The City of Norfolk, Virginia is reeling from a massive computer meltdown in which an unidentified family of malicious code destroyed data on nearly 800 computers citywide. Read the full article. [KrebsonSecurity]
The City of Norfolk, Virginia is reeling from a massive computer meltdown in which an unidentified family of malicious code destroyed data on nearly 800 computers citywide. Read the full article. [KrebsonSecurity]
The bank is also suing its insurance carrier for not covering the full extent of the damage.
Serco Inc., a well-known contractor working with the U.S. government, announced that it was the target of a sophisticated attack that exposed data on 123,000 civil employees of the Federal government and their families, including names, addresses and social security numbers taken from the company’s system.
UPDATE: Call it ‘dancing with the girl that brought ‘ya,’: two weeks after it disclosed a serious security breach at its RSA Security Division, tech firm EMC said it was buying NetWitness, a threat analysis firm that helped it detect the breach in the first place.
Anonymous on
Maybe it was PeTalol then again I would not put off that PeTa was not the main target or was some the reason .
sounds like open port on the printer server let some in and thet .ini were re-wrtten by some one who has access to the system as they log in to the network . but the inin would have to be done be fore the last shutdown not after. Files size showing up smaller just means its not the real data .. a commen trick to high some data on the system is to re-write the file index and install a faults imag of the system.
I like to look at dive to se if it show that it has data but no filing system I seen root-kits that do this to the MBR as well as the drive map.
CC
Infosec Insider content is written by a trusted community of Threatpost cybersecurity subject matter experts. Each contribution has a goal of bringing a unique voice to important cybersecurity topics. Content strives to be of the highest quality, objective and non-commercial.
Sponsored Content is paid for by an advertiser. Sponsored content is written and edited by members of our sponsor community. This content creates an opportunity for a sponsor to provide insight and commentary from their point-of-view directly to the Threatpost audience. The Threatpost editorial team does not participate in the writing or editing of Sponsored Content.
Anonymous on
An infosec professional that considers operating system file deletion to be a destroyed PC? There *is* a difference between OS and the machine it is running on, you know.
What part is being replaced? The OS, or the whole PC? If the PC is destroyed, I will happily take all 800 of them off your hands. The article is clearly written for the news, and little of the reality of what occurred.