How can a company that sells solutions to prevent Ransomware attacks really take themselves seriously.
26 replies (most recent on top)
Mr TT prob did it hisself to get even more money and to finally put the company out of business
Curious to see how regulatory reacts to thisnn
"How embarrassing. The only part of IT they kept is IT Security, and the company gets hacked. "
Not only kept but tripled in size and hired a Chief Information Security Officer.
Still remember the director there that I smelled BS after a conversation with him. Looked up his credentials. Worked in insurance doing accounting audits before being hired by Win as a staff manager in IT Security and promoted. What a joke.
Is everything still hijacked or is stuff working again?
Did you all have backups?
I guess the CIO got fired or at least some VPs on IT? no? Oh yes this is Windstream I forgot they will get promoted.
Previous post was correct. One user without antivirus on their PC would not have caused this.
Security is multilayered, with the weakest layer being the employee. Asking anyone to believe a company relies on their employees to go to Walmart to buy antivirus software to protect their servers and proprietary data is only something the root cause meeting would buy.
The truth is IT Security has been lying for years to Audit about having mitigating controls in place to prevent something like this from happening. The real surprise is that it took this long for them to get hacked.
https://www.channelfutures.com/channel-research/malwarebytes-research-companies-too-confident-about-wfh-security
“At the end of the day, if you give your employees the right equipment, show them how to use that equipment correctly, make sure they have support for that system and you allow some trust in your employee-employer relationship, it shouldn’t be that difficult to get folks to use their work devices for work,” Kujawa said.
Fake news
Oh that touched a nerve. Truth hurts. Out here attacking a typo hahaha
Is this talk of hippo the same as:
https://en.wikipedia.org/wiki/Health_Insurance_Portability_and_Accountability_Act
How does that come into play with the ransomware attack?
Might want to learn to spell HIPAA correctly before you spout off about sh– you don't have the first clue about
Sorry, not possible for an infected PC to cause this. This was a data breech. Windstream has to inform its customers, but my bet is they will not. Their SOC2 and hippa cert auditor has to be sweating. Windstreams network is wide open, that auditor didnt do their job and let windstream buy those certs.
This is what WINning looks like right TT? LMFAO
I’m surprised this debacle hasn’t made its way into the news yet. “Major ISP’s operations held hostage for ransom!”
Has anybody notified any customers or the government? Or is this a “keep-it-on-the-down-low” operation?
Word is going to get out, one way or another.
And network monitoring tools not working OR no one monitoring the network tools!!
Let’s bundle this and sell it as part of our SD-WAN solution!
Wait. So, you are laying the blame on a personal computer when they are using your VPN to access systems you are securing?
Priceless. Not buying it.
Root cause was someone working remote on their personal PC accessing company resources. No malware protection, AV, or security running on their PC. The left the door wide open for access from their internet onto our network and systems.
I guess working from home has it down sides!
How embarrassing. The only part of IT they kept is IT Security, and the company gets hacked.
Lol.
Not a bit surprised. As I’m sure anyone who has had to deal with our ‘security’ team feels the same.
That Department is so lame.
So this is how it ends
All funding needed to prevent this has been redirected to the 20 million dollar executive bonus for TT and the LR5. (Thank you judge Drain). Along with all the salaries they are shedding.
Thanks for the reply
Good luck
Customer side is up and running but the internal side is down/compromised. Customer info compromised. We cannot open trouble tickets or work installs. We are blind
Questions from a worried customer:
- Is this ransomware attack still a problem?
- As a large ILEC customer, how might this problem affect us in normal operation? Right now, everything seems to be working OK.
- Does this affect Windstream's ability restore service if we get an outage due to a storm or a network equipment failure?
We've had multiple internet outages in the past that effectively shut us down for hours.
- Does this affect Windstream's ability to meet our requests to add, drop or change any of our service? (We have multiple locations).
Thanks. We really need you guys to succeed.
How does a technology company company get hit with Ransomware and let it impact them for days. It’s embarrassing
They outsource EVERYTHING. And the the companies they use are offshore. They provide these companies a shared login that they all use. Its hilarious how unsecure they are. They had to buy that SOC2 and hippa cert from the auditors. All employees that were laid off still have active logins in all the systems, they only shut down network logins. Any contractor or disgruntled employee could easily do this, windstream leaves their equipment WIDE open to attacks. Just have to get past that oursourced IT team who uses shared logins hahahaha
They don't and they can't. They just feed you that to stay. Then they let you go and line their pockets. It really doesn't take a brain surgeon to figure them out.