Google
 

Aardvark Daily

New Zealand's longest-running online daily news and commentary publication, now in its 23rd year. The opinion pieces presented here are not purported to be fact but reasonable effort is made to ensure accuracy.

Content copyright © 1995 - 2017 to Bruce Simpson (aka Aardvark), the logo was kindly created for Aardvark Daily by the folks at aardvark.co.uk



Please visit the sponsor!
Please visit the sponsor!

An interesting case study in "duh!"

10 August 2017

Recently the NoPetya attack crippled computer systems around the world.

It wasn't just poorly administered home computers that were hit, it was some of the world's biggest and, one would think, most stringently operated computer networks that went down.

For those who have been living in a cave of late, the NoPetya attack involved a piece of malware that encrypted a computer's files and then demanded a ransom for their decryption. Payment was requested by way of Bitcoin so as to preserve the anonymity of the attackers.

Many private, commercial and government systems around the world fell victim to this attack and those without proper disaster management strategies were badly affected.

The BBC today published a story about one of the worst hit companies, TNT.

The BBC piece shows just how much of a spanner this attack threw into the daily operations of one of the world's largest courier companies.

It is not a pretty picture for the company or its customers.

Even now, some time after the attack, the company is still feeling the after-effects and claims that it is unlikely all the lost data will be recovered.

Where are their backups?

Where are their disaster-management strategies?

Where were the procedures designed to protect their essential IT systems from such malware?

Why were their IT people so asleep at the wheel?

I would certainly hope that TNT spend a lot of time in postmortem, analysing what went wrong and how a repeat of this situation could be avoided in future. I would also hope that other companies and organisations also take note of the way that this simple attack so badly disrupted the company's operations for so long.

Fortunately for TNT, they are owned by FedEx, which means that they're unlikely to go under as a result of the lost business and reputation this attack has produced -- but a smaller company could well have been sent to the wall by such a lack of preparedness.

Following on from yesterday's column... how would this company have coped in the event of a large CME which might also take out their IT systems?

I am amazed that so many very large companies appear to have done so little to protect themselves from the inevitability of disaster.

We need only look at the way other worms and viruses have spread through mission-critical systems to see that perhaps its time there was a major overhaul in the design of the Net and the increasing reliance placed on it by commerce and government.

Is the Net becoming just too unsafe for such things as critical infrastructure management?

Should a parallel network, available only to authorised/certified parties, be built for the purpose of such sensitive systems?

Will we reach the point where sometime (in the not too distant future), all code will have to be digitally signed by a recognised certification authority before it can be run on a Net-connected computer?

Please visit the sponsor!
Please visit the sponsor!

Have your say in the Aardvark Forums.

PERMALINK to this column


Rank This Aardvark Page

 

Change Font

Sci-Tech headlines

 


Features:

Beware The Alternative Energy Scammers

The Great "Run Your Car On Water" Scam

 

The Missile Man The Missile Man book

Recent Columns

OMG, we just nuked Saturn!
The Cassini probe that has delivered so much fantastic scientific data about Saturn and its moons is gone...

The end of cash?
Does anyone remember cash?...

SWDC calls me a liar
I'm sorry for the late publication of today's Daily Dose but it could not be helped, I had to attend a meeting of the South Waikato District Council in order to do two things...

Buying the media
There is an election in just a matter of days...

That ownership thing again
Over the years I have written several columns discussing the issue of whether you really own the stuff you buy -- at least the hi-tech stuff...

You know you're too busy when...
Early risers this morning will have noticed that Aardvark's domain name had expired...

What the? and shhhhh!
This morning I did what I always do first thing... I checked Google News for the latest stories in the categories of science and technology...

NZ's energy future
Energy is going to be crucial to the future of this (and every other) nation so you'd expect that governments would be working hard on creating a plan for future energy generation and use...

Youtube to ditch ad-revenue sharing?
Okay, what follows is purely speculation...

Stand well clear!
It seems that the blue touch-paper to an armed conflict between N.Korea and neighbouring countries, plus the USA, has almost been lit...

5.5 billion transistors?
I fondly recall the first time I held a transistor in my hand...