Trend Micro

MARCH 25, 2024

This blog entry discusses the Agenda ransomware group's use of its latest Rust variant to propagate to VMWare vCenter and ESXi servers.

Ransomware 141

Ransomware 141

Graham Cluley

MAY 23, 2024

The British Government is proposing sweeping change in its approach to ransomware attacks, proposing mandatory reporting by victims and licensing regime for all payments. Read more in my article on the Exponential-e blog.

Government 91

Government Ransomware Malware 91

Graham Cluley

DECEMBER 7, 2023

A cybercriminal group calling itself BlackSuit has claimed responsibility for a series of ransomware attacks, including breaches at schools in central Georgia. Learn more about the BlackSuit ransomware in my article on the Tripwire State of Security blog.

Ransomware 121

Ransomware Hacking Data breaches Malware 121

Security Boulevard

MARCH 3, 2024

Today, we’re turning the spotlight on LockBit ransomware attacks and the unprecedented $15 million bounty offered by the U.S. International cooperation against ransomware is essential in combating cyber threats and safeguarding digital infrastructures worldwide. government to dismantle its operations.

Ransomware 115

Ransomware Cyber threats Government Cyber Attacks 115

Graham Cluley

FEBRUARY 15, 2024

A group of South Korean security researchers have uncovered a vulnerability in the infamous Rhysida ransomware that provides a way for encrypted files to be unscrambled. Read more in my article on the Tripwire State of Security blog.

Ransomware 110

Ransomware Encryption Malware 110

Heimadal Security

APRIL 5, 2024

IxMetro Powerhost, a Chilean data center and hosting provider, has become the latest target of a cyberattack by a newly identified ransomware group dubbed SEXi.

Encryption 116

Encryption Ransomware Backups Cybersecurity 116

Graham Cluley

APRIL 11, 2024

The East Central University (ECU) of Ada, Oklahoma, has revealed that a ransomware gang launched an attack against its systems that left some computers and servers encrypted and may have also seen sensitive information stolen. Read more in my article on the Hot for Security blog.

Ransomware 88

Ransomware Encryption Malware 88

Graham Cluley

JANUARY 25, 2024

In a newly published report, the UK's National Cyber Security Centre (NCSC) has warned that malicious attackers are already taking advantage of artificial intelligence and that the volume and impact of threats - including ransomware - will increase in the next two years. Read more in my article on the Tripwire State of Security blog.

Artificial Intelligence 128

Artificial Intelligence Ransomware Malware 128

Graham Cluley

APRIL 18, 2024

February's crippling ransomware attack against Change Healthcare, which saw prescription orders delayed across the United States, continues to have serious consequences. Read more in my article on the Hot for Security blog.

Healthcare 113

Healthcare Ransomware Data breaches Malware 113

Graham Cluley

MARCH 25, 2024

What lessons can other organisations learn from the ransomware attack? Read more in my article on the Exponential-e blog. In October 2023, the British Library suffered "one of the worst cyber incidents in British history," as described by Ciaran Martin, ex-CEO of the National Cyber Security Centre (NCSC).

Ransomware 110

Ransomware Data breaches Malware 110

Graham Cluley

FEBRUARY 29, 2024

The US government has warned the healthcare sector that it is now the biggest target of the BlackCat ransomware group. Read more in my article on the Tripwire State of Security blog.

Healthcare 110

Healthcare Ransomware Government Data breaches 110

Trend Micro

SEPTEMBER 12, 2023

In this blog, we investigate how threat actors used information-stealing malware with EV code signing certificates and later delivered ransomware payloads to its victims via the same delivery method.

Ransomware 141

Ransomware Malware 141

Graham Cluley

DECEMBER 4, 2023

Ransomware hits firm that providing cloud services to credit unions in order ensure that their business activities could "operate without interruption, even when nothing else seems to be going well." Read more in my article on the Tripwire State of Security blog.

Ransomware 128

Ransomware Data breaches Malware 128

Graham Cluley

APRIL 4, 2024

New research has found that ransomware remediation costs can explode when backups have been compromised by malicious hackers - with overall recovery costs eight times higher than for those whose backups are not impacted. Read more in my article on th Exponential-e blog.

Backups 93

Backups Ransomware Data breaches Malware 93

Graham Cluley

MARCH 27, 2024

The Qilin ransomware group has targeted The Big Issue, a street newspaper sold by the homeless and vulnerable. Read more in my article on the Hot for Security blog. Spost on Qilin's dark web leak site claimed the gang has stolen 550 GB of confidential data from the periodical's parent company.

Ransomware 94

Ransomware Data breaches Malware 94

Graham Cluley

MAY 14, 2024

Security agencies in the United States have issued a new warning about the Black Basta ransomware group, in the wake of a high-profile attack against the healthcare giant Ascension. Read more in my article on the Exponential-e blog.

Ransomware 94

Ransomware Healthcare Cyber Attacks Data breaches 94

Heimadal Security

MAY 10, 2024

The City of Wichita, Kansas, fell victim to a ransomware attack, prompting the shutdown of its network to prevent further damage. The LockBit ransomware group has since claimed responsibility, adding the city to its list of targets on its Tor leak site and threatening to release stolen data.

Ransomware 74

Ransomware Cybersecurity 74

Graham Cluley

NOVEMBER 10, 2023

The US trading arm of the Industrial and Commercial Bank of China (ICBC) has been hit by a ransomware attack that reportedly forced it to handle trades via messengers carrying USB thumb drives across Manhattan. Read more in my article on the Hot for Security blog.

Banking 129

Banking Ransomware Malware 129

Heimadal Security

SEPTEMBER 27, 2023

In the ever-evolving landscape of cyber threats, ransomware remains a pervasive and destructive weapon in the arsenal of cybercriminals. Among the various ransomware strains, Phobos has gained notoriety for its sophisticated capabilities and devastating consequences. What is Phobos Ransomware?

Ransomware 116

Ransomware Cyber threats 116

Graham Cluley

FEBRUARY 26, 2024

The LockBit ransomware group has re-emerged, just days after a high-profile law enforcement operation seized control of its infrastructure and disrupted its operations. Read more in my article on the Hot for Security blog.

Ransomware 101

Ransomware Data breaches Malware 101

Quick Heal Antivirus

MARCH 29, 2023

The rise of ransomware and malware variants has been a growing concern for individuals and organizations alike. The post Deep Dive into Royal Ransomware appeared first on Quick Heal Blog.

Ransomware 116

Ransomware Malware Encryption Cybersecurity 116

Heimadal Security

SEPTEMBER 13, 2023

New ransomware trends are on the rise as ransomware has emerged as one of the most formidable cyber threats in recent years, causing significant disruptions to businesses, governments, and individuals worldwide.

Ransomware 108

Ransomware Cyber threats Government 108

Graham Cluley

SEPTEMBER 21, 2023

The FBI and US Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint advisory warning organisations about a ransomware-as-a-service operation called "Snatch." Learn more about the threat in my article for the Tripwire State of Security blog.

Ransomware 105

Ransomware Cybersecurity Data breaches Malware 105

Heimadal Security

DECEMBER 14, 2023

Dena, the reputed German Energy Agency, is said to have fallen victim to the notorious LockBit ransomware group. LockBit Ransomware’s Message (source) Dena has previously […] The post LockBit Ransomware Targets German Energy Agency Dena appeared first on Heimdal Security Blog.

Ransomware 102

Ransomware Data breaches Cybersecurity 102

Graham Cluley

FEBRUARY 22, 2024

A huge reward is being offered for information leading to the identification or location of any of the leaders of the LockBit ransomware gang. Read more in my article on the Tripwire State of Security blog.

Ransomware 109

Ransomware Data breaches Malware 109

Graham Cluley

JULY 6, 2023

There's good news for any business that has fallen victim to the Akira ransomware. Security researchers have developed a free decryption tool for files that have been encrypted since the Akira ransomware first emerged in March 2023. Read more in my article on the Tripwire State of Security blog.

Ransomware 135

Ransomware Encryption Malware 135

Security Boulevard

MAY 19, 2023

It’s popular because it’s profitable and it’s been a big moment for ransomware around the planet over the past few weeks. At Banyan, we decided to assemble the latest ransomware news for a mid-May Ransomware Threat Update (because there’s been enough of it to warrant its own blog).

Ransomware 108

Ransomware 108

Heimadal Security

SEPTEMBER 13, 2023

Microsoft revealed a shift in tactics by an initial access broker known for its ties to ransomware groups. The threat actor is known as Storm-0324 and had formerly spread Sage and GandCrab ransomware. Storm-0324 recently moved from deploying ransomware to breaching corporate networks through Microsoft Teams phishing attacks.

Phishing 116

Phishing Ransomware Cybersecurity 116

Heimadal Security

JANUARY 31, 2024

Cactus Ransomware claims responsibility for the January 17th Schneider Electric data breach. For the moment, there`s no impact on […] The post Cactus Ransomware behind Schneider Electrics Data Breach appeared first on Heimdal Security Blog. The platform holds data belonging to more than 2000 companies worldwide.

Data breaches 95

Data breaches Ransomware Cybersecurity 95

Heimadal Security

MARCH 29, 2024

State Department has issued a call for information, offering up to $10 million for leads on the Blackcat ransomware group. Announces $10 Million Reward for Leads on Blackcat Ransomware Group appeared first on Heimdal Security Blog.

Ransomware 97

Ransomware Insurance Technology Cybersecurity 97

Heimadal Security

FEBRUARY 8, 2024

New Chainalysis warns of ransomware payments raised above above $1.1 The $983 million previous peak was set in 2021, while in 2022 the ransomware payments dropped to $567. billion in 2023 and reached a new record.

Ransomware 102

Ransomware Cybersecurity 102

ZoneAlarm

FEBRUARY 29, 2024

In recent months, the US healthcare sector has been under siege by a series of sophisticated ransomware attacks, with hospitals nationwide facing significant operational disruptions and the compromise of sensitive patient data.

Ransomware 89

Ransomware Healthcare Cyber threats Malware 89

Graham Cluley

DECEMBER 20, 2023

The FBI has disrupted the operations of the ALPHV ransomware group, and seized decryption keys that could help 500 victims unscramble their files without having to pay a ransom. Read more in my article on the Hot for Security blog.

Ransomware 96

Ransomware Malware 96

Heimadal Security

DECEMBER 8, 2023

The Black Cat/AlphV ransomware gang claimed to have targeted California-based accounting software provider Tipalti. This alleged cyberattack raised concerns, particularly as the gang started threatening several high-profile Tipalti clients, including Roblox, Twitch, and more.

Ransomware 97

Ransomware Media Accountability Software 97

Graham Cluley

MAY 11, 2023

Akira is a new family of ransomware, first used in cybercrime attacks in March 2023. Read more about the threat in my article on the Tripwire State of Security blog.

Ransomware 109

Ransomware Cybercrime Data breaches Malware 109

Graham Cluley

NOVEMBER 8, 2023

A ransomware attack impacting five hospitals in southwestern Ontario, Canada, has seen hackers gain access to a database containing 5.6 Read more in my article on the Hot for Security blog. million patient visits, and the social insurance numbers of over 1400 employees.

Ransomware 102

Ransomware Insurance Data breaches Malware 102

Heimadal Security

JULY 14, 2023

The ransomware operation known as BlackCat, also referred to as Alphv ransomware, has been utilized by members of the Alphv group since November 2021. In a […] The post BlackCat Alphv Ransomware appeared first on Heimdal Security Blog.

Ransomware 85

Ransomware Healthcare Education 85