Ransomware Costs Toshiba 400,000TB of SSD Storage Production

[DiaSin]

Source: https://www.eteknix.com/ransomware-costs-toshiba-400000tb-ssd-storage

 

Toshiba's NAND production facilities in Japan were targeted by ransomware attacks severe enough to cause production to come to a halt for 3-6 weeks. This is an estimated production loss of 100,000 wafers, or roughly 400PB worth of chips, enough to possibly cause a short term market shortage in NAND and more price increases. 

 

Quote

“Toshiba recently suspended NAND flash production at its Japan facilities for a few weeks due to ransomware attacks on its computer network, according to sources at channel distributors. The incident could tighten global NAND flash supply.

Toshiba decided to shut down the production for 3-6 weeks to deal with the hacking, but production has now returned to normal, said the sources, adding that the suspension resulted in reduced NAND flash production nearly 100,000 wafers.”

 

[SansVarnic]

/facepalm

[cstwister]

Jesus, thats a lot of SSDs..... Can I get some for free lol

[Clockwork_princess]

why do people have to be like that

[Siedge]

I am very curious what the money lost here is for them. I imagine it's very very high.

[cstwister]

Just now, Clockwork_princess said:

why do people have to be like that

Well do u like money? 

[Orangeator]

4 minutes ago, Siedge said:

I am very curious what the money lost here is for them. I imagine it's very very high.

Yeah, millions upon millions just lost.

[Mooshi]

It should be international law that those who initiate those type of attacks be made to become the personal slave of who they attacked.

[Siedge]

Just now, Orangeator said:

Yeah, millions upon millions just lost.

Which I imagine we very well may feel the impacts of it on the consumer end for a while.

[thorhammerz]

16 hours ago, Siedge said:

I am very curious what the money lost here is for them. I imagine it's very very high.

 

Probably around the $100-$200 million(+) USD ballpark.

 

Taking 400,000,000 GB worth of SSDs, if we assume (quite arbitrarily, someone wanna pull up some hard statistics? ) the (weighted) average size of SSD sold to be ~250 GB, that's around 1,600,000 products, or some 160 million USD if we assume (arbitrarily again) they receive $100 $25-60 made off every 250 GB SSD.

 

TL;DR for those who don't like math: brace yourselves, the winter of inflated SSD prices are coming.

[S w a t s o n]

such nand shortage, very never ending. WOW

[Siedge]

1 minute ago, thorhammerz said:

 

About $100-$200 million(+) USD.

 

400,000,000 GB worth of SSDs, if we assume (quite arbitrarily, someone wanna pull up some hard statistics? ) the (weighted) average size of SSD sold to be ~250 GB, that's around 1,600,000 products, or some 160 million USD if we assume (arbitrarily again) they receive $100 made off every 250 GB SSD.

Yeah plus even though no work was getting done, I imagine they didn't just tell all their employees to stop coming it, so not only did they lose those cards but the actual money to make them was still mostly getting spent (Labor wise, building costs, etc)

[thorhammerz]

Just now, Siedge said:

Yeah plus even though no work was getting done, I imagine they didn't just tell all their employees to stop coming it, so not only did they lose those cards but the actual money to make them was still mostly getting spent (Labor wise, building costs, etc)

Well, the number(s) I made was just raw revenue lost. Actual profit lost is probably some fraction of that (because of the costs you mention having to be factored in).

[Me1z]

Question 1: Why were computer systems used for production even connected to the internet in the first place?

 

Question 2: Why were such computer systems not backed up regularly to preven this very scenario?

 

Question 3: What kind of idiots are running the show at Toshiba? For a company so heavily invested in the storage market, this is downright embarassing. They literally MANUFACTURE storage devices, they could have had a company wide backup system at minimal cost...

[Siedge]

Just now, thorhammerz said:

Well, the number(s) I made was just raw revenue lost. Actual profit lost is probably some fraction of that (because of the costs you mention having to be factored in).

Yeah so let's just assume it's somewhere around or below that 100 million mark, honestly that is just insane amounts of money due to something so silly

[NTDaws]

I told them to stop going on xvideos.

[thorhammerz]

4 minutes ago, Siedge said:

Yeah so let's just assume it's somewhere around or below that 100 million mark, honestly that is just insane amounts of money due to something so silly

Painful (on paper, and probably for the consumer who will likely bear the brunt of the cost), yes.

 

Painful over the long term (for the company)... well, let's just say their total revenue for the 2016 year was somewhere in the $50 billion USD mark, and their profits for a single quarter was in the $200 million USD ballpark. In short, they lose a quarter of growth, take a nice little stock price hit, and then shrug it off after a year or two .

[vanished]

13 minutes ago, Mooshi said:

It should be international law that those who initiate those type of attacks be made to become the personal slave of who they attacked.

Ignoring any other possible issues with this, I think the issue you'll have is finding them in the first place.  If they could do that you can bet they would be prosecuted under existing laws.

---

And this is why I always say don't pay.  Every time someone does, it gives them more money and shows that there's a viable "business" doing this, so more people start doing it.  Mad about prices going up?  Don't hate the attackers, hate the people who literally paid them to do it - everyone who has fallen victim before and rather than fighting back decided to just lay down and go along with it.  How long has ransomware been "a thing"?  A year at least, right?  Maybe even two?  It could have been stopped before it even got going but no, instead it's growing at an alarming rate, and you know why?  Because it works.  And it works because people are willing to pay.  Don't be one of them.

[cstwister]

3 minutes ago, thorhammerz said:

Painful (on paper), yes.

 

Painful over the long term (for the company)... well, let's just say their total revenue for the 2016 year was somewhere in the 50 billion USD mark.

Whats the profit? Theres manufacturing costs.

[cstwister]

5 minutes ago, Clockwork_princess said:

there are ways to legally get money lol. its not hard. 

 

or if you want to do it illegal jsut sell drugs, a buddy of mine made 40k a month selling weed. 

Well yea but just saying, every1 likes money and these guys found it easier to simply make a ransom ware. 

[thorhammerz]

6 minutes ago, cstwister said:

Whats the profit? Theres manufacturing costs.

Was around $400 million USD for 2016 I think. They lose a quarter (or two) of growth, take a nice stock price hit, and brush it off after a year or three.

(mybad, wrong statistic pulled).

 

Their accounting scandal a year or two back revealed a $1.3 Billion shortfall... over which they were/are being sued another ~$160 million USD... in comparison, this is just another drop in the bucket (at least, for the company as a whole).

[Drak3]

1 minute ago, Me1z said:

Question 1: Why were computer systems used for production even connected to the internet in the first place?

 

Question 2: Why were such computer systems not backed up regularly to preven this very scenario?

 

Question 3: What kind of idiots are running the show at Toshiba? For a company so heavily invested in the storage market, this is downright embarassing. They literally MANUFACTURE storage devices, they could have had a company wide backup system at minimal cost...

1: It specifies that the internal network was attacked, but not the source of the attack. It's possible, and VERY probable, that it wasn't initiated over the internet. It's also highly likely that the network of systems attacked operate on a virtual network with no direct internet access that would allow this outcome.

 

2: It very likely is, on media that prioritizes data integrity over read/write speeds. It's also likely that their system is not set up to reset the systems that quickly.

 

3: Without knowing more about the circumstances on how this happened, it's safe to assume that Toshiba has a security system in place that would stop most incidents. But as with every security system, there are holes.

 

[mr moose]

5 minutes ago, cstwister said:

Whats the profit? Theres manufacturing costs.

 Toshiba profit for 2016 was $9.6B 

[Drak3]

Just now, valdyrgramr said:

Nothing is unhackable.  Soon rocks will have worms in them!

Read the last sentence.

[Clockwork_princess]

1 hour ago, cstwister said:

Well yea but just saying, every1 likes money and these guys found it easier to simply make a ransom ware. 

i get it, when you have no real skills in life you have to go and be malousisos to take money from other people who have skills and worked hard,

 

they can put the computer knowledge in use and work the government to legally make stuff like that to infect opposing government computers.

 

even selling weed is better becase your not being a dick.

 

 I guess we can only hope their first born gets a horrible but non life threatening disease that they have to spend all their stolen money on medical costs and ends up broke again.