Skip to main content

University of Calgary pays $20,000 in ransomware attack

mongodb database ransom rusty padlock
Garretttaggs /Wikimedia Commons
The University of Calgary in Canada has paid 20,000 Canadian dollars ($15,000) to cybercriminals after it was struck by a ransomware attack.

The university’s email and files were all encrypted by the attackers last month. The administration made the call to pay the ransomware demand of $20,000 in bitcoin in order to retrieve the data. The university does not believe that any personal data on employees or students was leaked, but added that it is working with the local police force to investigate the issue.

“The university is now in the process of assessing and evaluating the decryption keys. The actual process of decryption is time-consuming and must be performed with care,” said Linda Dalgetty, vice president of finances and services at the university, following the ransom payment. “It is important to note that decryption keys do not automatically restore all systems or guarantee the recovery of all data. A great deal of work is still required by IT to ensure all affected systems are operational again, and this process will take time.”

Security firms are divided on whether or not victims of ransomware should ever pay the bitcoin demands. Ransomware that targets individuals is usually a couple of hundred dollars, but companies and enterprises can be much higher, as was seen in this case.

We have seen cases where ransomware has targeted hospitals, police stations, and churches. Most notoriously, a hospital in Los Angeles paid $17,000 in February to get its systems up and running again.

There has been a swell in ransomware cases as evidenced by the sheer number of new strains that keep popping up. Bart Parys, a security researcher, maintains a log of every known strain of the malicious software, with more than 120 versions out there.

Paying may seem like an option, but some security pros believe paying the demands only encourages more would-be cybercrooks to get involved if there appears to be a potentially high return on investment. It is also never guaranteed that the culprit will provide the decryption keys after payment is sent.

Editors' Recommendations

Jonathan Keane
Former Digital Trends Contributor
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
Ransomware: International shipping firm grappling with attack
russia hotel wi fi hack hacking hacker lifestyle pc keyboard

Yet another ransomware attack is causing huge problems for the company on the receiving end.

This time, Australia-based shipping firm Toll Group is scrambling to get its systems back up and running after succumbing to a malicious attack on Friday, January 31.

Read more
Microsoft offers up to $20,000 to identify security vulnerabilities in Xbox Live
Xbox One S All-Digital Edition review

When it comes to securing complex products, companies are increasingly turning to bug bounty programs to invite members of the public to find security vulnerabilities. Google's bug bounty program handed out $6.5 million last year, and Apple recently expanded its program to cover macOS bugs as well as iOS bugs.

Now Microsoft is expanding its own bug bounty program from covering software like its Office suite and its Edge browser to also covering the Xbox Live network and services. The company will pay out rewards to anyone who can find and reproduce a security vulnerability in the Xbox Live system.

Read more
Hackers demand $6M from largest retail currency dealer in ransomware attack
worlds largest retail currency dealer hit by ransomware attack travelex

Travelex is currently dealing with a ransomware attack that’s forced the company to suspend its online services.

Ransomware locks computer systems by encrypting files, with hackers then demanding payment in exchange for a decryption key. In the case of Travelex, hackers are ordering the London-based firm to cough up cash not only for the decryption key, but also to prevent the publication of various customer data that includes payment card information, the Financial Times reported on Tuesday, January 7.

Read more