What’s worse?
Being hit by ransomware assault that sees criminals steal details about your employees and passengers…
or…
Being hit by ransomware assault that sees criminals steal details about your employees and passengers, AND then have the gang inform the world that your agency’s IT infrastructure is so chaotic, poorly-secured, and downright irritating that it refuses to repeat the assault.
Signal as much as our publicationThat’s the humiliating slap within the face given by the Daixin Crew ransomware gang to Air Asia which misplaced the non-public knowledge of 5 million passengers and all staff earlier this month.
As DataBreaches.internet stories, the incompetence of AirAsia may very well have spared the airline from additional assaults:
“The chaotic group of the community, the absence of any requirements, prompted the irritation of the group and a whole unwillingness to repeat the assault,” the spokesperson for Daixin Crew stated. “The group refused to choose by means of the rubbish for a very long time. As our pentester stated, ‘Let the newcomers type this trash, they’ve a number of time.’”
“The inner community was configured with none guidelines and because of this labored very poorly. It appeared that each new system administrator ‘constructed his shed subsequent to the outdated constructing.’ On the similar time, the community safety was very, very weak.”
Ouch.
AirAsia declined to touch upon the DataBreaches.internet report. Frankly you possibly can’t blame them for ducking that one.
Discovered this text attention-grabbing? Comply with Graham Cluley on Twitter or Mastodon to learn extra of the unique content material we submit.
