undefined | Better HN

0 pointsNextgrid5y ago0 comments

Even if there is no "huge red button", at this stage it should be easy to reconfigure their load balancers to just return 500 for all endpoints or even take down their DNS records and essentially shut down the platform until they sort it out.

0 comments

Lobosque5y ago

This seems like a pretty big red button.

NextgridOP5y ago

If there was no other option I would personally go as far as pulling the power, data loss be damned.

This is in many ways worse than your typical large-scale malware or ransomware crisis (like the one that hit Maersk for example).

Malware or ransomware attacks are typically limited to internal company impact with potential stolen data (which you usually discover after it’s been stolen already).

This current situation however has ongoing external impact for as long as the platform is kept online and could even have geopolitical repercussions if a certain high-profile “real” account ends up affected.

The fact that they left the platform online for so long with an ongoing, uncontained attack is absolutely irresponsible.

j / k navigate · click thread line to collapse