And as it started in the Far East at 12 o'clock, then the time zones meant that we were starting to get reports of stuff when we still could react. We really started noticing it in the evening, because it had started in the Far East. He thinks he was DJing the Vandalism remix of Back Once Again by DJ Jeroenski when his phone started lighting up.ĭon Gibson: It started kicking off. But on that night, he was just Don1 - the number 1 - on the decks. At the time, he was a security architect with Travelex, the global foreign exchange and remittance company. He’s also an information security professional, who has held security architect and higher positions for more than 20 years. Jeremy Kirk: On New Year’s Eve 2019, Don Gibson was on the decks. Wall Street Journal, Major Companies Shared Vulnerability Used in Travelex Cyberattack, Jan.Wall Street Journal, Travelex Paid Hackers Multimillion-Dollar Ransom Before Hitting New Obstacles, Ap.Wall Street Journal, Travelex Ransomware Outage Hits Foreign-Currency Transactions at Retail Banks, Jan.Travelex, A message from our CEO, Jan.Reuters, IN BRIEF: Travelex hit with suit over failure to secure personal data, Ap.Computer Weekly, Cyber gangsters demand payment from Travelex after ‘Sodinokibi’ attack, Jan.CISA, Vulnerabilities in Multiple VPN Applications, J.BBC, Travelex strikes rescue deal but 1,300 UK jobs go, Aug.BBC, Travelex site taken offline after cyber attack, Jan.BBC, Travelex being held to ransom by hackers, Jan.Bankinfosecurity, Hacked Law Firm May Have Had Unpatched Pulse Secure VPN,.Bad Packets, Over 14,500 Pulse Secure VPN endpoints vulnerable to CVE-2019-11510, Aug.The Ransomware Files theme song by Chris Gilbert/ © Ordinary Weirdos Records. Speakers: Don Gibson, former security architect, Travelex Jeremy Kirk, Executive Editor, Information Security Media Group. I'm looking for other people, organizations and companies that can share their unique experiences for the benefit of all until ransomware, hopefully, is no longer a threat. If you would like to participate in this project and tell the information security community about your organization's brush with ransomware, please get in touch with me at or direct message me here on Twitter. Also, the show has a Twitter handle, that tweets news and happenings about ransomware. If you enjoyed this episode of "The Ransomware Files," please follow it on a podcast platform and leave a review. There should be no shame in getting infected, and it's important to share the lessons. No ransomware infection is ever welcomed. I'm speaking with those who have navigated their way through a ransomware incident to learn how they fought back and what tips they can pass on to others. "The Ransomware Files" is a podcast miniseries available on Spotify, Apple Podcasts, Google, Audible, Stitcher and more. "Basically, my heart started messing around," he says. Toward the end of the month, it was getting ugly, as in personally getting ugly."īy September 2020, Travelex had recovered - while restructuring its business, but Gibson already had had a very long year. "That's over three months' worth of work in one. "January 2020, I worked over 375 hours,” Gibson says. He went from IR, or incident response, to the ER - the hospital’s emergency room. His story is one of how social media, a frantic incident response and stress contributed to a nearly tragic health outcome. His name became publicly linked with the Travelex incident, and the attention he received was completely undesired. That night was the beginning of a turbulent period for Gibson that lasted throughout the rest of the year. "We really started noticing it in the evening because it had started in the Far East." Don Gibson, then a security architect at the company, was DJing at a friend's place when the first alerts came in. Ransomware struck global currency exchange and remittance company Travelex on New Year’s Eve 2019.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |