Comment on LibreOffice criticizes EU Commission over proprietary XLSX formats
b_tr3e@feddit.org 1 day agoEncryption alone won’t prevent ransomware to encrypt it again. The original files need to be readable after all, so they are either unencrypted at boot or appear unencrypted to the (infected) client by machine/session key management. Nevertheless, adding an addittional, "“hostile” encryption layer will make them unreadable. The reasonable thing would be not to use a monocultural, standard setup that is known to be vulnerable to that kind of attack and first of all to get rid of fucking Outlook which has always been a dumpster fire.
wonderingwanderer@sopuli.xyz 1 day ago
Oh man, I always thought if your drive was already encrypted that a hostile actor couldn’t encrypt it for ransomware. I don’t know where I read that but it was a long time ago and I guess someone lied to me, but it’s whatever.
So what’s the vulnerability that would be exploited, something about using the swap space to get into the encrypted drive? Or does the attack apply to the outside of the container? I’m curious cause I’m working on hardening my own system currently and I want to make sure I’m not leaving any gaps in my blind spots
b_tr3e@feddit.org 22 hours ago
Usually the common vulnerability is a combination of Outlook and Active Directory. Outlook will happily execute whatever users click upon and AD lets them steal their credentials, to simplify things.