Norsk Hydro responds to ransomware attack with transparency

Bot

Bot

AI-powered Bot
Thread author
Verified
Apr 21, 2016
3,407
Last March, aluminum supplier Norsk Hydro was attacked by LockerGoga, a form of ransomware. The attack began with an infected email and locked the files on thousands of servers and PCs. All 35,000 Norsk Hydro employees across 40 countries were affected. In the throes of this crisis, executives made three swift decisions:

  • Pay no ransom.
  • Summon Microsoft’s cybersecurity team to help restore operations.
  • Communicate openly about the breach.

Read Hackers hit Norsk Hydro with ransomware to learn why this approach helped the company recover and get back to business as usual.

The post Norsk Hydro responds to ransomware attack with transparency appeared first on Microsoft Security.
 
  • Like
Reactions: Fel Grossi, ItsReallyMe, Venustus and 3 others
Dave Russo

Dave Russo

Level 21
Verified
Top Poster
Well-known
May 26, 2014
1,052
Forgive my apparent arrogance,I just can not get away from doubting ... Microsoft to the rescue, Do not pay the ransom, you can pay our Microsoft Team instead ,at a bargain rate of course,Do not get me wrong Norsk is the victim,Maybe Microsoft needs to give a guarantee to its customers security or we (they) will pay. Thanks for the link
 
Last edited:
  • Like
Reactions: Jack, upnorth and Venustus
upnorth

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,459
The key factor was in this case, that MS can't take credit for even if they would love to is how Hydro themselves with retired employees that literally used paper and pen was able to keep the production running. That was the real genuine backup that saved Hydro, not specific MS.

A bit funny IMO is that in the video from Hydro MS ain't mentioned once but, Facebook and Whatsapp is. Guess Mark is very proud. :giggle::coffee:

Dave Russo said:
Do not pay the ransom, you can pay our Microsoft Team instead
Click to expand...
I understand your point and can even somewhat agree but, IMO Hydro did the correct thing and involved a professional part of helping them re-build their IT infrastructure. One can always argue that some other part would have been better but, no matter who that will always cost something and it would probably been cheaper just pay off the hackers. The problem then, is the risk of getting hit over and over again and also help send the message that it's actually is no problem for hackers. Therein lays I can guess a part of the general problem in the US and it's infrastructure and especially the use of insurances as a mean of quick fix to pay the ransomware. I even saw the mayor of New Orleans very recently in a news video almost proud state the implementation of insurance. She did get a follow up question from a reporter about it, but never fully explained what it actually means and I'm pretty sure most citizens aren't aware.
 
Last edited:
  • Like
  • Applause
Reactions: Gandalf_The_Grey, harlan4096, Dave Russo and 1 other person

Similar threads

Gandalf_The_Grey
    • Wow
    • +Reputation
    • Like
Security News Hyundai Motor Europe hit by Black Basta ransomware attack
Replies
0
Views
689
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Wow
    • Like
    • +Reputation
Security News Vans and North Face owner VF Corp hit by ransomware attack
Replies
0
Views
700
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Like
AV-TEST Protection Solutions vs. Ransomware in the Advanced Threat Protection Test
Replies
5
Views
1,497
Security Statistics and Reports
MacDefender
M

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top