The ultimatum given to the Lazio Region by cybercriminals has expired (without consequences)

The ultimatum given to the Lazio Region by cybercriminals has expired (without consequences)

The deadline to pay the ransom and receive the keys to access the blocked systems was set at 11pm on Friday, but according to the newspapers the region would not have succumbed to blackmail

(photo: Stefano Montesi - Corbis / Corbis via Getty Images). The link to the page where the request was present would now be inactive and, according to what the newspapers reported, there would have been no repercussions from the criminals. In practice, it means that the data would not yet have been circulated or sold to others, but it is still too early to be completely certain.

The story of the cyber attack on the Lazio Region was dominated by a communication often fluctuating and contradictory, which made it even more difficult to be certain about what was happening. According to the first statements, the criminals would not have made any ransom demands, but then the opposite was said. At first it appeared that all data, including backup copies, had been encrypted, but then the region announced that it was able to access a copy and that the data had been erased and not locked. Furthermore, the newspapers have mixed various theories and hypotheses, sometimes technically inaccurate or totally false, which have generated further confusion. This flow of fragmentary and imprecise information has therefore contributed to creating a suspicious climate, whereby each new statement is greeted with many doubts and never seems to carry the weight of a certainty.

Again, newspapers have talked about data sold to pharmaceutical companies or disseminated on the dark web, while others consider the unexpected recovery of backups implausible, interpreting it as a cover story not to admit that, in fact, the region has already paid the ransom. The news of access to the backup was however confirmed by Corrado Giustozzi, IT security expert for the Agency for Digital Italy, according to whom the story of the cyber attack on the Lazio Region would be "fortunately set in motion" towards "a happy end" . However, he too continues to use the conditional with respect to the dissemination of data (deleted? Encrypted? We do not yet know). In fact, in a tweet, Giustozzi argued that "at the moment it cannot be said whether there has also been an exfiltration of data. It would seem not, but more complete analyzes are needed to ascertain it ”.

At the moment it cannot be said whether there has also been data exfiltration or not. It would seem not, but more complete analyzes are needed to ascertain it.

- Corrado Giustozzi 🇮🇹🇪🇺 (@cgiustozzi) August 5, 2021




Web - 6 hours ago

Most popular ransomware of 2021


Lazio Region, thanks to a backup the data blocked by hackers were recovered


What changes from today with the green pass

Topics

Cybersecurity Hacker Italia Security globalData.fldTopic = "Cybersecurity, Hacker, Italy, Security"

This opera is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License.




Powered by Blogger.