this post was submitted on 27 Sep 2025

95 points (100.0% liked)

World News

50083 readers

2121 users here now

A community for discussing events around the World

Rules:

Rule 1: posts have the following requirements:
- Post news articles only
- Video links are NOT articles and will be removed.
- Title must match the article headline
- Not United States Internal News
- Recent (Past 30 Days)
- Screenshots/links to other social media sites (Twitter/X/Facebook/Youtube/reddit, etc.) are explicitly forbidden, as are link shorteners.
Rule 2: Do not copy the entire article into your post. The key points in 1-2 paragraphs is allowed (even encouraged!), but large segments of articles posted in the body will result in the post being removed. If you have to stop and think "Is this fair use?", it probably isn't. Archive links, especially the ones created on link submission, are absolutely allowed but those that avoid paywalls are not.
Rule 3: Opinions articles, or Articles based on misinformation/propaganda may be removed. Sources that have a Low or Very Low factual reporting rating or MBFC Credibility Rating may be removed.
Rule 4: Posts or comments that are homophobic, transphobic, racist, sexist, anti-religious, or ableist will be removed. “Ironic” prejudice is just prejudiced.
Posts and comments must abide by the lemmy.world terms of service UPDATED AS OF 10/19
Rule 5: Keep it civil. It's OK to say the subject of an article is behaving like a (pejorative, pejorative). It's NOT OK to say another USER is (pejorative). Strong language is fine, just not directed at other members. Engage in good-faith and with respect! This includes accusing another user of being a bot or paid actor. Trolling is uncivil and is grounds for removal and/or a community ban.

Similarly, if you see posts along these lines, do not engage. Report them, block them, and live a happier life than they do. We see too many slapfights that boil down to "Mom! He's bugging me!" and "I'm not touching you!" Going forward, slapfights will result in removed comments and temp bans to cool off.

Rule 6: Memes, spam, other low effort posting, reposts, misinformation, advocating violence, off-topic, trolling, offensive, regarding the moderators or meta in content may be removed at any time.
Rule 7: We didn't USED to need a rule about how many posts one could make in a day, then someone posted NINETEEN articles in a single day. Not comments, FULL ARTICLES. If you're posting more than say, 10 or so, consider going outside and touching grass. We reserve the right to limit over-posting so a single user does not dominate the front page.

We ask that the users report any comment or post that violate the rules, to use critical thinking when reading, posting or commenting. Users that post off-topic spam, advocate violence, have multiple comments or posts removed, weaponize reports or violate the code of conduct will be banned.

All posts and comments will be reviewed on a case-by-case basis. This means that some content that violates the rules may be allowed, while other content that does not violate the rules may be removed. The moderators retain the right to remove any content and ban users.

Lemmy World Partners

News !news@lemmy.world

Politics !politics@lemmy.world

World Politics !globalpolitics@lemmy.world

Recommendations

How to spot Misinformation and Propaganda

For Firefox users, there is media bias / propaganda / fact check plugin.

https://addons.mozilla.org/en-US/firefox/addon/media-bias-fact-check/

Consider including the article’s mediabiasfactcheck.com/ link

founded 2 years ago

MODERATORS

NewsAutoMod@lemmy.world

jordanlund@lemmy.world

Tenthrow@lemmy.world

little_cow@lemmy.world

lemmyAtom@lemmy.world

Hackers 'behind nursery cyber attack' tell Sky News they are releasing more data on dozens of children (news.sky.com)

submitted 3 days ago by LadyButterfly@reddthat.com to c/world@lemmy.world

13 comments fedilink hide all child comments

top 13 comments

sorted by: hot top controversial new old

[–] ToastedRavioli@midwest.social 35 points 3 days ago (2 children)

The group claimed it typically demands around 1.5% of a company's yearly revenue in ransom.

I love how they describe it like its an add on fee from an airline or something

[–] SoftestSapphic@lemmy.world 7 points 3 days ago

It is about as legitimate of a business model in a cyberpunk dystopia as the advertisers.

If only these people had an easier way to make money then they wouldn't do this.

[–] SGforce@lemmy.ca 9 points 3 days ago (2 children)

Imagine bank robbers only asking for some arbitrary amount from the vault. There has to be a reason for this. They aren't doing it out of the goodness of their hearts.

[–] jubilationtcornpone@sh.itjust.works 21 points 3 days ago

There is a practical reason for the amount. It has to be something the victim can afford and it can't be so large that they decide it's cheaper to just ignore the threat and deal with the fallout.

The hacker/scammer also, ironically, has to honor their word and stop releasing data once they've been paid off. Otherwise victims won't pay because it's a waste of money.

[–] i_stole_ur_taco@lemmy.ca 5 points 3 days ago

“I said $127,075.31! If you try to fucking round up again I’m going to start shooting!”

[–] A_norny_mousse@feddit.org 22 points 3 days ago* (last edited 3 days ago)

the information released has been restricted to the personal contact details of children who attend the nurseries, as well as their parents and carers.

I do not approve of this.

However.

Way too many childcare facilites are next to clueless about protecting their customers (i.e. children's) data. Many believe it's cool to have a rolling Facebook blog with pics of kids. Online solutions provided by the government are only secure if you know how to use them safely, and I do not know of any kindergarten that has its own IT personnel. And they are less convenient than mobile apps so parents/employees continue to use Whatsapp instead.

[–] atzanteol@sh.itjust.works 13 points 3 days ago (1 children)

This has to be the stupidest group of hackers. Most of the information they have could be purchased legally from data brokers. Hell, a phone book is free.

[–] Warl0k3@lemmy.world 11 points 3 days ago* (last edited 3 days ago) (1 children)

The stolen information on the children includes medical records, incident reports and the allocation of drugs and medicine given to the children.

They're trying to intimidate the group into protecting the privacy of the children - while there's other ways to get the information, those other ways aren't actively threatening to release the information publicly. It's a decent enough move I suppose, though I doubt it will work since this company doesn't care about the children and their reputation is going to be fine given how widely reported the hacking is. They'd have had a much better chance of getting a payout by going after the parents of kids with medical conditions or any other compromising information. How much could you have blackmailed the parents of an intersex kid for, given the current political climate, for example? Or one with an inheritable STD?

[–] Railing5132@lemmy.world 3 points 2 days ago (1 children)

Please don't try to whitewash these criminals as heroes in this story. They know their target, chose it deliberately and chose to release sensitive information about the victims of their own accord for their own gain.

Doing cybersecurity 100% right 100% of the time is damn hard work. Anyone that says 'lol their security sucked, they deserved it' has no idea how much work it takes to keep not only a complex system free from compromise, but also keep the users from shooting themselves in the face and taking the network down with them.

[–] Warl0k3@lemmy.world 3 points 2 days ago (1 children)

whitewash these criminals as heroes

Okay I'm being genuine here - how was that your takeaway from my comment? I don't know if there's a way to sound sincere over text, but I promise I'm not even being slightly snarky, 100% sincere: what?

[–] Railing5132@lemmy.world 2 points 1 day ago (1 children)

My understanding of your first sentence in the first comment was that you were saying that the hackers were trying to 'intimidate the group (the company) into protecting the privacy of the children'.

That is what I based my response on. If I misunderstand, I apologize. (also, I didn't down vote you, for what it's worth, I appreciate the sincerity).

[–] Warl0k3@lemmy.world 3 points 1 day ago* (last edited 1 day ago) (1 children)

Nah that's 100% right, it's just that that's not a good thing. They're putting the children's privacy in jeopardy, then trying to intimidate the company into protecting that privacy by threatening to release it (to great fanfare) if they don't pay up. No heroics involved. And on top of that it's just a really boneheaded strategy, that company just does not give a fuck about children, why would they ever pay out when they can point to all this coverage of the evil evil hackers to deflect from their doubtlessly rampant security failures.

(Lol ty, I doubted it had been you)

[–] Railing5132@lemmy.world 1 points 1 day ago

All good... I mistook the attribution of intent.

But they'll just slow drip the release anyway, going back for more and more ransom if they do pay.

I guess my thing is (not knowing the company from Adam) I'd assume they'd rather not have the kid's info released rather than simply not caring about it. Being hacked doesn't necessarily mean they're careless - I think that is what I was trying to convey.

I'm almost solely responsible for cyber security at my job. I do my best, make the case for better protections, and secure things as best I can. If we got ransomwared, I'd be tempted to blow my head off. I have to get it right every single time. They have to get right or lucky just once.