In Michigan the target was 980 WAKV-AM. In Louisiana the target was Stannard Broadcasting in Leesville including the three station in their cluster: 105.7 KVVP-FM, 95.7 KROK-FM and 106.7 KUMX-FM. In Arkansas another yet-unnamed station was been hit as well. More here.
Stannard
Broadcasting
in Leesville that was attacked. Not one but all three of its
stations were affected; they are KVVP(FM) “Today’s
Country 105.7” as well as KROK(FM) and KUMX(FM). - See more at:
http://www.radioworld.com/article/%E2%80%9Cransomware%E2%80%9D-demanded--from-broadcaster/272950#sthash.yK56IFz3.dpuf
Stannard
Broadcasting
in Leesville that was attacked. Not one but all three of its
stations were affected; they are KVVP(FM) “Today’s
Country 105.7” as well as KROK(FM) and KUMX(FM). - See more at:
http://www.radioworld.com/article/%E2%80%9Cransomware%E2%80%9D-demanded--from-broadcaster/272950#sthash.yK56IFz3.dpuf
nnard
Broadcasting
in Leesville that was attacked. Not one but all three of its
stations were affected; they are KVVP(FM) “Today’s
Country 105.7” as well as KROK(FM) and KUMX(FM). - See more at:
http://www.radioworld.com/article/%E2%80%9Cransomware%E2%80%9D-demanded--from-broadcaster/272950#sthash.yK56IFz3.dpuf
The stations were still running Windows XP despite years of EOL announcements (End Of Life) from Microsoft. This is of course supremely stupid. Of course it also turns out that 95% of banks are equally stupid. By using a known explot hackers gained control of a PC with an internet connection (LAN) that was still on that archaic OS (operating system). froim there they shut down the stations OMT iMediaTouch Radio Automation System and compromised their digital music library. Game over. The hackers demanded just $500 in bitcoins to unlock the computer. (Radio Ink and Radio World have covered this extensively.)Let's review the mistakes that Stannard made and see if we can learn anything.
- A PC with access to core systems was on the LAN.
- Using a PC with EOL operating system.
- Using Windows in general
- Lack of archived back up files for disaster recovery
- Lack of fail over systems
- If you must run windows (ANY VERSION OF WINDOWS) to run it in a VM on a Linux server.
- Furthermore... it is not necessary to run windows. At this point, you can readily find applications that run in Linux for free, that will generally be less exposed to these problems.
- You no longer need to run local versions of essentially anything. You can remotely host or run your infrastructure from an instance in the cloud and make redundancy and archiving their problem.
- If you feel you must run things locally do not connect devices running core services to the internet
- If for some reason to feel compelled to make all of the above mistakes... build an offline back up system you can switch over to readily. More here.
No comments:
Post a Comment