# Ransomware gang extorts jet maker Bombardier

### Help Support HomeBuiltAirplanes.com:

#### pwood66889

##### Well-Known Member
Local school system also "Paid the Piper." Surprising how many outfits still have these problems. The Second you hear of difficulties, get another piece of software! Yeah, I did IT for a year or so...

#### Vigilant1

##### Well-Known Member
Though the situation remains murky, there's a recent move by the US Treasury to make it illegal to pay these ransoms or to facilitate the payment of ransoms (which itself is an industry). Apparently it would depend on which group is demanding the payment, though I can't imagine it is easy for anyone to know that information. More here:Is It Illegal to Pay Ransomware? | P&N

Last edited:

#### Pilot-34

##### Well-Known Member
OK interesting but did you have a point, some sort of comment do you wanted to make ?

#### Yellowhammer

##### Well-Known Member
HBA Supporter
Though the situation remains murky, there's a recent move by the US Treasury to make it illegal to pay these ransoms or to facilitate the payment of ransoms (which itself is an industry). Apparently it would depend on which group is demanding the payment, though I can't imagine it is easy for anyone to know that information. More here:Is It Illegal to Pay Ransomware? | P&N

As long as our government would go out and prosecute and bring these criminals to justice folks might opt not to pay the ransom.

#### Yellowhammer

##### Well-Known Member
HBA Supporter
Last year several of our area school districts were held for ransom. Not sure what all happened but I am glad we didn't have to deal with it at my school !

#### Bill-Higdon

##### Well-Known Member
OK interesting but did you have a point, some sort of comment do you wanted to make ?
Yes they got caught with their pants down

#### Hephaestus

##### Well-Known Member
I'm sure the canadian government will bail them out on that too...

Oh sorry, did I say that out loud?

#### Pilot-34

##### Well-Known Member
Are you would think with the creator of the Internet would have some sort of responsibility for that?

#### pwood66889

##### Well-Known Member
Like I say, I did IT for a bit. Moved on to Aircraft Mechanic, but did retain a lot of good stuff.
Firstly; security comes first by locking the front door. It should serprize no one at the number of networks that are left plugged all the time.
Second - know your traffic! There has been enough cheap disks over the last 2 decades to back stuff up as things happen. Then when it dies, one has chapter and verse.

##### Well-Known Member
Ah, never had the pleasure - but you'd think if the backups were being encrypted leading up to the hijack - that would setoff alarms... Because you'd want to check the integrity of the backup as part of the backup process no?
Most ransomeware encrypts the data when its stored to disk/backup, and decrypts it when it's read.
The victim usually only finds out when it stops decrypting.

#### pwood66889

##### Well-Known Member
One large difficulty is that most backups are stored but not checked. One place I heard of had special machines that did nothing but run restored backups! If your data was encrypted when stored, the runs from backup would show that pretty quick! Of course, the OS build on the checking machine is pristine.
There had been a place that religiously did backups. Then, when they needed one, they found out the tape drive they used did not write!
I have said "Work, like matter/energy, is conserved. It tales so much work - the variable is who does it!" And what the costs are if not accomplished.

#### Hephaestus

##### Well-Known Member
One large difficulty is that most backups are stored but not checked.
Clearly we knew what we were doing with tape reels when I was a young pup.

Probably why I'm confused - would have thought there would be a verification process involved.