> The company that operates online learning system Canvas said it struck a deal with hackers to delete the data they pilfered in a cyberattack that created chaos for students, many of them in the middle of finals.
How stupid can they be?
> The company acknowledged that there was no way to be sure that the data was erased for good, and said it took action because of concerns about potential publication of the data.
Why is the U.S. allowing Canvas to fund North Korean or Russian cyberterrorists?
The parent company should face severe penalties for allowing this kind of breach to happen and also for terrorist financing. We are really living in the Stone Age of information security.
Really dumb. Just a way to cover their own ass. Of course the hackers won’t actually delete the data. This is just so they can claim it was deleted when everyone knows better.
I disagree with this path, there is no guarantee, nor can there be, that the data will be deleted. It can be divided up and sold to others with no recourse. The hackers got their money, they are under no obligation to comply with th agreement, and there's no one can could enforce it.
9 comments
[ 3.2 ms ] story [ 25.3 ms ] thread> The company that operates online learning system Canvas said it struck a deal with hackers to delete the data they pilfered in a cyberattack that created chaos for students, many of them in the middle of finals.
How stupid can they be?
> The company acknowledged that there was no way to be sure that the data was erased for good, and said it took action because of concerns about potential publication of the data.
Why is the U.S. allowing Canvas to fund North Korean or Russian cyberterrorists?
https://news.ycombinator.com/item?id=48103668 Instructure pays ransom to Canvas hackers
Oh, cool! Maybe they all just sat down with a nice cup of coffee and the hackers decided to delete the data out of the goodness of their hearts.