A Conversation with a Hacker

A travel firm paid a $4.5M ransom during the last week of July. Here’s how it went down.

A US based travel firm was hit with the Rangar Locker ransomware during the last week of July.  The company agreed to pay $4.5M in fees to recovery their data.   What is interesting here is a glimpse into the business like transaction that this is.   I can’t imagine a travel company, during COVID, would find it easy to give up $4.5M in cash but it happened.  See what transpired below, captured from the chat room used to negotiate the fee.  These are snippets from the chat…

This is the message that appears after the data has been copied out of the firm’s system and then their servers encrypted:

Here are the hackers chatted with the victim:

Negotiating “special pricing”:

Security and staffing advice offered by the hackers after getting paid!

Needless to say, having the right preventative measure in place ahead of time would have been far less costly than paying the ransom and the company has now provided funding for the hackers to continue their work.

Call us now to secure technology systems! 647.426.1004.

Charles Bennett is the Principal Consultant at Triella.  We are a technology consulting company specializing in providing technology audits, planning advice, project management and other CIO-related services to small and medium-sized firms. Charles can be reached at 647.426.1004. For additional articles, go to our blog page. Triella is a VMware Professional Partner, Microsoft Certified Partner, Citrix Solution Advisor – Silver, Dell Preferred Partner, Authorized Worldox Reseller and a Webroot Reseller.

© 2020 by Triella Corp. All rights reserved. Reproduction with credit is permitted.

Share on facebook
Share on twitter
Share on linkedin
Share on pinterest
Follow us
Subscribe to our newsletter