You don't need to be an 'investor' to invest in Singletrack: 6 days left: 95% of target - Find out more
Just tried to price up a parcel to send to the US.. but RM aren't accepting any international parcels.
Looks like RM got hacked last week and still having a major issue.
Anyone know whats going on? Is it being held hostage by the Russians?
Is it being held hostage by the Russians?
"Russian based' criminals. Nobody goes so far as to say the Russian state - but these criminals don't target businesses / victims within Russia or in countries Russia considers to be an ally.
Bet they said it was a "sophisticated hack", or words to that effect?
AKA it's not that we've poor and/or badly managed controls, just that they're 'World Class' criminals.
FWIW I work in controls assurance in the FS industry...
Bet they said it was a “sophisticated hack”,
They've been quite open and said - 'someone opened a dodgy attachment'. Most important thing in all this is to make sure we blame the victim.
If they got a system pwned by a dodgy attachment, something was seriously lacking in how they work or how their systems are set up. It would lso not necessarily mean that it was a sophisticated attacker either.
Mind you, it might make it a lot easier fr them to garner sympathy if they say it is a sophisticated attacker and, as attribution is difficult, no one is going to disprove them. Unless they release the IOCs and someone independent knows for sure who it is.
“Russian based’ criminals. Nobody goes so far as to say the Russian state – but these criminals don’t target businesses / victims within Russia or in countries Russia considers to be an ally.
to be fair if I was an independent Russian superhacker, I wouldn't poo in my own back yard either. Less liable to be prosecuted or fall out of a window if caught.
I saw somewhere that it was down to RM still using Windows 7 which doesn’t surprise me at all - too busy paying out dividends to shareholders than worry about things like investment in business-critical software
It's a major failure on RM's part, that we're now on to day 5, and they've seemingly not managed to restore any international services.
From what I've heard it requires a complete wipe and reinstall of the system.....
Parcelforce is unaffected and you can still send international post through postoffice's using this with a discount they should provide on site.
Given China has also apparently been attacked by this same group, i doubt its anything state sponsored.
More likely criminal gang.
Prior to the war, the Ukraine was known for being a base for these type of criminals.
Without knowing the specifics of the attack I'm not going to criticise the IT security side of things. Absolutely it could turn out to be negligence or poorly implemented security controls or massive under-funding and management not listening to IT about systems they need to put in place etc. But also it could have used a zero day (once they'd got a foot in the door via the phishing attack) and truly immutable backups for your core IT is difficult. If a lot of their core IT systems are now ransomware encrypted that's a painful recovery process in itself, if their backups are encrypted to they're in a whole world of hurt.