Friday, May 21, 2021

"CNA Financial reportedly paid $40 million to resolve a ransomware attack"

 As seen in a slightly different context just a couple weeks ago:

....Or, as a somewhat out-of-favor writer put it, regarding the Viking raids on England:

....It is always a temptation for a rich and lazy nation,
To puff and look important and to say: –
"Though we know we should defeat you,
we have not the time to meet you.
We will therefore pay you cash to go away."

And that is called paying the Dane-geld;
But we've proved it again and again,
That if once you have paid him the Dane-geld
You never get rid of the Dane....
Rudyard Kipling, 1911

And from engadget,

It could be one of the biggest ransom payouts to date.

A US insurance company may have paid one of the most expensive malware ransoms to date. According to Bloomberg, CNA Financial shelled out $40 million in late March to regain control of its network following a two-week lockout. To put that payout in perspective, the CEO of the Colonial Pipeline told The Wall Street Journal this week his company paid $4.4 million to hackers. That's a ransomware attack that led to fuel shortages across the US.

"CNA is not commenting on the ransom," a spokesperson for the company told Bloomberg. "CNA followed all laws, regulations and published guidance, including OFAC's 2020 ransomware guidance, in its handling of this matter."

The company fell victim to Phoenix Locker, an offshoot of the Hades ransomware created by infamous Russian cybercrime operation Evil Corp. Some security researchers believe Evil Corp is also behind WastedLocker, the malware linked to last year's Garmin ransomware attack. In 2019, the US Treasury Department sanctioned the group for its activities. It's unclear if Phoenix, the group behind the CNA attack, is affiliated with Evil Corp....


 The hackers are probably just taking out their naming trademarks frustration:

From 2016's
21st Century Headlines
....And this one, also VentureBeat:

Super Evil Megacorp starts team-franchise program to energize Vainglory...

I would expect nothing less from SEMC.

According to CrunchBase Super Evil Megacorp has raised $42 million in three venture rounds.
I'd buy it just for the name. But wasn't invited.....

"DarkSide Ransomware has Netted Over $90 million in Bitcoin" (Colonial Pipeline et al.)
"Chemical distributor pays $4.4 million to DarkSide ransomware"
Meanwhile, At Colonial Pipeline: Job Opening, Manager Cyber Security