4、美国麦迪逊县计算机系统遭受勒索软件攻击
标题:Insurance Firm Directs Response in Madison County Ransomware Attack
作者信息:November 10, 2016 By Kevin Townsend
//BEGIN
Madison County, Indiana, was the victim of ransomware last week. There is no public information on what malware was used, how the authority was infected, nor how much was demanded by the attackers -- but it does seem as if the ransom has been paid, and systems are now coming back on line.
美国印第安纳州的Madison县遭遇到勒索软件的袭击。目前没有公开的信息报道究竟是什么恶意软件导致的以及如何导致的,而且赎金的数量未知。不过目前根据种种迹象显示赎金已经支付而且被感染的系统正在恢复中。
//END
The key question is unclear. Can the insurer insist rather than advise that the insured pays the ransom in order to minimize its own future liability to repair damage? "I have not seen a clause that explicitly allows the insurer to do this," said Litt, adding, that's "not to say it doesn't exist. An insurer can accomplish this indirectly. For example, a policy might provide coverage for an extortion payment in an amount that does not exceed the covered damages and claims expenses that would have been incurred had the extortion payment not been made."
The reality is that we do not know exactly what happened at Madison County. The indication, however, is that its insurer recommended and may even have insisted on payment. And the implication of this is that there may be an unknown number of ransomware victims who have simply paid the ransom, funded by the insurance, with little fuss or publicity.
支付赎金的原因可能是保险公司的主意,同时一些其他的勒索案例的支付也许是类似的情况,只不过是未公开。
点评:对付勒索软件建议备份备份再备份。 |