Thinking Like The Bad Guys

Malicious attackers often think and work like  thieves,  kidnappers,  and  other  organized criminals you hear about in the news every day. The  smart  ones  constantly  devise  ways to  fly under the radar and exploit even the smallest weaknesses that lead them to their target. The following are examples of how hackers and malicious users think and work. This list isn’t intended  to  highlight  specific  exploits  that  I cover in this  blog  or  tests that I  recommend you carry  out,  but  rather  to demonstrate  the  context and approach of a malicious mindset:

 ✓ Evading  an intrusion  prevention  system  by changing their MAC address or IP address every few minutes to get further into a network without being completely blocked

 ✓ Exploiting a physical security weakness by being aware of offices that have already been cleaned by the cleaning crew and are unoccupied (and thus easy to access with little chance of  getting caught),  which  might be made obvious by, for instance, the fact that the office blinds are opened and the curtains are pulled shut in the early morning

 ✓ Bypassing web access controls  by changing  a  malicious  site’s  URL to its  dotted decimal IP address equivalent and then converting  it  to  hexadecimal  for  use  in  the web browser

Also read this :― Social Engineering Toolkit (SET)

Using unauthorized software that would otherwise be blocked at the firewall  by changing  the  default  TCP  port  that  it  runs  on

 ✓ Setting  up  a  wireless  “evil  twin”  near  a local Wi‐Fi hotspot to entice unsuspecting Internet surfers onto a rogue network where their information can be captured and easily manipulated

Also read this :―Wi‐Fi Protected Setup

 ✓ Using an overly‐trusting colleague’s user ID and password  to gain access to sensitive  information  that  would  otherwise  be highly improbable to obtain

  ✓ Unplugging  the power cord or Ethernet connection to a networked security camera that monitors access to the computer room or other sensitive areas and subsequently gaining unmonitored network access

 ✓ Performing SQL injection or password cracking against  a  website  via  a neighbor’s unprotected wireless network in order to hide the malicious user’s own identity

 Malicious hackers operate in countless ways, and this list presents only a small number of the techniques hackers may use. IT and security professionals need to think and work this way in order to really  dig in and find security vulnerabilities that may not otherwise be uncovered.

Like us on Facebook : Grey Hat Hackers

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader. 

Hacking Web 2.0

Newer web technologies, originally dubbed “Web 2.0,” have changed how the Internet is used. From YouTube to Facebook to Twitter, new server and client‐side technologies, such as web services, Ajax, and Flash, are being rolled out as if they’re going out of style. And these aren’t just consumer technologies. Businesses see the value in them, and developers are excited to utilize the latest and greatest technologies in their environments.

Unfortunately, the downside to these technologies is complexity. These new rich Internet applications, as they’re also referred to, are so complex that developers, quality assurance analysts, and security managers are struggling to keep up with all their associated security issues. Don’t get me wrong; the vulnerabilities in newer applications are very similar to what show up with legacy technologies, such as XSS, SQL injection, parameter manipulation, and so on. You have to remain vigilant.

In the meantime, here are some valuable tools you can use to test for flaws in your Web 2.0 applications: 

     Web Developer for analyzing script code and performing other manual checks.

     WSDigger for analyzing web services.

     WSFuzzer for analyzing web services.

Technologies such as Ajax and web services are here to stay, so try to get your arms around their security issues now before the technology grows even more complex.

like us on facebook : Grey Hat Hackers 

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.

Wi‐Fi Protected Setup

 Wi‐Fi Protected Setup (WPS) is a wireless standard that enables simple connectivity to “secure” wireless APs. The problem with WPS is that its implementation of registrar PINs make it easy to connect to wireless and can facilitate attacks on the very WPA/WPA2 pre‐shared keys used to lock down the overall system. As we’ve seen over the years with security, everything’s a tradeoff!

WPS is intended for consumer use in home wireless networks. If your wireless environment is like most others that I see, it probably contains consumer‐grade wireless APs (routers) that are vulnerable to this attack.

The WPS attack is relatively straightforward using an open source tool called Reaver (https://code.google.com/p/reaver‐wps). Reaver works by executing a brute‐force attack against the WPS PIN. I use the commercial ver sion, Reaver Pro (www.reaversystems.com), which is a device that you connect your testing system to over Ethernet or USB. Reaver Pro’s interface, as shown in Figure 1, is pretty straightforward.
Running Reaver Pro is easy. You simply follow these steps:

      1.  Connect to the Reaver Pro device by plugging your testing system into the PoE LAN network connection. You should get an IP address from the Reaver Pro device via DHCP.

      2.  Load a web browser and browse to http://10.9.8.1 and log in with reaver/foo as the username and password.

      3.  On the home screen, press the Menu button and a list of wireless networks should appear.
      4.  Select your wireless network from the list and then click Analyze.
     
      5.  Let Reaver Pro run and do its thing.
        This process is shown in Figure 2.

Fig. 1 : The Reaver Pro Startup Window

Also read : Top 10 WiFi Penetration Testing Tools

Fig. 2: Using Reaver Pro to Determine That Wi-Fi Protected Setup is Enabled

If you wish to have Reaver Pro automatically start cracking your WPS PIN, you’ll need to click Configure and set the WPS Pin setting to On. WPS PIN cracking can take anywhere from a few minutes to a few hours, but if success ful, Reaver Pro will return the WPA pre‐shared key or will tell you that the wireless network is too far away or that intruder lockout is enabled.

I’ve had mixed results with Reaver Pro depending on the computer I’m run ning it on and the wireless AP that I’m testing. It’s still a worthy attack you should pursue if you’re looking to find and fix the wireless flaws that matter.

Countermeasures against the WPS PIN flaw

It’s rare to come across a security fix as straightforward as this one: Disable WPS. If you need to leave WPS enabled, at least set up MAC address controls on your AP(s). It’s not foolproof, but it’s better than nothing! More recent consumer‐grade wireless routers also have intruder lockout for the WPS PIN. If the system detects WPS PIN cracking attempts, it will lock out those attempts for a certain period of time. The best things to do to prevent WPS attacks in the enterprise is to not use low‐end wireless routers in the first place.

like us on facebook : Grey Hat Hackers

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader. 

Social Engineering Toolkit (SET)

Social Engineering Toolkit  (SET) is an advanced,  multifunctional, and easy-to-use computer-assisted social engineering toolset, created by the founders of  TrustedSec (https://www.trustedsec.com/). It helps you prepare the most effective way to exploit client-side application vulnerabilities and makes a fascinating attempt to capture the target’s confidential information (for example, e-mail passwords). Some of the most efficient and useful attack methods employed by SET include targeted phishing e-mails with a malicious file attachment, Java applet attacks, browser-based exploitation, gathering website credentials, creating infectious portable media (USB/ DVD/CD), mass-mailer attacks, and other similar multiattack web vectors. This combination of attack methods provides you with a powerful platform to utilize and select the most persuasive technique that could perform an advanced attack against the human element.

 To start SET, navigate to  Applications  |  Kali Linux  |  Exploitation Tools  |  Social Engineering Toolkit  |  setoolkit.

You could also use the terminal to load SET: root@kali:~# setoolkit

In our test exercise, we will demonstrate an e-mail phishing attack with a malicious PDF attachment, which would compromise the target machine when executed.

Targeted phishing attack

During this  attack method, we will first create an e-mail template to be used with a malicious PDF attachment, select the appropriate PDF exploit payload, choose a connectivity method for the compromised target, and send an e-mail to the target via a Gmail account. Note that you can also spoof the original sender e-mail and IP address by using the  sendmail  program available under Kali; you can enable its configuration from the  /usr/share/set/config/set_config  file. For more information, visit the  Social Engineer Toolkit (SET)  section at  http://www.socialengineer.org/framework/Social_Engineering_Framework.

The steps to perform a targeted phishing attack are as follows

1.  Select  1  from the initial SET menu to see the following screenshot:


2.  From the options seen in the preceding screenshot, we will select  1  to access the  Spear-Phishing Attack Vectors  section of SET, which will display the information shown in the following screenshot:

3. We must then select option 3 from the preceding screenshot to start the social engineering template, as shown in the following screenshot:

4. As seen in the previous output, there might be some formatting issues. The template generator will only use what you have typed as part of the template. After completing the e-mail template, press Ctrl + C to return to the previous menu. At this point, we will move on to performing an e-mail attack. Select 1 from the Perform a Mass Email Attack menu. Then, choose 6 to select the Adobe CoolType SING Table “uniquename” overflow option, as shown in the following screenshot:

5. Enter the payload you want, which in this case is 6 for a Windows reverse TCP shell. Then, you need to enter the IP address for the listener as well as the port number that will be used to connect to it. For this fictional representation, we will use 192.168.1.1 as the IP address and 5555 as the port, as shown in the following screenshot:

6. We will rename the file so that we can take advantage of an opportunity to be cool and then choose the totally uncool filename BizRep2010.pdf as the new name for our payload. After this, we will need to let SET know what we plan on doing with this payload. Choose 1 to target a single e-mail address and then 1 again to move forward using the template that you created earlier. Your current screen should look similar to the following screenshot:

7.  At this point, we select our previously created e-mail template (11). The same template can be used over multiple social engineering attacks. The quality of the  templates that you create will greatly influence the effectiveness of your phishing campaign. At this point, you would use a valid e-mail relay or a Gmail account to send the targeted attack to the end user.

NOTE : Use this attack only if it is part of your rules of engagement and your client understands what you will be doing. This tool allows you to send out live infected files to the e-mail recipients and laws regarding this could vary depending on where you reside and where you are launching the tests. Once you place the e-mail information in the tool, it will immediately attempt a connection and send the file. There is no warning button.

8.  Once the attack  has been set up, we should wait for a victim to launch our malicious PDF file. As soon as the victim executes our PDF attachment, we will be thrown back with a reverse shell access to their computer. Note that the IP address  192.168.1.1  is an attacker machine (that is, Steven) that listens on port  5555  for a reverse shell connection from the victim’s computer.

So, we have successfully socially engineered our target to acquire remote access to the victim’s computer. Let’s get an interactive shell prompt and execute the Windows commands. We can utilize SET to launch an e-mail phishing attack against a single person or multiple people at the same time. It provides us with an effective customization and integration of e-mail to draw a secure path for the social engineer. This scenario is typically useful if you want to target multiple corporate employees while maintaining the covertness of your actions. SET is continually updated by its creators, and as such is subject to undergo drastic changes at any moment. We have only scratched the surface of this tool’s capability. It is highly recommended that you continue to learn about this formidable social engineering toolset by visiting  https://www.trustedsec.com/downloads/socialengineer-toolkit/;  start by watching the videos that are presented on that site.

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.

Like us on facebook

Don’t Overlook Bluetooth

You undoubtedly have various Bluetooth‐enabled wireless devices, such as laptops and smartphones, running within your organization. Although vulnerabilities are not as prevalent as they are in 802.11‐based Wi‐Fi networks, they still exist (currently, over 100 Bluetooth‐related weaknesses are listed at http://nvd.nist.gov), and quite a few hacking tools take advantage of them. You can even overcome the personal area network distance limitation of Bluetooth’s signal (typically just a few meters) and attack Bluetooth devices remotely by building and using a BlueSniper rifle. (click on the name given below to download.) Various resources and tools for testing Bluetooth authentication/pairing and data transfer weaknesses include:
 ✓Blooover
 ✓Bluelog — part of Kali Linux 
 ✓Btscanner — part of Kali Linux
Many (arguably most) Bluetooth‐related flaws are not high risk, they still need to be addressed based on your own unique circumstances. Make sure that Bluetooth testing fall within the scope of your overall security assessments and oversight.

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.

What is DuckDuck Go, How Does it Work?

The main features of DuckDuckGo could be described as “a search engine that doesn’t track you”. It says it does not use cookies to follow users actions and promises it doesn’t collect personal information of any kind. They even claim your IP address is hidden.
Normally when clicking on a link from Google and Bing, even in incognito mode, the terms of the search are sent to the site you’re visiting within the HTTP referrer header. When you visit that site, the computer you’re using shares information, such as the IP address. This information can ultimately be used to identify you.
The often uncomfortably personal contents of your searches won’t be shared with any third-party advertisers, insurance companies etc etc. So, if you just happen to search for, *cough* “male enlargement treatments” or maybe “how to get out of bad credit,” it can’t be traced back to you according to DuckDuckGo’s privacy policy.
An additional method to help avoid search leakage is to use a proxy. DuckDuckGo has a Tor exit control, which essentially creates an end-to-end anonymous/encrypted search. Simply typing !proxy domain into DuckDuckGo will automatically route you through a proxy, be mindful though that proxies can be slow, especially the free ones, the DuckDuckGo proxies are funded through advertising.
Will DuckDuckGo share my information with the authorities?. DuckDuckGo disclosed it doesn’t receive law enforcement requests because there is no data to request.
If you are one of those people who doesn’t want to be part of the surveillance culture that is so prevalent these days then “Duck it” instead of “Google it”.

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.

VIRTUAL PRIVATE NETWORK (VPN): EVERYTHING YOU NEED TO KNOW

To put it simply, a Virtual Private Network (VPN) is a service or program that allows a device to connect to a secure offsite server over a network using an encrypted, “tunnel-like” connection. It allows the user’s IP address to be masked, providing a layer of all-important privacy and anonymity. Besides, the encryption of the connection is generally of such a high-grade that any data transmitted can be considered perfectly safe. Originally used for businesses, companies offering VPN services to consumers started to form, realizing the immense security benefits that users can reap from the service.

They are used by everyone from families at home who want to make sure no one can track their online habits to a journalist who doesn’t want people or governments to know where they are. Travelers love them in particular due to the safety they grant one on unknown networks. The underlying thread is protection, and running a quality VPN on your computer is a surefire way to make yourself safer and protect your personal information.

Original Business Applications

If you are wondering where the concept of consumer VPNs came from, or why they’re often referred to as “consumer” VPNs, then you should know that they originally were used for business purposes. Companies needed a secure way to allow remote workers and executives to access office data, and a VPN was a much cheaper alternative than a leased line connection. After the first wave had been installed, businesses realized the levels of security and connectivity VPNs gave remote employees. They only grew in popularity from there.
Many businesses today still use Virtual Private Networks or technology based off of VPNs, and business owners and decision makers at businesses should read more about the subject if they aren’t already knowledgeable about the matter. You would want an IT professional to set one up, but you can learn a lot from reading up on the subject and examining your options. It could be your best line of defense against corporate espionage or a data leak like the ones you see in the news.

The Main Threats: Empowering Yourself against Cybercriminals

Public Networks


One of the main tips that the Stop. Think. Connect. Campaign espouses is to be wary of WiFi hotspots. This is with good reason, as there is a particular type of hacker on these networks that you need to watch out for. They will lurk on public networks, usually in cafes or public offices, and they will use “sniffer software” or set up a fake network with a name designed to trick you. It is estimated that identity theft happens to 5 percent of people each year, and you have the ability to prevent becoming one of those people.
Of course, your main defense and tool remain your routines and caution. If you see a suspicious network in a restaurant, ask an employee about it to see if it is legitimate. Check to see if a network is encrypted. You should only seriously consider using a public network without other protections in place if the network has WPA2 protection on it. Finally, err on the side of caution. Your data plan has a purpose, and many activities can wait until you are safely home.
In addition to caution, however, a VPN is the best and sometimes the only way that you can protect yourself against this particular threat. The encryption and “tunnel” that the VPN uses makes it so that any hacker using a specialized setup will see nothing concerning your data use. The most that they would ever see is information that says you are using a VPN. At that point nearly any hacker will move on to a different target, and those without any sense would need years before they cracked the encryption.

IP Tracking

Online security and online privacy go hand in hand. Hackers cannot take what they cannot find. A VPN will mask your IP address by having all traffic routed through the VPN server, making it appear that the address is that of the server you are using. As an IP address can be used to track down your physical location, a VPN will help you stay anonymous. In some cases, more details can be found from the IP address, but the city in which you live is enough information to make many people nervous. You can protect yourself by scrambling your location with a VPN.
Hackers can also log information and habits tracking data usage via IP address. Many websites or hackers will record your IP address and log it to take note of your browsing habits. Malicious organizations might do the same. Privacy is the best form of security in these instances, and its best to just let these organizations think you’re browsing the internet in Qatar.
Finally, some hackers or cybercriminals with a grudge might attempt to launch a DDoS attack on you, effectively knocking out your system (or website if you are a website owner). This is done via targeting an IP address, and so a DDoS attack will just be routed to the VPN server you are using, keeping your system safe from any IP address related issues.

Aspects of a VPN Service

A VPN is a complex tool with many different parts to it. You need to know what other people are using and what different numbers, features, and statistics are important when judging them. Here are the most important factors that you will need to check out when procuring a VPN:

Security

The security settings and the level of encryption are the first things you should take a look at when inspecting a VPN service. While any VPN service will help protect you from cybercriminals and other online threats more than not having one at all, there are vast differences between VPNs that you should know about.
The minimum standard that any good VPN should have today is Advanced Encryption Standard 256-bit encryption, which is currently the standard used by governments to protect classified information. It will protect you from just about anything cybercriminals can think of. Anything less could be vulnerable to an attack with enough power behind it. Anything more could be sluggish and difficult to use unless you have a specific need for it.
You will also want to keep in mind the tunneling protocol(s) used by the VPN to keep you safe. The tunneling protocol makes up much of what keeps you anonymous while using the service. While the science and details behind it can get complicated, you just need to know that for the sake of security that PPTP still has some security weaknesses and that L2TP (a great tunneling protocol) paired with IPsec (which encrypts the data) is a great option for any service. SSTP is also a great option, but is only available for Windows users.

Server Quantity and Locations

Any good service will have a high number of servers available for you to use whenever you need them. A good service provider will never find itself running slowly, and while there is no magic number, there should be a sufficient number of servers to support its user base. Check to see if a service has any expansion plans and how other customers react to a service.
The number of countries and regions that are available for you to connect to are important as well. If a user chooses a country too far away, they risk losing connection speed, and different laws and restrictions regarding internet use in different countries may require you to switch to a different region in order to stay safe or use the internet normally. Never use a VPN that doesn’t have a server in your home country. Additionally, you can easily find a VPN with servers in at least 50 other countries. VPN providers are usually quick to advertise this information, so don’t worry about searching it out.

Connection Speeds

A slow VPN is unusable, forcing you into either taking a security risk by not using it or simply not using the internet (which isn’t always an option). Only you know the speeds that are acceptable to you, but keep in mind that you need to protect yourself at all times. You can use this guide by the Federal Communications Commission to help you determine what you might need.
Under no circumstances do you want to deal with a VPN that will throttle your connection or otherwise place a limit on your connection. There are already enough issues pressing on your speed already, such as the limit of the network you are using and any server delay caused by the VPN. Some VPNs might be more expensive, but just remember that your time and your security are valuable as well.

Choosing a Service

Picking the best service provider is an important decision for both your long-term data security and for the value you can get out of your device. A service that has the minimum standard of encryption, offers a high number of servers, and runs at acceptable connection speeds is the best place to start, but you will also want to look at VPN reviews to make sure that every last one of your security needs are met.

Setting One Up for Personal Use

If you have just signed up to a Virtual Private Network service and are wondering how to get started, you will want to take the following steps:
  1. Check to see if there are any instructions that the VPN service provider gives you. Many have some sort of application that you download to your computer and activate. You may need to login, but the app will take you from there.
  2. If there is no application, the VPN might be extension or website-based, in which case you will want to follow the instructions on the website or app store page. Be sure that you know how to uninstall or delete it if you find it unsatisfactory (these kinds of VPNs often have the most problems or are the most questionable).
  3. In rare circumstances, you may need to access or set up a VPN connection manually through the network settings on your computer or smartphone. It is a simple process, and all you will generally need are any login details and other information that your VPN provider will certainly give you.
  4. Once you have a VPN set up on your computer, you are going to want to test it out to see how it is working and whether it meets your expectations. Try to stream a movie or watch a video online to see if your connection can keep up, as with quality VPNs you shouldn’t have a problem. Also, visit a website that will tell you what your IP address is, so you can make a comparison to when you did not have one.

Conclusion

Virtual Private Networks are a fantastic tool that you can use in conjunction with other programs and habits to keep yourself safe online. There are variations, and you should educate yourself on them before making any decision regarding if you should use one and which one you should use. You can look into it right now and expand your options right now if you wish to. It is entirely up to you.

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.

How to Stay “Safe” while using  Public Network


1.   If you are using PC/Laptop for surfing , then i would recommend using TOR browser
      which you can download it from –> here

2. HTTP VS HTTPS
You click to check out at an online merchant. Suddenly your browser address bar says HTTPS instead of HTTP. What’s going on? Is your credit card information safe?Good news. Your information is safe. The website you are working with has made sure that no one can steal your information.Instead of HyperText Transfer Protocol (HTTP), this website uses HyperText Transfer Protocol Secure (HTTPS). Using HTTPS, the computers agree on a “code” between them, and then they scramble the messages using that “code” so that no one in between can read them. This keeps your information safe from hackers.They use the “code” on a Secure Sockets Layer (SSL), sometimes called Transport Layer Security (TLS) to send the information back and forth 

                      

3.            Using safe VPN Service
4.            Never open emails conating script.They can install backdoors in system.It can also be a man in the middle attack over the network
NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.

Anonymous Shares Simple Guide On “How To Hack Donald Trump’s Smartphone”

The notorious hacking group Anonymous has shared a little guide on Twitter, telling how to hack Donald Trump’s Android smartphone. The guide mentions that Trump’s Samsung Galaxy S3, which run Android 4.4, is outdated. It makes Galaxy S3 easily hackable using techniques like Stagefright. Notably, many security researchers have also pointed out this loophole in the past.

One of the major factors in the recent US presidential elections were the email leaks of Hillary Clinton’s campaign manager John Podesta, which signaled the weak cyber security measures. Now, Donald Trump is himself a target of popular hacktivist group Anonymous

Anonymous doesn’t have much affection for the United States President Donald Trump. Given the absurd policies of Trump, this stance shouldn’t surprise anyone. The hackers have published a little guide on Twitter, telling how to hack Donald Trump’s smartphone.
The notorious group claims that the President is an easy target to hacking attacks. Wondering why? Because he “refuses to use another smartphone other than the Galaxy S3.”
The group insists that using Stagefright, one can easily hack Galaxy S3 by “enticing Trump to click on a link.” To use Stagefright exploit to hack Trump’s phone, a hacker will need to make him download a crafted MMS containing a .MP4 file.
It should be noted that, in all likelihood, since taking office, Trump has been using a Samsung Galaxy S3 Phone. Many media reports have also noted that the standard Galaxy S3 received its last security update about 2 years ago. Thus, as Anonymous points out, it might be vulnerable to Stagefright.

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.

Ransomware Hijacks Hotel Smart Keys to Lock Guests Out of their Rooms

Recently, hundreds of guests of a luxurious hotel in Austria were locked in or out of their rooms when ransomware hit the hotel’s IT system, and the hotel had no choice left except paying the attackers.


Today, we are living in a digital age that is creating a digital headache for people and organizations around the world with cyber attacks and data breaches on the rise. Ransomware is one of them.

The threat has been around for a few years, but during 2016, it has turned into a noxious game of Hackers to get paid effortlessly by targeting hospitals, Universities, private businesses and even police departments and making hundreds of millions of dollars.

Now, the Romantik Seehotel Jäegerwirt 4-Star Superior Hotel has admitted it paid €1,500 (£1,275/$1,600) in Bitcoin ransom to cybercriminals who managed to break into their network and hack their electronic key card system that prevented its guests from entering or leaving their rooms.


The luxury hotel with a beautiful lakeside setting on the Alpine Turracher Hoehe Pass in Austria, like several other hotels in the industry, has a modern IT system that includes key cards for its hotel doors, which could not be programmed.


According to the hotel management, the hotel has been hit multiple times by hackers, but this time they managed to take down the entire key system, preventing its guests to getting in or going out of their rooms, reported The Local.


Besides gaining control of the electronic key system, the hackers even gained control over the general computer system, shutting down all hotel computers, including the reservation system and the cash desk system.

Once the hotel made the payment, the system was completely restored that allowed the hotel staff to gain access to the network and hotel guests to enter and exit their rooms.

What’s interesting? Even after the hotel fulfilled the hackers demand, the hackers left a backdoor to the hotel system in an attempt to conduct another cyber attack later.


Fortunately, the security standards of the hotel had been improved by its IT department, and critical networks had been separated to thwart the attack, giving attackers no chance to harm the hotel again.


Furious hotel managers decided to go public with the incident to warn others about the dangers of cyber attack, with Managing Director Christoph Brandstaetter said:

“The house was totally booked with 180 guests; we had no other choice. Neither police nor insurance helps you in this case. 

The restoration of our system after the first attack in summer has cost us several thousand Euros. We did not get any money from the insurance so far because none of those to blame could be found. 

Every euro that is paid to blackmailers hurts us. We know that other colleagues have been attacked, who have done similarly.”

The Ransomware had stolen the nights of many businesses and organizations, as they would often be blamed to fight up to this nasty threat.

Ransomware criminals often demand the ransom in Bitcoin (BTC) for the surety of not getting caught, as Bitcoin transactions are non-trackable due to its decentralized nature.

The frequent payment to Ransomware encourages criminals to stash the cash and develop a more enticing framework for the next target. So, instead of paying or encouraging this scheme, keep your software and systems updated and avoid clicking suspicious links.

NOTE: This is for educational purpose only we are not responsible for any type of inconvenience caused by reader.