Features
Managing Ransomware
By YURI KOGAN and ZEV COHEN of Ergo Oriens Crisis Management
In the ‘All Connected World’ ransomware attacks gain traction. Criminals constantly improve at monetizing their access to your network & data. They target an organization, lock up the data, and then demand money hundreds of thousands of dollars or more – in exchange for releasing it to be paid in untraceable crypto- currency. Sometimes, restoration of data from backups is possible. Bypassing the encryption is also an option, but in many cases the bad guys find and destroy backups and use state-of-the-art encryption. The attackers often create backdoors to allow future infiltrations easier, so this may not be the last time you hear from them.
What can be done? What should be done? Should you pay? And what happens when the ransom is paid? What are the guarantees the perpetrators intend to hold up their end of the deal? And how do you know that whoever just propelled your business into the stone age can actually bring it back?
Ransomware attacks are automated but certainly NOT automatic. Humans stand behind these attacks, and as this is the issue professional crisis managers and negotiators, together with an experienced technological incident response team (IRT) can minimize loss and expedite the safe return of the organization to normal operations.
Ransomware negotiations are similar to business negotiations. Similar but not the same. Timing is crucial and simply playing for time may mean the attacker will stop responding and turn to the next, more responsive, victim, leaving you with your system beyond reach. Having said that doesn’t mean the victim should rush forward and immediately pay the ransom. Time is of the essence and should be skillfully used to explore possible ways to communicate with the perpetrator. In parallel the IRT carefully assesses the situation from a technological point of view, bringing into account possibilities of overcoming the attack and resuming operations by using technological means alone.
A professional multi-disciplinary ransomware management team will navigate to the most suitable alternative, gain knowledge on the perpetrators and bring you back to safety while minimizing your losses. Using tested and proven after-action-
debriefing techniques the team will significantly improve the victim’s defenses and heighten the odds this will not happen to you again.
Are there preset protocols to follow? A list of Do’s and Don’ts? Well, ransomware attacks differ, but there are some rules of the thumb to follow.
The first and foremost advise would be – BE PREPARED. This means businesses should follow best practice protocols to defend and preserve their IT environment. Backing up data, constantly monitoring the system and the threat environment either by in-house (less likely to be done by small and medium businesses) or outsourced experts, conducting drills, penetration tests and generally educating the employees to the cyber-threat and the ways to mitigate it. Purchasing a cyber- incident insurance plan is a prudent step to take.
As all hell breaks loose, an internal assessment of the situation and checking for existing backup files and their integrity should be the first thing to do. Unfortunately, many businesses do not follow best practice methods and therefore are more vulnerable to increased damage. The possibility of the attack being internally motivated should also be looked into, but this should not be the focus of the victim’s attention. Some of these processes could be performed by an internal IT team, but the best option would be to contact an experienced cyber-incident response team (IRT). For most businesses running an internal IRT team is an expensive and mostly unnecessary function. It is worth mentioning that the internal IT team will usually specialize in the routine maintenance and operation of the IT environment while a seasoned IRT continuously monitors, researches and deals with ransomware attacks.
The next point would be to establish a communications route to the attackers. Often the attackers give an anonymized communication line to the victims over which to guide them in the process of ransom payment, as this requires crypto- currency knowledge, that most people do not routinely have.
Once communications are established, the ransom negotiator will try to verify the attacker’s ability to make the highjacked data available again. This is crucial, as experience shows that some attacks are initiated by inexperienced attackers using questionable tools and scripts capable of hijacking the data but not of bringing it back.
Next, the negotiator will initiate a communications exchange with the attacker, aiming to reduce the ransom price. This should be done in sync with the IRT experts, using the time to explore every alley, street and avenue to restoring system functionality without actually paying the ransom.
The decision of whether to pay the ransom or not should be made by top level management, taking into account not only the ability to independently restore the IT environment but also the time it would take, as for most businesses having their IT systems inoperable means financial bleeding that should be minimized. Not least of all, senior management can consider the impact of ransom payment on the financial soundness of the company. This would be also be the place to mention that in some jurisdictions paying ransom to stop a ransomware attack could be considered illegal, or at the least regulated by the authorities. An experienced legal counsel should be consulted about navigating this issue.
When the victim’s IT environment is brought back to a functional state and the incident declared closed, it would be high time to conduct an after-action-review. When conducted by experienced professionals as a transparent process aimed at minimizing the chance of future attacks and improving robustness. Rather than punishing stake holders for past mistakes, the review highlights organizational strengths to preserve, and vulnerabilities to mend, resulting in improved means and processes that protect against, and when necessary, minimize future losses to cyber incidents.
Features
At 104, Besse Gurevich last original resident of Shaftesbury Park Retirement Residence
By MYRON LOVE At 104, Besse Gurevich is the last of the original residents of Shaftesbury Park Retirement Residence. She may also be the oldest member of our Jewish community.
Although her vision and her hearing have diminished considerably, her mind and memory are still intact. A few weeks back, this writer sat down with her in her suite as she recalled a life filled with highs and lows and her many contributions to her community, both in Winnipeg and Fort William before that.
The daughter of Jack and Rebecca Avit, her life’s journey began in 1921 in a home on Carlton Street near Ellice Avenue, near her father’s furniture store. He later operated a cap factory.
When she was ten, the family – she had two brothers and a sister – moved to Manitoba Avenue in the old North End. “My father had put a deposit down on a house on Scotia,” she recalls. “But my parents didn’t feel that the neighbourhood was Jewish enough.”
Her schooling included Peretz School and, like so many of her generation, St. John’s Tech (as it was known back then.) “I was actually supposed to be going to Isaac Newton for high school,” she says. We were living on the wrong side of the tracks for St. John’s. After one day at Isaac Newton, I found a way to transfer to St. John’s.”
In 1940, 19-year-old Bessie Avit married Jack Gurevich, a young man from Fort William. The wedding was marred though, by the sudden, untimely passing of her father.
Following the wedding, Besse moved with her new husband to Fort William where Jack Gurevich worked in retail clothing sales. “We lived in Fort William for 20 years,” she says. “Our three children (Judy, Richard and Howard) were born there.”
She recalls that there were about 200 Jewish families – including her sister and one of her brothers for some years – in town, during the time she lived there. “We were very well known in the community,” she recalls. “I was involved in everything.”
Her community activism continued after the family’s return to her home town. While Jack went to work as a salesman for Western Glove Works, Besse became an indefatigable community volunteer. At one time or another, she served as vice-president of ORT, Hadassah and National Council of Jewish Women in Winnipeg. She was also a long time B’nai Brith member.
In the business world, the highlight of her career was the building of Linden Woods. “I became involved in real estate development for a time,” she recalls. “I was hired by Genstar to develop Linden Woods. The company estimated that it would take about 20 years to complete. I got it done in two.”
She also taught hair dressing for a while. “I worked with many young Jewish brides,” she says.
Recent years have not been kind to Besse Gurevich. Her beloved husband, Jack, died in 2016 – after almost 65 years of marriage. Older son, Richard, passed away in Vancouver in 2018 and, most recently –six months ago – younger son, Howard, followed. She notes that there were 200 mourners at Howard’s funeral.
(Howard Gurevich was in marketing for many years before turning his talents to the art world. In recent years, he was best known for Gurevich Fine Art in the Exchange District and his support of local artists.)
Besse Gurevich celebrated her 100th birthday – which took place at the height of the Covid shutdown – quietly.
While she used to enjoy reading. she is unable to do so any more. She can still listen to television.
And while she has few family members to visit her any more, she does have a group of friends interesting enough from the local theatre scene. For many years, she was a close friend of the late Doreen Brownstone, one of the leading figures in theatre in Winnipeg for more than half a century. Besse became part of the group that would visit Doreen every week and, since Doreen passed on three years ago, the members of the group have continued to visit Besse on a weekly basis.
Features
Winnipeg author’s first novel gripping tale of romance, action and intrigue, set in 15th century Spain and Morocco
By MYRON LOVE “The Chronos of Andalucia”, a novel just released by first-time author Merom Toledano, is a historical romance set in late 15th century Spain and Morocco, filled with passion, action, intrigue, unexpected twists and turns – and, of course, with the requirement of any medieval story – a quest.
The easy-to-read, 190 page book follows the adventures of Catalina, a young woman living by her wits on the streets of Granada in the year 1487, (just after the Christian armies of Ferdinand and Isabella had recaptured all of Spain from the Moors) – while trying to evade the agents of the Inquisition, who had murdered her Jewish mother and Christian father 10 years earlier. She was left with an insatiable desire to learn about astronomy, along with a mysterious map and an astrolabe (an instrument formerly used to make astronomical measurements) – the importance of which will only be unveiled if she can get to the city of Tangier in Morocco.
Early on, there is a reference to Abraham Zacuto, a prominent Spanish rabbi famed for his knowledge of astronomy and astrology.
The action begins when she has a casual interaction with a former Spanish soldier, Diego. When the forces of the Inquisition approach, she flees with the soldier – who is also her love interest – and who helps her to escape. They turn for help to a childhood friend of Catalina’s – Roberta, a nun, who helps them on their perilous journey to Tangier – a journey that includes being captured by pirates, surviving a shipwreck, being separated for a long period of time and, of course, finding each other again and realizing the success of their joint quest.
In his writing, the author paints vivid word pictures of the different characters and beautifully invokes the colour, sights, sounds and scents of the time and the places.
What I found truly remarkable about the writing of “The Chronos of Andalucia” is that English is not Merom Toledano’s first language. The Israeli-born author – he grew up near Haifa – came to Winnipeg with his young family just eight years ago.
“I have had this book in mind for several years now,” says the satellite engineer whose working career takes him to many different parts of the world.
He notes that he has always felt a connection to Spain, Spanish music and literature – a reflection of his family’s modern origins in that country. His great-grandparents, he relates, lived in Toledo – hence the family name, Toledano. His parents lived in Meknes in Morocco while his father attended university in Tangier before making aliyah.
Toledano just published “The Chronos of Andalucia” in April on Amazon. He reports that the book – which is available here at McNally Robinson – has been selling well –close to 100 copies – with orders coming from a bookstore chain in England, a bookstore in Denmark, and one in Italy.
“I have had between 30 and 40 positive reviews so far,” he reports.
Toledano adds that he envisages “The Chronos of Andalucia” to be the first in a series – a la the writer Danielle Steele. He is already working on a sequel – which is hinted at the end of “The Chronos” and, he reports, he is establishing his own independent publishing operation.
Features
Did the Jewish Federation’s stepping in to force the firing of BB Camp co-executive director Jacob Brodovsky lead to the further alienating of many young Jews from the community?
(June 8, 2024) Introduction: We received the following email from a young Jewish Winnipegger re the BB Camp controversy, which we’ve reported on extensively on this website. We thought it important to post the email as a separate piece rather than as an add-on to an article in which we printed other emails from readers expressing their disappointment at what happened to Jacob Brodovsky, the former co-executive director of BB Camp:
Dear Mr. Bellan,
Thank you for once again cutting through the noise with your April 23rd column, “What the sordid BB Camp affair says about our community.” Your clarity and courage in calling out our rush to judgment and our narrowing definition of “Jewish identity” are deeply appreciated, especially by those of us who feel increasingly alienated in Winnipeg.
I also want to share a troubling observation about one of the loudest voices attacking Jacob Brodovsky: theJ.ca. Their articles—bylines like “Ron East” or “TheJ.ca Staff”—are, in fact, almost entirely generated by artificial intelligence. They contain no verifiable sourcing, frequently hallucinate details, and appear to be little more than a far-right newsletter running smear campaigns under the guise of “journalism.” The entire BB Camp series reads like an AI trained on extremist talking points, regurgitated daily to bully our community into silence.
As a young Jew in Winnipeg, I—and many of my peers—are horrified by the transformation we’re witnessing. What was once a warm, progressive community is now dominated by:
Bigots and Bullies: Parents threatening to pull their kids unless the camp bows to extremist demands.
Florida-style Republican Judaism: A narrow, intolerant ideology portrayed as the only “true” Jewishness.
Collapsing Leadership: Our Jewish Federation leaders, including Jeff Lieberman, have shown they lack the vision or backbone to navigate this crisis.
We stand at a dangerous inflection point. Our community is on the verge of a total and irreversible fascist takeover—an outcome no amount of regret or retrospective apologies can undo.
Please consider reading firsthand accounts from community members who have bravely spoken out:
I know this letter is anonymous and won’t be published, but I hope you see it as proof that many of us are desperate for ethical, forward-looking leadership. Thank you again for using your platform to remind us what Jewish community should mean: diversity of thought, compassion for all people, and the moral courage to call out extremism—no matter where it comes from.
This was NEVER a community of far-right Israelis. This is a shame beyond words.
With gratitude and urgency,
A Concerned Young Jew in Winnipeg
Post script: We had heard from many different sources (who all asked to remain anonymous) that the Jewish Federation’s decision to force the BB Camp board to fire Jacob Brodovsky came as a result of pressure from one or more big donors to the Combined Jewish Appeal. We sent an email to Jeff Lieberman, asking Jeff whether the Jewish Federation’s decision to force the resignation of Jacob Brodovsky as co-executive director of BB Camp came as a result of a donor (or donors) to the Combined Jewish Appeal threatening to withdraw their donation(s) this year unless Jacob were fired. I don’t think anyone would be surprised to learn that Jeff did not bother responding to my request for information.
The Jewish Federation used to advertise elections to its board in The Jewish Post & News for many years, but no longer does so (in the Jewish Post). Instead, it submits a slate of new appointees to its board to members of the current board to be rubber stamped. Is it any surprise that the donors who contribute the most money call the shots for the Federation (which is as its always been. The only difference is the Jewish Federation and the Winnipeg Jewish Community Council before it used to operate with a patina of democracy. Sadly, that is no longer the case.)
We would urge anyone on the Federation board who could give information about what led the board to force the resignation of Jacob Brodovsky to contact us. We would give full anonymity, as we have to the writer of the above letter.
-Bernie Bellan
You must be logged in to post a comment Login