Jump to content

if you ever wonder why ransomware and cyber breakins keep happening

crp

By crp
in Security & Networking

 Share

Recommended Posts

crp

crp

Posted
Posted

let me introduce you to the company i work at.

today i found out that there was a virtual machine running Windows7. On the network. In the domain. Without current antivirus. Connected to the Internet. with the default and used login of a Domain Admin.

 

keep in mind we got hit with ransom ware 11 months ago and did not really recover. we are half (maybe 40%) of the size we were a year ago.

 

oh, and why did this setup exist? the homegrown application needed 32bit ODBC drivers to do the transactions - yes, transactions. This machine was taking in creditcard numbers and getting them verified online.

 

 

Now you know why these cyber breakins just don't stop.

 

  • Sad 2
  • Confused 1
  • +1 2
Link to comment
Share on other sites
V.T. Eric Layton

V.T. Eric Layton

Posted
Posted
13 hours ago, crp said:

Now you know why these cyber breakins just don't stop.

 

Seems like a clear case of STUPIDITY, which is the common denominator in most commercial and private virus/malware infestations. You'd think people would learn...

  • Like 1
  • Agree 1
Link to comment
Share on other sites
ebrke

ebrke

Posted
Posted
21 hours ago, crp said:

the homegrown application needed 32bit ODBC drivers to do the transactions - yes, transactions. This machine was taking in creditcard numbers and getting them verified online.

 

Ouch!

Link to comment
Share on other sites
xrobwx71

xrobwx71

Posted
Posted
On 1/12/2022 at 8:39 PM, crp said:

let me introduce you to the company i work at.

today i found out that there was a virtual machine running Windows7. On the network. In the domain. Without current antivirus. Connected to the Internet. with the default and used login of a Domain Admin.

 

keep in mind we got hit with ransom ware 11 months ago and did not really recover. we are half (maybe 40%) of the size we were a year ago.

 

oh, and why did this setup exist? the homegrown application needed 32bit ODBC drivers to do the transactions - yes, transactions. This machine was taking in creditcard numbers and getting them verified online.

 

 

Now you know why these cyber breakins just don't stop.

 

At  my retail store,I pay a yearly fee (very inexpensive) to be PCI compliant. Matter of fact, if I'm not PCI compliant, the company that processes my credit card transactions fines me monthly. (very expensive) Speaking for Florida, USA

Link to comment
Share on other sites
crp

crp

Posted
  • Author
Posted

unbelievably,  they actually listened to me about this.  boss frontburned the programmer to get it done and Friday morning it was on a W10 with current AV. (now if i can only get the tightVNC people to start paying attention to my messages ...)

 

 

  • Like 1
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...