-
There were many reasons for the change of the site software, the biggest was security. The age of the old software also meant no server updates for certain programs. There are many benefits to the new software, one of the biggest is the mobile functionality. Ill fix up some stuff in the coming days, we'll also try to get some of the old addons back or the data imported back into the site like the garage. To create a thread or to reply with a post is basically the same as it was in the prior software. The default style of the site is light colored, but i temporarily added a darker colored style, to change you can find a link at the bottom of the site.
Cyberattack on BRP
- Thread starter billybovine
- Start date
e e
I am also in IT at a fairly large corp and an avid follower of the Darknet Diaries podcast. There is a pretty high probability that BRP did not get compromised by an attack on one of their external (internet) facing applications. Attacks like this usually come from the inside, where companies don't have the level of security like they do on their external facing applications. They probably got in through some sort of phishing or social engineering attack against them or a vendor (I now see it was a vendor). These cyber attacks come from sophisticated groups that use social media to target specific colleagues that might have access to key systems. All they need to do is get them to click on some link and either capture their credentials or get a piece of malware installed on their computer and the door is open. All it takes is some server in their environment that has a really old operating system that has not been patched or has known vulnerabilities (Windows Server 2003 or 2008 for example) and they have an easy path straight to their core network. These cyber criminals just don't get in and start encrypting stuff. They sit and watch for weeks sometimes to learn the network and insure they have access to as many systems as possible. They also look at things like backup systems to make sure they disable (encrypt) those too so you can't just restore everything easily and avoid paying the ransom. There are specific backup solutions that protect you from this sort of thing but they can be expensive to implement. Once they get their encryption software planted undetected to their satisfaction they will download key data as a means to entice you to pay the ransom. If all you had to do is restore everything from backup there is no incentive to pay, but when they tell you they are going to post your entire customer database on the dark web for anyone to download along with all of your classified information, people tend to pay to get the key to unencrypt everything. The odd thing is that these cyber criminals have a business model and will typically give you the key and not post your data if you pay. They need to have a reputation of following through or nobody would ever pay them.
So my guess is that BRP will be investing heavily in better network monitoring software and software more than just virus software to lock down their laptops/desktops/servers. It's a constant game to stay ahead of the criminals these days.
Last edited:
FrogmanDave
Active member
@DanDanTMM, well said sir. It is obvious you have a very good grasp of this situation.
This situation is killing me 
I traded my Ryker 2 weeks ago on a 2022 F3-t that was in stock and actually on the floor. Great, no supply issues...except due to this cyber attack, the BRP back-end system that dealers use is down so they can't process my sale 
I have a Spyder..right there...ready to go...except I can't have it. AGGGHHHH
It's incredible how long they have been down now - this must have been huge.
I traded my Ryker 2 weeks ago on a 2022 F3-t that was in stock and actually on the floor. Great, no supply issues...except due to this cyber attack, the BRP back-end system that dealers use is down so they can't process my sale I have a Spyder..right there...ready to go...except I can't have it. AGGGHHHHIt's incredible how long they have been down now - this must have been huge.
I'm in Ottawa, dealer is in Limoges (Loiselle). They are awesome to deal with (I bought my Ryker new there hence why I returned to get the F3).
Wmoater
Active member
Here’s who’s taking credit for it. https://www.bleepingcomputer.com/ne...nsomware-attack-on-sea-doo-ski-doo-maker/amp/
bigbadbrucie
New member
Oh the JOYS of the Internet!!!
gkamer
Sadly passed away, December '23.
I just this minute got off the phone with my dealer to double check. This situation won't effect my service appointment for Saturday. Thankfully. It's been a long time coming.
Woodenfish
Member
There ought to be a death penalty for cyber crimes.
EdMat
Well-known member
Find em, send a seal team in.
BajaRon
Well-known member
The problem is that companies pay these guys millions to put their system back together. Not all of them. But enough of them to make it worth their while. This, coupled with the fact that none of them every receive any consequences. Makes it a very attractive enterprise.
gkamer
Sadly passed away, December '23.
True. Not to mention the perp/s can be sitting in a room thousands of miles away from the scene of the crime so no one even sees their faces. I think it makes it extremely hard if not impossible to identify them.
But we do know what country they're operating from.
FrogmanDave
Active member
Not really Pete. If they are good (and they are all the best), they can bounce around through so many vpn's you can never completely track them.
Well, I can't but our intelligence agencies can, as well as a few commercial outfits. So, we know where they are but it's not in countries that will extradite them. I vote for the dark ops hit squad idea.
Similar threads
