but just remaining hidden while having access to the companies private info.
FBI did actually call us back! was a thing about a guy who was harrassing and cyber stalking my roommate, but they were pretty dope. 10/10 would recommend to friends
i briefly drove for Uber for like 3 months in 2016 when i was in between jobs - a couple years later i started getting notifications on my phone via the Uber Driver app, that i forgot was still on my phone, that i initially ignored as i hadnt driven for years and had since moved to an entirely different state than the one i drove in... it was a couple days before my dumb ass put 1+1 together and realised the reason i was getting notifications from that app was because someone other than me was logged into it. luckily shutting it down was simple, and no one actually drove anyone anywhere pretending to be me. but they were clearly after something other trying to actually 'work' for Uber under my ID - there was plenty of sketchy personal info of mine for them to access; drivers license #, insurance, etc
I was just talking to my girlfriend about how half the time my doordash and ubereats drivers are not the person the app says its going to be (often they’re completely different genders) I thought something like this might be happening.
To answer the question, the FBI doesn’t really give a crap about small company issues. It is probably good to report, but it just adds to a data collection set. They will not specify thresholds. For individuals, unless it involves millions of dollars or someone important, you can expect no action. I’ve filed multiple reports over the years and got no action. My reports could been aggregated with other reports that may lead to action at some point.
I once hacked into google database systems and had access to millions of gmail accounts, i went directly to google and told them my exploit and how I was able to hack into them and they fixed the problem, gonna be a white hat hacker, I wanna work for the government 🎉🎉🎉
Why not cut cables to Russia? Disconnecting Russia completely would not be such a bad idea. Of course NSA still wants to tap Russian sources but I'm not sure how much is that worth.
Yevgeniy Polyanin wouldn't be hard to get, since journalists already did. My guess is that some of the companies who already lost millions wouldn't have a problem hiring people in Russia to get him.
Does anyone else get emails "You have missed a payment. Several months ago I gained access to your system."? All the code on my computer is code I can't sell for free (opensource). I have been getting these messages for years from probably the same person.
What prevented attackers from using the ransomware, having them send the money to a different address, and keeping 100% of the ransom, letting the target burn? Seems like a better deal than letting a cut go to the developers of the ransomware. "Sorry man, guess they didn't pay, better luck next time."
That happened a while ago, he was killed by other ransomware hackers. If you never send the key then nobody would pay. It is a very high paying attack, so they want the company to pay and they want to send the decryption key.
We get it, you were really really impressed and surprised that Biden mentioned ransomeware, lol. Less commentary like that and more of the actual, amazing story!
Correct, and in more than Cali, but uber does not accept such licenses. It's not the same as a DMV one, you can tell them apart. Also can be lengthy getting one.
Oke verder is dit gewoon heel echt en heb ik dus zeker wel het besef van de hack en het fijt dat ik ook n slachtoffer ben maar wat geweldig is dit Dit is letterlijk een van de mooiste dagen van mijn leven het bessef van de mogelijkheden van de huidige technologie maakt me letterlijk instaat medogenloos te zijn en dit is geweldig Bij deze is de eeuwigge wijgering actief
If you want information on what it's like for a small-business to call the FBI whenever their entire Digital Life both personal and business has been hacked with several tens of thousands of dollars lost and over 1.5 million dollars in potential Revenue lost reach out to me. I'll be happy to talk with you.
There's a huge non-government related underground of cybercriminals in russia. I'm sure there's lots of overlap with state/black hatters there. Cybercrime pays really well, so if you're relatively poor in russia you can perform cybercrime outside of the eastern bloc without worrying about the law really, so it's kind of a hacker's paradise there.
I'm betting every system attacked was Windows and the companies were connected to the internet for convenience whether it was necessary or not. Quite frankly I'm happy they got hit.
@@tightcamper that gave me a laugh, got to agree, though monkey's could probably do better I reckon. Its crazy they use IT but just don't invest on the actual systems they use or security. Totally insane.
@@alfonzo7822 It's not that. Global IT is totally reliant on windows because everyone does it so it must be OK. The King has no clothes. Secondly everyone seems to have a right to the internet at work and you cannot defend against that. There are a few good systems. Here in the UK there is a small provider of software for the automobile industry who runs everything on a proprietary operating system. Good luck hacking into that!
Did you hear the one about the cyber criminal who got away? They ransomware 😅. Thanks for the episode Jack. Evidently crime pays
Awful but cringingly good all the same 😆
Hahahaha! I like that one 😂
I see what you did there 😆 clever
😂😂😂😂
Dad joke for the win 😂
"so you can infect a company once you get inside, buuut... how can you get inside the company in the first place? well, YOU BUY your way in".
i will remember this sentence for the rest of my life
PS
Jack, you are INCREDIBLE
inside worker
The issue I have with the FBI and the Kaseya Ransomware is that *supposedly* the FBI had decryption keys for three weeks AFTER the start of the attack....then helped.
Too vulgar a display of power, said the demon!
Would it suprise you to know a lot of crime is funded directly, or done by law enforcement?
Sounds about Alphabet Department
From these videos, I've noticed that the FBI let crimes go on while being aware of them, why? No clue. Trying to collect more evidence maybe?
Do you realize how common this is that they have information of an attack whether it be physical or cyber and then they let it play out? Instead of preventing it? What the f*** are they paid for?
Fellow ticket jockey here. Good stuff, bud! I've been in IT for 20+ years and this was a fun one! I've been devouring your episodes recently. Thanks for your research efforts, rationality, and excellent presentation!
The existence of response companies to deal with ransomware at first surprised me , then I realized that Somalia forces shipping and insurance companies to react in similar ways but with the added threat of loss of life. I'm left with the feeling that ransomware will be a fact of life, a part of doing business for a very long time.
Wow, the fact that the FBI got one of the guys from REvil is crazy. But I don't doubt that they have some cryber security professionals who do nothing else but hack into people's shit. I remember hearing about robotnik getting indicted!. I always wanted to be that smart and work in cyber with the CIA or FBI. I bet they have some of the most insanely talented cyber guys and gals on the planet. I love your podcast dude. I hope that you get more and more recognition. This level of scripting and seemingly off the cuff takes and stuff is seriously good listening. Reminds me of old NPR news hours that covered specific topics, but way more interesting and with someone who knows what they're talking about
Yeah, the alphabet guys are actually pretty smart. When it comes to the truly terrifying talents and skills...they don't fight them. IF they serve a sentence, it's a minor slap on the wrist, and then they hire them. It's a perfect sales pitch. A get out of jail free card and still get to do what you have a passion for...without a single worry of looking over your shoulder.
U can work for/with alphabet boys jud comes down to how Badly u want it
@@supra1jzedAnd you can get a lot more chicks by telling them you work for the FBI
Well done. Cyber security is really interesting and it's only going to get more complicated.
Yeaaah, start with your own network make it secure :)))))
3am upload for the win. I just got home.
3:30 lol
Glad we are on the same page
A company I worked with occasionally got hit in 2019 with ransomware. Not sure which one, but the rumor was they ended up paying 100K to get their system back.
They then got hit 2 more times that year, but after the first one they made backups so they did not have to pay again.
The company I worked for got hit lol they moved everyone to a old army bunker whilst the systems were offline hahaha
This is why you have a basic protection of storing one backup permanently offline with space enough to keep multiple and have someone manually update it.
as soon as I got the notification, I opened to listen 3am, that is a new one for me,
Love your content so much I've been telling all my friends about it!
Dude the work you put in these videos shows!! 💪
All true. Companies just hack companies and then sell that access and there is a whole industry that steps in negotiating the ransoms. They lock everything and have great customer service. It’s so professional.
Almost like theres a limit to how big companies can get before they have to do as theyre told or risk constant cyberattacks
@@tomhands7037 it's a scummy world.
Wow I can’t believe this. I used to do freelance tech work for some offices around town. One day one got ransomware and we never knew how. Turns out they used Kaseya. Luckily my backups brought them back from the dead. I’m baffled that it didn’t reoccur since they continued to use Kaseya.
Jack, I'm not sure if you will see this, but OMG I love your videos! I'v recommended them to everyone i know who is remotely interested in IT. These videos are such a good source of inspiration for stuff to try. Thanks for making these videos! haha
PS: the thumbnails are super cool, I want to make my desktop background rotate between all of them but they are very low rez when ripped from TH-cam, are there full size versions anywhere?
Try Topaz Gigapixel just did a test run with one and the results were fairly decent ( went from 307 X 172 to 1842 X1032)
A word to the wise. The FBI does not involve themselves with crimes that THEY themselves didn't instigate.
the worlds biggest slimeballs and putrid shit-maggots hold badges or heads of politirx
Vapid unserious nonsense.
The tire manufacturer in my town Bridgestone got hit with one recently and made new here big time, its a facility that went under big technological update recently . In Joliette Quebec, i wonder if you heard, im aware there are thousand of similar cases tho . Love the podcast
What other companies? I ask because I'm working on a preventative measure but need to get in touch with companies that are likely targets.
@@LSD209 i couldnt tell you , hers a video about the guy who got arrested by FBI here in quebec th-cam.com/video/6dOtt1JlBko/w-d-xo.html
You got to be shitting me.... i was ordering tractor trailer tires from them in bulk... never knew thats why i couldnt get my shipment. :/
Affiliate commision on malware ,Jack you are a genius
I wasn't expecting a new episode so soon thanks!
This is a teriffic show Jack. It is a privilege to hear your work.
With all these companies getting ransomwared, imagine how many bad actors have access to these companies who aren't ransomwaring them, but just remaining hidden while having access to the companies private info.
FBI did actually call us back! was a thing about a guy who was harrassing and cyber stalking my roommate, but they were pretty dope. 10/10 would recommend to friends
i briefly drove for Uber for like 3 months in 2016 when i was in between jobs - a couple years later i started getting notifications on my phone via the Uber Driver app, that i forgot was still on my phone, that i initially ignored as i hadnt driven for years and had since moved to an entirely different state than the one i drove in... it was a couple days before my dumb ass put 1+1 together and realised the reason i was getting notifications from that app was because someone other than me was logged into it. luckily shutting it down was simple, and no one actually drove anyone anywhere pretending to be me. but they were clearly after something other trying to actually 'work' for Uber under my ID - there was plenty of sketchy personal info of mine for them to access; drivers license #, insurance, etc
These ransomware companies are also running their own mining farms, so they get a cut of these transactions along with the full transaction amount.
What a fabulous idea, attach your backup servers to the internet! Brilliant.
I got to say that: I'm in love with your Intro ! It's like a virus in my head. Awesome 👍🏼👍🏼
Jack, your dad's awesome, but a professional voiceover can't cost that much.
An episode about Phineas Phisher would be very appreciated.
Thanks, I'm enjoying this series for quite a while now.
Gankrab sounds like a Japanese monster. This is an amazing interview, thanks!
Thanx Jack, you are legendary.. Keep up the great work..
Loved this one dude!
I was just talking to my girlfriend about how half the time my doordash and ubereats drivers are not the person the app says its going to be (often they’re completely different genders) I thought something like this might be happening.
Damn, they're just insanely good and ruthless.
Huh...🤔 now make sense why Bitcoin was going through the roof at that time... lol 😮
Thanks for the video's ❤
I had no idea about any of this. What a journey...
1500 was a small fraction of the customers. they have more than a quarter million msp clients. it was black week for all of us working, no joke.
I bet they were shitting bricks when the compromised the nuclear contractor
Great content .... But have no mercy for banks.
To answer the question, the FBI doesn’t really give a crap about small company issues. It is probably good to report, but it just adds to a data collection set. They will not specify thresholds. For individuals, unless it involves millions of dollars or someone important, you can expect no action. I’ve filed multiple reports over the years and got no action. My reports could been aggregated with other reports that may lead to action at some point.
I once hacked into google database systems and had access to millions of gmail accounts, i went directly to google and told them my exploit and how I was able to hack into them and they fixed the problem, gonna be a white hat hacker, I wanna work for the government 🎉🎉🎉
Im learning code to get my certification now, can you teach me? I want to be a penetration tester
More people = more problems. When you're making lots of money just be happy with it. It's when you scale up that you screw up
Does anyone know who's behind the ransomeware on Toronto public libraries in Canada?
Superb video, as always
I'm just going to slee.... Going to be up for a hour!
f* that's relatable
The FBI was able to get a decrypt key...interesting.
I love the part where the guy threatens to publish the company data publicly then sell it to competitors. Brainiac right there.
Was trying to figure out what his voice reminded me of. He sounds like Hoop from Stroker and Hoop
Who took a shot everytime he said "via"? Lol! He said that so many times!! It was echoing in my ear.
Why not cut cables to Russia? Disconnecting Russia completely would not be such a bad idea. Of course NSA still wants to tap Russian sources but I'm not sure how much is that worth.
Upload saved the day
Perfect timing. 😍😘
Omg I love this channel!
Yevgeniy Polyanin wouldn't be hard to get, since journalists already did. My guess is that some of the companies who already lost millions wouldn't have a problem hiring people in Russia to get him.
Bets on whether the russian arrest was just a show:
jumped a few episodes there jack xD
Nice little edit at 8:31 ;)
Typ-0 joke at the end! Haha
That is not a thing. You are not required to get a u.s. drivers license if you have a valid one in your own country.
Does anyone else get emails "You have missed a payment. Several months ago I gained access to your system."? All the code on my computer is code I can't sell for free (opensource). I have been getting these messages for years from probably the same person.
YAYYYYYYYYYY OMG This is going to be a Good One~! Saved for later when I Need to Escape~!
Who do you steal these interviews from?
46:24 he can barely spit it out 😂
The co i work with gets emails everyday . They send fake voicemails via email
Why these odd number for ransom $2.3m? $43m?
Jack narrates these videos like he's a child explaining something to a younger child
Glad I'm not the only one noticing this. The viewers likely aren't this naive, would be nice if it was more technical and less editorialised.
You have to wonder if these people have connections to Solntsevskaya Bratva...
Having been American my entire life I don't know why exactly you would want this. We don't exactly have a utopia here
What prevented attackers from using the ransomware, having them send the money to a different address, and keeping 100% of the ransom, letting the target burn? Seems like a better deal than letting a cut go to the developers of the ransomware. "Sorry man, guess they didn't pay, better luck next time."
That happened a while ago, he was killed by other ransomware hackers. If you never send the key then nobody would pay. It is a very high paying attack, so they want the company to pay and they want to send the decryption key.
little bit after 57:00 he says they can find his social media profiles with a name using a tool named "Osin", anyone know what that is?
New Darknet WOOHOO!!!
And don't forget that e-criminals have to pay business taxes in Russia...
We get it, you were really really impressed and surprised that Biden mentioned ransomeware, lol. Less commentary like that and more of the actual, amazing story!
You don’t need to be a citizen to get a drivers license. At least not in California
Correct, and in more than Cali, but uber does not accept such licenses. It's not the same as a DMV one, you can tell them apart. Also can be lengthy getting one.
Let alone the insurance
Oke verder is dit gewoon heel echt en heb ik dus zeker wel het besef van de hack en het fijt dat ik ook n slachtoffer ben maar wat geweldig is dit Dit is letterlijk een van de mooiste dagen van mijn leven het bessef van de mogelijkheden van de huidige technologie maakt me letterlijk instaat medogenloos te zijn en dit is geweldig Bij deze is de eeuwigge wijgering actief
My comuter have no blood my computer have sap, guess what brand is it?
If you want information on what it's like for a small-business to call the FBI whenever their entire Digital Life both personal and business has been hacked with several tens of thousands of dollars lost and over 1.5 million dollars in potential Revenue lost reach out to me. I'll be happy to talk with you.
What's the name of the jam 1:03:10
th-cam.com/video/k6u14ZL6qJY/w-d-xo.html
Thanks! Great episode!
but arent russian hacker state trained in first place like north korea? tks again for the story, amazing
There's a huge non-government related underground of cybercriminals in russia. I'm sure there's lots of overlap with state/black hatters there.
Cybercrime pays really well, so if you're relatively poor in russia you can perform cybercrime outside of the eastern bloc without worrying about the law really, so it's kind of a hacker's paradise there.
@@uniquechannelnames tks for your answer
you get excited so much
Bro Zenon is my name💀💀💀
This guests chuckling after describing these horrible events is a bit odd.
Track id at 44:40 ? ❤
I wonder how long the fbi will take to help Dallas that'll be a cool story to hear about on here someday
Intriguing
Man has a Brazilian friends? That's a lot
Jachary Snyder is the best
i wish they didn't get greedy along the way, they would have made more money they could ever count
Everyone needs to check out the Darknet Diary store awesome merchandise the most comfortable shirts evere
doesnt this guy sound like the npr podcast guy?
Bitcoin seems to be invented for this.
#teamreplay
I really don't care if such a company loses 11 million. That's nothing for them. I hope the bad guys enjoy their money
Is it just me or does it sound like the author of this video really likes Donald Trump?
41:16 c
My conspiracy theories 👒 is also on
something is definitely 🐟 🐠 🎣
th-cam.com/video/6dOtt1JlBko/w-d-xo.html The russian canadian who got arrested last month here in Gatineau, Quebec , Canada
Netwalker group
@marcoallin why would you post a French speaking video on a English speaking TH-cam channel? No one speak French
Biden threat. Everyone hahahahaha
He barely understands things he knows, let alone this new fangled stuff
I'm betting every system attacked was Windows and the companies were connected to the internet for convenience whether it was necessary or not.
Quite frankly I'm happy they got hit.
Windows is just a complete nightmare that keeps getting worse, a goldmine for hackers though.
@@alfonzo7822 I just do not understand some of these companies. I suspect most of them contract their IT out to the monkey cage in the local Zoo.
@@tightcamper that gave me a laugh, got to agree, though monkey's could probably do better I reckon. Its crazy they use IT but just don't invest on the actual systems they use or security. Totally insane.
@@alfonzo7822 It's not that.
Global IT is totally reliant on windows because everyone does it so it must be OK. The King has no clothes.
Secondly everyone seems to have a right to the internet at work and you cannot defend against that.
There are a few good systems. Here in the UK there is a small provider of software for the automobile industry who runs everything on a proprietary operating system. Good luck hacking into that!
@@tightcamper The king has no clothes? What the heck lmao what does that saying mean
I hacked into NATO
cap