Above: library problems. Photo: Christine Ro (via BBC web site)
I recently wrote about ransomware and paid some attention to the British Library's current problem with this scourge. Well, a BBC article (Why some cyber-attacks hit harder than others) returns to the scene and covers the continuing issues and costs being borne. It's a sorry state of affairs. Looks like people are having to order books with paper forms and the digital media is still offline.
The Russian hacker group Rhysida claimed responsibility, and demanded a ransom of 20 bitcoin (equivalent to £600,000 at the time). After the British Library refused to pay up, and following an online auction of stolen data, the hackers leaked the nearly 600 GB of private information on the dark web.
Of course, Russia. The country has long been a center of criminal "hacking", state sponsored and private enterprise. Russian authorities look the other way as long as these groups don't attack Russia itself; maybe the state will co-opt or sponsor the activity. China is another major offender. The New York Times via the archive site:
Leaked Files Show the Secret World of China’s Hackers for Hire
The Chinese government’s use of private contractors to hack on its behalf borrows from the tactics of Iran and Russia, which for years have turned to nongovernmental entities to go after commercial and official targets. Although the scattershot approach to state espionage can be more effective, it has also proved harder to control. Some Chinese contractors have used malware to extort ransoms from private companies, even while working for China’s spy agency.
The problem we have is that computer and network security is hard. As well as the actual "technical" mitigations we can use (e.g. spam filters, firewalls), people themselves are usually a weak link. Anyone can be misdirected or scammed, even "experts". And almost everything is connected to the internet today, including everything that keeps civilisation actually "civilised" and people alive. Let's hope things don't get worse. And to be clear, I don't think ransoms should be paid because it just encourages these attacks.