Slashdot Mirror

← Back to Stories (view on slashdot.org)

Alaskan Town Finds Solace in Typewriters Following Last Week's BitPaymer Ransomware Infection (bleepingcomputer.com)

Posted by msmash on from the whatever-works dept.

Catalin Cimpanu, reporting for BleepingComputer: On Monday, officials from Matanuska-Susitna (Mat-Su), a borough part of the Anchorage Metropolitan Statistical Area, said they are still recovering from a ransomware infection that took place last week, on July 24. The ransomware infection crippled the Borough's government networks and has led to the IT staff shutting down a large swath of affected IT systems. [...] Officials said they were planning to clean and reinstall 650 desktop computers and servers located on the parts of the Mat-Su network believed to be affected. [...] "Without computers and files, Borough employees acted resourcefully," said Mat-Su Public Affairs Director Patty Sullivan last week. "They re-enlisted typewriters from closets, and wrote by hand receipts and lists of library book patrons and landfill fees at some of the 73 different buildings." Mat-Su IT Director Eric Wyatt identified the "virus" as the BitPaymer ransomware earlier this week, the report said.

111 comments

  1. ...no payment made... by ole_timer · · Score: 3, Informative

    ...from what I understand no payment was made...backups were ok, even if a year old

    --
    nothing to see here - move along
    1. Re:...no payment made... by geekmux · · Score: 2

      ...backups were ok, even if a year old

      At the speed of business today, year-old data is not a "backup". That's a fucking time capsule.

      And if that DR plan is "OK", then I have to question why this organization wasted money upgrading their typewriters years ago...

    2. Re: ...no payment made... by Anonymous Coward · · Score: 1

      For a small muni year old data might be 90% current. Other than some local tax filings and handful of various forms and requests for which they have the long form paper records, they might not have much of real import. The loss of some meetings minutes might put them in violation of their own ordinances or something but most likely nobody will care

    3. Re:...no payment made... by Anonymous Coward · · Score: 4, Interesting

      My understanding is that all systems, including backups, were under the same domain controllers. The domain controllers were compromised and all reachable systems (including current backups) were encrypted. The year old backup sounds like someone found an old tape backup archive.

    4. Re: ...no payment made... by Train0987 · · Score: 2

      Say what? Utility bills? Water meter readings? Sewage stats? Accounts payable? Payroll?

      That's what your municipal gov't does.

    5. Re: ...no payment made... by Anonymous Coward · · Score: 0

      This is why append-only backup solutions are so useful. You can do it with off-the-shelf (including OSS) parts. Iâ(TM)m not sure if anyone has anything pre-built that can meet arbitrary needs, though.

    6. Re: ...no payment made... by Anonymous Coward · · Score: 0

      These are all thing typically done by the utility providers, and NOT the municipality itself in many areas.

    7. Re: ...no payment made... by bev_tech_rob · · Score: 1

      These are all thing typically done by the utility providers, and NOT the municipality itself in many areas.

      Most water utilities in my neck of the woods ARE owned by the muni. There are a couple that own the electric utilities.

      --
      You're messin' with my Zen Thing, man.....
    8. Re: ...no payment made... by Anonymous Coward · · Score: 0

      At this point I'd like to point out they probably have printed records of most things as the GP suggests. I know I still get paper bills from my government utilities (all of which I save for a few years before destroying since I understand if places like Reddit can't have secure things, the local government more than likely has their ass flapping in the breeze.)

    9. Re: ...no payment made... by nitehawk214 · · Score: 1

      Some places have a municipality owned utility but that billing and accounting is outsourced.

      --
      I'm a good cook. I'm a fantastic eater. - Steven Brust
    10. Re: ...no payment made... by faedle · · Score: 1

      I've lived in a number of cities where most of these utilities are provided by the municipality. Not little places, either (although Anaheim, as an example, was one of them). Seattle provides electric, sewer, water, and garbage to residences, as a big-city example. Los Angeles Department of Water and Power, a municipal entity, is one of the largest electric grids in the West, their tendrils reaching all across the state of California and parts of Nevada/Arizona gathering water and power for the City of Los Angeles.

      So, your argument is invalid.

  2. Maybe switch to Linux by Tough+Love · · Score: 4, Interesting

    Maybe switch to Linux. How many more times does this need to happen before somebody gets a clue?

    --
    When all you have is a hammer, every problem starts to look like a thumb.
    1. Re:Maybe switch to Linux by ole_timer · · Score: 4, Interesting

      ...not really...https://linux-audit.com/linux-and-the-rise-of-ransomware/

      --
      nothing to see here - move along
    2. Re:Maybe switch to Linux by Train0987 · · Score: 2, Funny

      The typewriters were more useful than Linux.

    3. Re:Maybe switch to Linux by Anonymous Coward · · Score: 0

      Why spend nothing on Linux when you can spend more and more and more taxpayers money on Microshit and AV garbage?

    4. Re:Maybe switch to Linux by Train0987 · · Score: 1

      Support costs for Linux tend to exceed those of Microsoft.

    5. Re:Maybe switch to Linux by ole_timer · · Score: 1

      ;) (smile)

      --
      nothing to see here - move along
    6. Re:Maybe switch to Linux by Anonymous Coward · · Score: 3, Insightful

      don't hire morons that can barely open microsoft word to be your "it staff".

      train your mouse jockies and paper pushers, and treat them well enough so your office staff doesn't turn over every 6 months requiring you to train new worker bees constantly.

      problem solved.

      linux is cheaper, period. unless you absolutely cannot live or function without a windows-exclusive title. and think real hard before you choose windows.. do you *really* **REALLY** need that particular application or will something else work, or perhaps even work better.. you just never though to actually look for alternatives??

      don't believe the microsoft shills (including the government entities being paid by microsoft to 'switch back') and sponsored research 'studies'.... they're entirely bullshit.

    7. Re:Maybe switch to Linux by Anonymous Coward · · Score: 2, Insightful

      I don't think Linux would help to fix stupid... Windows can be made pretty secure, linux can be made very insecure. Regular users should be locked down without the ability to install applications regardless of the OS. If they need to ability to install apps, it should be on a separate machine outside of the firewall.

    8. Re:Maybe switch to Linux by Train0987 · · Score: 3, Insightful

      This is a local government we're talking about. What are the costs to retrain every employee? What are the costs for all the new hardware that doesn't have Linux drivers? What are the costs to rewrite the water-billing software, payroll software, work order system, etc, and then integrate them all together? How many Linux gurus are willing to take the pay cut to work at the same rate as a Windows guru?

      It might sound great as an academic exercise but in the real world it is not cost effective. If Linux ever did approach the market share of Windows then the Ransomware problem on Linux would grow to be just as bad.

    9. Re:Maybe switch to Linux by Anonymous Coward · · Score: 0

      "When all you have is a hammer, every problem starts to look like a thumb."

      Rather ironic your sig is this when you think that all malware starts to look like a problem for Linux to solve.

    10. Re:Maybe switch to Linux by CaptainDork · · Score: 2

      Also: German State Plans To Migrate 13,000 Workstations From Linux to Windows

      And:

      Munich Council: To Hell With Linux, We're Going Full Windows in 2020

      --
      It little behooves the best of us to comment on the rest of us.
    11. Re:Maybe switch to Linux by Anne+Thwacks · · Score: 3, Insightful
      What are the costs to rewrite the water-billing software, payroll software, work order system, etc, and then integrate them all together?

      Probably not very much if the original systems are properly documented so you have a clear idea of what you are doing, and plenty of test data. Plus your hardware costs would probably be 1/4 what they are at present, so you could factor this as part of your "rolling upgrade plan" -you do have plans for a rolling upgrade, don't you?

      How many Linux gurus are willing to take the pay cut to work at the same rate as a Windows guru?
      Since they are probably 4 times as productive (ie believe the statistic is more like 10 times) none would need to.

      You clearly have no idea how costly it is to keep a pile of shit like Windows on the road, even without malware problems.

      --
      Sent from my ASR33 using ASCII
    12. Re:Maybe switch to Linux by Train0987 · · Score: 1

      Actually yes, I do, and I support small local governments. Tax dollars are better spent on services for the actual taxpayers, not tech experiments. That's not to say basic security should be ignored, however.

      Nothing is properly documented. Most of it was written a decade or more ago and there's no political will to change it. Why should they if it still works just fine for its purpose?

      In my experience the linux zealots have little experience with how the real world operates. Everything is a mental exercise with perfect assumptions where cost is no object.

    13. Re:Maybe switch to Linux by ArchieBunker · · Score: 1

      The problem is your free office program isn't 100% compatible with MS Office. You'll have problems with opening files people send you and vice versa. In that situation YOU appear as the problem.

      --
      Only the State obtains its revenue by coercion. - Murray Rothbard
    14. Re:Maybe switch to Linux by Anonymous Coward · · Score: 0

      What are the costs to retrain every employee?

      Every fricken desktop looks the same! They all have a start menu and icons, scrollbars and minimize buttons.
      "Upgrading" from Windows 7 to 10 is a much bigger UI change than going to KDE or MATE.

    15. Re:Maybe switch to Linux by Anonymous Coward · · Score: 0

      Pretty sure it's easier to just maintain offline backups and automate the restoration than it is to (1) re-train all staff on Linux, (2) hope they dont hate it, and (3) likely convert a lot of files.

    16. Re:Maybe switch to Linux by Anonymous Coward · · Score: 1

      First of all, little or no retraining would be necessary. In most Linux distros, all that anyone would have to do is get used different programs. Linux is also better at detecting hardware and has drivers for more hardware than Windows 10! And Linux has the added bonus that Linux does not overwrite working drivers with non-working ones with every update as many windows installations do. Linux also does not send all of your private personal data to a huge corporation so that they can sell it to advertisers!

      No Linus is not immune from malware, spyware, and viruses. But with a little user education, Linux is much more secure by design than Windows!

    17. Re:Maybe switch to Linux by sydbarrett74 · · Score: 1

      No OS is immune to social engineering. The only solution is extensive training and a change of the human culture.

      --
      'He who has to break a thing to find out what it is, has left the path of wisdom.' -- Gandalf to Saruman
    18. Re:Maybe switch to Linux by Anonymous Coward · · Score: 0

      "Why should they if it still works just fine for its purpose?"

      That is exactly the problem. Nothing will ever be better so long as some crony delivered "good enough" ten years ago... then, by-golly, good enough forever... right?

      Microsoft has done a lot of damage to humanity. Government bureaucrats have done even more. Weep for our species. Meanwhile, pass the glue and rubber bands... spit here, tape there and keep the world running. God forbid anyone design anything efficiently involving forethought.

    19. Re:Maybe switch to Linux by Zontar_Thing_From_Ve · · Score: 2
      I can tell from your post that you have never worked for any government agency, ever.

      What are the costs to rewrite the water-billing software, payroll software, work order system, etc, and then integrate them all together?

      Probably not very much if the original systems are properly documented so you have a clear idea of what you are doing, and plenty of test data. Plus your hardware costs would probably be 1/4 what they are at present, so you could factor this as part of your "rolling upgrade plan" -you do have plans for a rolling upgrade, don't you?

      Systems won't be documented. Whatever 3rd party wrote them will make sure of that so the government will have to pay them for any future changes. And you could knock me over with a feather if what apparently is something like a county government has any plans for a "rolling upgrade" in the future. Their plan is to keep using old systems until they fall apart and they have to buy new ones.

      How many Linux gurus are willing to take the pay cut to work at the same rate as a Windows guru? Since they are probably 4 times as productive (ie believe the statistic is more like 10 times) none would need to.

      You clearly have no idea how costly it is to keep a pile of shit like Windows on the road, even without malware problems.

      In the old days, they used to say "Nobody got fired for buying IBM". Now nobody gets fired for buying Windows. Plus, people know how to use Windows. You want to run Linux? Good luck getting a bunch of non-techies to get in board with reading email via anything but Outlook. I can assure you that governments don't care how much it costs to run Windows. Plus, for what it's worth, my previous employer tried to suck up to Microsoft (they gave us a pittance of their business, but they were a customer we had) and actually wrote and published a white paper "proving" that Windows was more cost effective than Linux, which was hilarious because the majority of our business actually ran on Linux. So you can say all you want that Linux is cheaper, but some pointy haired boss will have no problem finding various papers saying otherwise.

    20. Re:Maybe switch to Linux by Tough+Love · · Score: 1

      Support costs for Linux tend to exceed those of Microsoft.

      Lie detector triggered.

      --
      When all you have is a hammer, every problem starts to look like a thumb.
    21. Re:Maybe switch to Linux by Tough+Love · · Score: 1

      The problem is your free office program isn't 100% compatible with MS Office.

      Nobody cares. LibreOffice is really sweet, and just like MS Office, it does way more than you really need. Gets better every release too, it's like Christmas twice a year.

      --
      When all you have is a hammer, every problem starts to look like a thumb.
    22. Re:Maybe switch to Linux by Tough+Love · · Score: 1

      Rather ironic your sig is this when you think that all malware starts to look like a problem for Linux to solve.

      My sig is about your thumb.

      --
      When all you have is a hammer, every problem starts to look like a thumb.
    23. Re:Maybe switch to Linux by Anonymous Coward · · Score: 0

      ..properly documented...

      I see, don't work in government.

    24. Re:Maybe switch to Linux by nitehawk214 · · Score: 1

      Municipal governments have about zero budget for IT costs. Instead they would rather get windows and run the risk of getting owned instead of actually paying money for support.

      Of course, it is usually even more expensive to recover from a security incident... Well, nobody as accused politicians of being forward thinking.

      --
      I'm a good cook. I'm a fantastic eater. - Steven Brust
    25. Re:Maybe switch to Linux by nitehawk214 · · Score: 1

      Why should they if it still works just fine for its purpose?

      I wouldn't consider "zero security and begging for someone to scam them" and "works fine" the same thing.

      --
      I'm a good cook. I'm a fantastic eater. - Steven Brust
    26. Re:Maybe switch to Linux by Tough+Love · · Score: 1

      There are so many things that make Linux less of a malware magnet than Windows. Just picking one off the top of the pile: don't attempt to hide URLs and file extensions. It's a lot harder to accidentally install and run a program in Linux. There is also a culture of security in Linux that tends to rub off on newbies. Somebody emails you a sob story that ends with wanting you to enter your email password on a web page? Thanks, but no thanks. Got email with links to click on? Don't, not before you verify that the link goes to where it pretends to go. Etc etc.

      --
      When all you have is a hammer, every problem starts to look like a thumb.
    27. Re:Maybe switch to Linux by Gravis+Zero · · Score: 1

      ...not really...https://linux-audit.com/linux-and-the-rise-of-ransomware/

      From your link: "A proof of concept (PoC) is already available for Linux"

      Great, a PoC. So, how many people have reported getting hit by ransomware on Linux in the last two years since that article? *cough*zero*cough* -_-

      --
      Anons need not reply. Questions end with a question mark.
    28. Re:Maybe switch to Linux by Anonymous Coward · · Score: 0

      No point in hitting someone who has no money and can't buy windows :D

    29. Re:Maybe switch to Linux by ole_timer · · Score: 1

      https://en.wikipedia.org/wiki/...

      --
      nothing to see here - move along
    30. Re:Maybe switch to Linux by Gravis+Zero · · Score: 1

      So a single piece of ransomware (that came out before the article) and is dependent on you running Magento is what Linux users need to worry about? Sounds a hell of a lot safer than Windows.

      --
      Anons need not reply. Questions end with a question mark.
    31. Re:Maybe switch to Linux by ole_timer · · Score: 1

      ransomware by dumb email behavior...Linux won't fix that

      --
      nothing to see here - move along
    32. Re:Maybe switch to Linux by pnutjam · · Score: 1

      Linux backup systems are so much more flexible then windows and relatively easy to use. If your not linux savy, Unitrends has a great solution. I've used them in the past and it's top notch support.

      --
      Cheap storage VM.
    33. Re:Maybe switch to Linux by pnutjam · · Score: 1

      Unitrends makes a great linux based backup appliance, and they are not the only choice for linux based backup systems.

      --
      Cheap storage VM.
  3. Well, according to Sarah Palin... by Anonymous Coward · · Score: 0, Informative

    ... you can see Russia from Mat-Su, so ... maybe the ransomware was transmitted by IR.

    1. Re:Well, according to Sarah Palin... by faedle · · Score: 2

      There's always one asshole that can't help but ruin a decent joke.

    2. Re:Well, according to Sarah Palin... by greenwow · · Score: 2

      She never said that.

    3. Re:Well, according to Sarah Palin... by Anonymous Coward · · Score: 0

      I'll take seeing Russia over Mexico any day

    4. Re:Well, according to Sarah Palin... by Anonymous Coward · · Score: 0

      So it wasn't Veronica Ricci who also impersonated Sarah Palin. I have, very hard times, in staying up, to date with who, have said what about seeing something from their house while impersonating Palin. It's exhausting.

    5. Re: Well, according to Sarah Palin... by Anonymous Coward · · Score: 0

      She was a dunce and let's leave it at that

    6. Re:Well, according to Sarah Palin... by Anonymous Coward · · Score: 0

      >pedantry got downboated on /.
      I don't even know where I am anymore.

    7. Re:Well, according to Sarah Palin... by Anonymous Coward · · Score: 0

      What's, with, all, of, the, commas?

    8. Re:Well, according to Sarah Palin... by Anonymous Coward · · Score: 0

      Multiplicity of intentional Freudian commation conflation.

  4. Nice to see by Rick+Schumann · · Score: 4, Insightful

    Nice to see some people in this country aren't so dependent on high technology that they can still operate without it.

    1. Re:Nice to see by Anonymous Coward · · Score: 0

      Nice to see some people in this country aren't so dependent on high technology that they can still operate without it.

      I'm betting the only people who could use the typewriter were the people who used them before they were in the closet.

      Kids these days can't fucking use pens, they sure as hell won't know how to use a typewriter.

      Lock a millennial in a room with a typewriter, a pen and paper, and old school TV with a dial to change channels, and a rotary phone (wall mounted, of course) .. tell them to document their experience and call for help if they need it. I'm betting they never figure out any of those things.

    2. Re:Nice to see by ole_timer · · Score: 1

      yep...good old Alaskan ingenuity

      --
      nothing to see here - move along
    3. Re:Nice to see by Anonymous Coward · · Score: 0

      Ah, yes, the old "millenials are stupid" saw. They probably can't even figure out how to make their own avocado toast!

    4. Re:Nice to see by Anonymous Coward · · Score: 0

      Dude, I'm 34 and considered a millennial. I had a typewriter as a kid and didn't get a computer until I was 10, and didn't get on the Internet until I was 13. And, like, can't use pens? Really? You sound like a grumpy, out-of-touch old cunt. Just how badly has your life gone for you to turn out like this?

    5. Re:Nice to see by Rick+Schumann · · Score: 4, Informative

      4 out of 5 Oklahoma kids can't read an analog clock
      One in seven Britons can't read the time unless it's digital
      80% of kids can't read an analog clock
      I personally know 'youngins' who believe that analog electronics are completely obsolete and that you can't do anything useful unless you have at least a microcontroller to work with. Imagine their faces when I show them a crystal radio receiver, doesn't even use a battery, how does it even work??? xD
      Also realize that anyone born in the 90's or later can't imagine a world without the Internet and smartphones. They've likely never been to a public library and think that books only come from Amazon. They wonder how people communicated before 'social media'. If they had to call someone on a rotary-dial phone they'd be totally lost, and hearing the clicking in the receiver, they might be convinced it's broken. For that matter they might try to unplug it from the wall, certain that's just to 'charge' it, then maybe think the battery is bad when it doesn't work.
      They don't think that anyone listens to broadcast radio anymore, and has no idea that that metal thing on someone's roof is a TV antenna, or that you can actually watch TV for free in the first place.
      It's not a matter of 'stupid' so much as it is a matter of 'no experience with these things'. Some of them are stupid, however, because they were raised with so many modern conveniences that they didn't have to learn to take care of themselves as much with their own two hands and their own brain. Why learn things when you have the Internet on your smartphone? Why learn to drive a car when you can just call a ridesharing service to pick you up? Why bother to learn to cook when you can just pick something up somewhere? Why learn how things actually work, or learn how to build things from raw materials when you can buy just about anything you could imagine (and you've been convinced that if you can't buy it, you don't need it anyway)?
      I don't know if you're young or old, but (You) are not talking like you're very smart at all, friend AC.

    6. Re:Nice to see by Rick+Schumann · · Score: 1

      "Tougher in Alaska". Never lived there, wouldn't like it (I hate being cold all the time), but I get it. If you live in the middle of nowhere and you're in the middle of a snowstorm, you'd better be able to take care of yourself. Much respect.

    7. Re:Nice to see by PolygamousRanchKid+ · · Score: 1

      Nice to see some people in this country aren't so dependent on high technology that they can still operate without it.

      Maybe some of the folks there discovered that they didn't need their PCs any more?

      All the computing power they needed was in their cell phones.

      --
      Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
    8. Re: Nice to see by Anonymous Coward · · Score: 0

      That's what I hate about being called a millennial though. People in their 30s somehow get lumped in with 15 year olds. I grew up in the 90s man, Reagan was still in office when I was born. We had rotary phones growing up, the HDD on my first computer was 1gb. Given I didn't grow up in the horse and buggy era but to say I can't remember a time before cellphones and dial-up is ridiculous. What ever happened to Gen Y anyways?

    9. Re:Nice to see by ole_timer · · Score: 1

      ...a long time ago I was in a submarine...we just fixed things...now there's no excuse for getting had, but if you are you just deal with it...

      --
      nothing to see here - move along
    10. Re:Nice to see by Anonymous Coward · · Score: 0

      If you live in the middle of nowhere and you're out in the middle of a blizzard you're in the wrong place and will likely end up freezing to death.

      Part of surviving winter is knowing when to stay inside.

    11. Re:Nice to see by dhawton · · Score: 1

      No snow, it has been in the 70s to low 80s. And the cold isn't that bad.. especially just north of Mat-Su on the other side of the mountain range. It's a dry, windless cold... so it actually feels warmer.

    12. Re:Nice to see by Anonymous Coward · · Score: 0

      Every government agency and certainly any public traded company has a disaster recovery plan, it all comes down to whether the cost is worth bothering to get the lights back on (so to speak.) A fast food place might close due to how automated their equipment has gotten resulting in it being too much trouble or straight up impossible to provide an alternative with what they have, whereas a company doing millions of Dollars worth of business an hour from a single building will invest in the equipment and facilities needed to remain operational. The last company I was at kept typewriters and calculators around as a part of the D.R. plan. It's cheap insurance since most companies over 15 years old have this equipment lying around anyways.

    13. Re:Nice to see by Darinbob · · Score: 1

      Back in the mid 90s, a computer store I was at lost their network connection to the back office. Possibly a power outage though at the time there were lights on in the building. The cashiers could not figure out how to sell stuff. So they had three cashiers at each high tech register - one talking to the customer and writing out a receipt, one with a big button calculator, and one with a procedures manual behind feeding them instructions. It was probably more laughable at the time because there were stores in walking distance that used normal cash register tills.

      Today however it's worse. Occasionally I stop off at a fast food place and the person behind the register doesn't know how to count out change, and sometimes can't count the exact change I hand them in the first place.

    14. Re:Nice to see by Darinbob · · Score: 1

      Oh sure, they'll use these things if they're a hipster. They'll be bragging later on their blog about how it was a much more authentic experience, and suddenly these things will be cool and hip again.

    15. Re:Nice to see by ole_timer · · Score: 1

      I got a free starbucks coffee because it the pos (in all it's meanings!) was re-booting and taking it's time...the waiter (excuse me - the barristaman) finally said it's free

      --
      nothing to see here - move along
    16. Re:Nice to see by Kjella · · Score: 1

      It's not a matter of 'stupid' so much as it is a matter of 'no experience with these things'. Some of them are stupid, however, because they were raised with so many modern conveniences that they didn't have to learn to take care of themselves as much with their own two hands and their own brain.

      I have absolutely zero experience preserving food outside of a refrigerator except when we go camping or something but then it's eaten in a day or two. Always had one, I'm assuming I'll always have one. Would probably end up eating canned food, biscuits and pasta after everything in the fridge spoiled. I vaguely know that food can be pickled, cured, dried, smoked, fermented etc. but frankly I got no clue. Also I have no idea how to mend clothes or anything like that, it probably seemed like a useful skill 50 or 100 years ago but today I'll head down to the store to buy another pack of socks when they wear out. You're just complaining about the things the next generation think is useless from your generation...

      --
      Live today, because you never know what tomorrow brings
    17. Re:Nice to see by pnutjam · · Score: 1

      He's also ignoring rural people, and urban poor. Not everyone has ready access to stores, money, or the internet.

      --
      Cheap storage VM.
  5. Competent network/system admins by DaMattster · · Score: 1

    Maybe, the MatSu government needs to hire some competent IT management. Really stuff like this should not happen as competent staff will take proactive approaches to systems and network security.

    1. Re:Competent network/system admins by Anonymous Coward · · Score: 0

      >imblying Alaskan borough governments have the money
      No government agency should be so mission critical that they can't afford the down time. If they are, we have failed as citizens to be self-reliant, and the founders would be rightly disappointed.

    2. Re:Competent network/system admins by Anonymous Coward · · Score: 0

      Creimer is either on vacay or super busy. Either way, he should book a flight to Alaska tonight!

    3. Re:Competent network/system admins by faedle · · Score: 2

      I've been there. No competent IT person in their right mind would move up there. It's considerably north enough from Anchorage (about 50 miles) that your commute would suck (if you want to live somewhere real), and the wrong mix of "rural" to appease the people who want to live in the middle of nowhere, and .. Palmer is a shithole anyway.

    4. Re:Competent network/system admins by zlives · · Score: 1

      you are correct, but I am sure since security is expensive and inconvenient its easier to ignore it. where will they find the money?!!

      "This is the total of state, county and city sales tax rates. The Alaska state sales tax rate is currently 0%. The Matanuska Susitna Borough sales tax rate is 0%"

      "Alaska is the only state that does not collect state sales tax or levy an individual income tax"

    5. Re:Competent network/system admins by Krazy+Kanuck · · Score: 2

      No worries man, more for me. No person in their right mind would move to Alaska for its beauty and freedom then shack up in some hole like Anchorage.... Palmer is a bit dumpy though, but its a really insignificant part of the borough let alone the state.

    6. Re:Competent network/system admins by Krazy+Kanuck · · Score: 1

      Property taxes is how things get done around here. Well and some cities have sales tax but that's not applicable this.

    7. Re:Competent network/system admins by Anonymous Coward · · Score: 0

      Nice no true scotsman fallacy, there. Arrogant IT admins are waiting in line to be compromised. No one is infallible, and even if some rare IT admin was somehow infallible, there is not an operating system or network that can be made completely secure (without air gaps and physical security). You are kind of a fool, the most common kind.

    8. Re:Competent network/system admins by neo-mkrey · · Score: 1

      HA ha hah ha...wait...you're being serious?!?

    9. Re:Competent network/system admins by Anonymous Coward · · Score: 0

      ..and on top of that the borough gov't & utilities is where the AK republican party pays off apparatchiks with jobs. Which is fine for assessors and shop supervisors, but not so functional with tech positions.

    10. Re:Competent network/system admins by Anonymous Coward · · Score: 0

      You were 15 minutes away from having gone 24 hours between creimer comments. Here's a good star and try again! The purpose of our conversion therapy is to make you less retarded and more gay.

    11. Re:Competent network/system admins by faedle · · Score: 1

      See, I like Anchorage. Then, of course, most of my life has been spent in the big cities of the West Coast (from San Diego to Seattle)... so maybe I'm a poor judge of not-hell-holes.

      All that said: find me a $50k a year job in Juneau and I'm on the next flight.

    12. Re:Competent network/system admins by Anonymous Coward · · Score: 0

      Creimer is still posting comments and videos. He is just not trolling his trolls.

  6. silk road by Anonymous Coward · · Score: 1

    hire mercenaries on Silk road to hunt down the ransoming thieves and bring them to justice. Start a kickstarter to pay for it.

    1. Re:silk road by Anonymous Coward · · Score: 0

      Many dovish slashdotters say the way to prevent ransomware is to have better security, not to be hard on criminals, but I like the two-pronged approach more.
      Fix security problems, but also put ransoming thieves into a running wood chipper.

    2. Re:silk road by supremebob · · Score: 1

      They could complain to the government about it as well, but their solution would probably be to outlaw whatever cryptocurrency that the ransomer used. You know, the "Shoot the Messenger" style approach.

  7. Benefits of staying on Windows by Anonymous Coward · · Score: 0

    all that lovely ransom-ware just waiting to get on...

  8. Ransom by Quzak · · Score: 0

    As a taxpayer and American citizen, I am appalled that they did not pay the ransom. You must always pay the ransom or the price of unlocking will go up to account for this. These hackers are providing a wonderful service by illuminating the flaws in systems. Donâ(TM)t want to be ransomed, then secure your systems. Not paying the ransom is the same as theft.

    --
    Support your local school shooter, give them your firearms.
    1. Re:Ransom by Anonymous Coward · · Score: 0

      So someone kicks open your front door because you only secured it with a shitty chain lock and they decide they're going to stay in the house until you pay the ransom, you think they should pay the ransom? Really? Even if the systems aren't secure, breaking into them and trying to ransom people is still illegal.

      Almost sounds like you ransom people for a living...

  9. Focus On The Positive by Anonymous Coward · · Score: 1

    I prefer to focus on the positive, as does the Mat-Su Public Affairs Director. Sure the ransomware hit wasn't supposed to happen, but what if it does anyway? Can you deny that malware frequently targets users, social behavior, and employees trying to "do the right thing" nowadays?

    Thus, this stuff happens, despite all our best efforts. It's better that the users have some resilience and ingenuity when an outage occurs, rather than acting all helpless and like IT has to fix everything. Haul out those typewriters and serve the public dammit!

    That gives IT some breathing room to repair the damage and just maybe, everyone learns something from the event.

  10. Back up the truck ... by CaptainDork · · Score: 2

    ... and explain how the ransomware entered the system.

    Was it email phishing or malicious website, a direct attack through an exploit?

    All this shit about moving to Linux and stuff is radical given that any weak entry points are not OS-related.

    --
    It little behooves the best of us to comment on the rest of us.
    1. Re:Back up the truck ... by Anonymous Coward · · Score: 0

      ... and explain how the ransomware entered the system.

      Was it email phishing or malicious website, a direct attack through an exploit?

      When it comes to ransomware, there's about a 90% chance that it entered the system the same way it does for everyone else; stupidity and ignorance.

      Malware is the #1 reason I tend to ignore users who insist they need local admin rights without providing a valid reason.

    2. Re:Back up the truck ... by Bigbutt · · Score: 0

      Interestingly I'm a Unix Admin and I just got upgraded from Windows 7 to Windows 10. With the upgrade I can't delete icons from my desktop (I hate having icons on my desktop) and I had to have the IT guys come over to install cygwin so I could log in to my servers.

      [John]

      --
      Shit better not happen!
    3. Re:Back up the truck ... by Anonymous Coward · · Score: 0

      Interestingly I'm a Unix Admin and I just got upgraded from Windows 7 to Windows 10. With the upgrade I can't delete icons from my desktop (I hate having icons on my desktop) and I had to have the IT guys come over to install cygwin so I could log in to my servers.

      [John]

      Sounds like with the upgrade they removed your local admin rights. It's called common sense administration, and we're finally reaching a point where even the users finally understand why local admin rights are not something you automatically give to every Windows user.

      I mean forget the obvious malware problem for a moment; would you give root or sudo rights to every user? Let them arbitrarily install whatever software they feel they need at anytime? I didn't think so.

    4. Re:Back up the truck ... by Anonymous Coward · · Score: 0

      no WSL ?

    5. Re:Back up the truck ... by pz · · Score: 1

      The right answer is: for a low-volume workload like you get in small rural towns, there isn't much of a real need for modern electronics. Really, there isn't. While it might be BORING to fill out 100 trash permits a day in cursive, it really doesn't take that long, especially when you compare it to a hunt-and-peck typist who then has to print out the resulting form (and who is still going to be bored doing their job with a keyboard). Computers are not always the answer.

      My hometown, while neither so small nor so rural, does lots of stuff with paper and pen. I'm happy because it means (a) there are fewer computers so the TCO is low compared to a paperless office, (b) our records are less apt to be stolen by some pimple-faced goon because they are not electronic, and (c) lower TCO means lower property taxes. Oh, and it means that when I need to find out where the sewer lines were laid 50+ years ago on my property, the piece of paper is still there, fully legible, and doesn't need special software to be read.

      Call me a luddite (wouldn't be the first time), but I believe in using the right tool for the job. Sometimes that means using a computer, sometimes it does not.

      --

      Put my fist through my alarm clock with its ding-dong death inside my ear. - The Blackjacks.
    6. Re:Back up the truck ... by pnutjam · · Score: 1

      Try mobaxterm portable edition. It's the command line windows should have had, it's not Open Source, but there is a free version.

      --
      Cheap storage VM.
  11. There's another reason not be so reliant on tech by Solandri · · Score: 2

    Power failures. When I lived in the boonies, power failures were pretty frequent. They usually lasted a few seconds to a few minutes, so I bought UPSes and figured I was safe.

    Then one night during a storm, the power went out. My UPSes kicked in, but the power didn't come back for more than 10 minutes. So I shut down my desktop and switched to my laptop. But 45 minutes in I lost Internet (I figure the cable company's battery backups ran out). No problem, I could chill for a few hours playing games on my laptop connected to a 12V car battery I kept around for such emergencies. Right? Turns out a tree fell over and took out the main power line. It took them 3 days to repair it. No electricity meant no heat, lights, hot water, refrigeration (I ended up putting most of the food in a basket and putting that outside), or computers. What ended up saving me was an antique wood stove. I chopped up some spare wood 2x4s left over from redoing the fencing, and burned those. For 3 days that was my only way to heat the house, warm water, and cook meals. I had candles, but fortunately my supply if AA batteries for my flashlights held.

    I ended up moving soon after, but a generator was next on my shopping list if I hadn't. I moved back to Southern California with a much better appreciation of what it's going to be like when The Big One hits. I ended up buying a diesel truck with 110V AC outlets, and keep spare cans of diesel fuel in the garage (it can last for years with additives to kill biological organisms, unlike gasoline which usually goes bad after a few months). Been mulling over getting solar panels plus a battery bank installed as well; I'm just not sure if this is the house I want to continue living at.

  12. That's not really a backup then by Solandri · · Score: 2

    Ideally, backups should be stored offline (precisely to prevent ransomware from encrypting it) and off-site (in case the building burns down). Backing up your files to an always-accessible hard drive on a nearby system isn't much better than copying them to a second hard drive on the same computer.

    1. Re:That's not really a backup then by Kjella · · Score: 1

      Ideally, backups should be stored offline (precisely to prevent ransomware from encrypting it) and off-site (in case the building burns down). Backing up your files to an always-accessible hard drive on a nearby system isn't much better than copying them to a second hard drive on the same computer.

      Well it can at least be done smarter with the backup system having read permission to the main system but otherwise be an isolated system. Of course that's no silver bullet either if they compromise the admin and grab both logins or it's an admin gone rogue, but that's how you usually do live backup which is then shuffled to tape. Putting it all in the same domain is just a bad design no matter how you look at it.

      --
      Live today, because you never know what tomorrow brings
    2. Re:That's not really a backup then by pnutjam · · Score: 1

      I backup to a 2nd drive in the same computer. cron.weekly has a job that mounts the drive, rsyncs the data, and takes a btrfs snapshot before unmounting the drive.

      Of course I have a 2nd job that rsyncs to a virtual machine in another country.

      --
      Cheap storage VM.
  13. MICROS~1 Windows strikes again .. by najajomo · · Score: 1

    MICROS~1 Windows strikes again ..

  14. Unspoken by Anonymous Coward · · Score: 0

    Was that the typewriters had just been retired to said closets last week.

  15. Governments are SUPPOSED to be inefficient. by Ungrounded+Lightning · · Score: 1

    God forbid anyone [in or working for government] design anything efficiently involving forethought.

    But governments are SUPPOSED to be inefficient and ineffective.

    That's because, whenever they DO get efficient, then then efficiently oppress everyone within their power an become tyrannies.

    Inefficiency is a defence against this. It was even deliberately designed into the US Federal government in an effort to keep it from ballooning out of control.

    Fortunately for us all, the incentive structures inherent in a coercive monopoly tend to make governments inefficient and error prone even without having such flakiness as a deliberate design element. (Doubly so, since such deliberate designs are themselves subject to the inherent flakiness, and it all goes fractal from there.)

    --
    Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
  16. Have some Wine by Ungrounded+Lightning · · Score: 1

    What are the costs to rewrite the water-billing software, payroll software, work order system, etc, and then integrate them all together?

    That depends. Will they run under Wine? If so, you don't need to re-write them (or can rewrite them piecemeal as they need upgrading anyhow.)

    Downside to Wine is that it emulates Windows so well that it makes the system vulnerable to some Windows malware attacks. B-b

    But far from all, and you can sandbox it without too much work. B-)

    --
    Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
  17. people that say switch to linux have no clue by ole_timer · · Score: 1

    ...what it's like for a typical it shop with a dumb user population...the issue is not windows per se, it's stupid users...

    --
    nothing to see here - move along