Cybercrime, Hacking and Ransomware - Cyber Security Informer

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported. The FBI, CISA, HHS, and MS-ISAC have issued a joint Cybersecurity Advisory (CSA) regarding the Black Basta ransomware activity as part of the StopRansomware initiative.

Ransomware

Ransomware Hacking Healthcare Retail

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement in this sector Cryptocurrencies have revolutionized the financial world, offering new investment opportunities and decentralized transactions.

Cryptocurrency

Cryptocurrency Cybercrime Education Scams

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. kapuchin0 claims that the leaked code is the first breach of the HelloKitty ransomware. kapuchin0 claims that the leaked code is the first breach of the HelloKitty ransomware.

Cybercrime

Cybercrime Ransomware DDOS Encryption

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cactus ransomware gang claims the Schneider Electric hack

Security Affairs

JANUARY 30, 2024

Energy management and industrial automation firm Schneider Electric suffered a data breach after a Cactus ransomware attack. The attack was carried out by the Cactus ransomware gang , which claims to have stolen terabytes of corporate data from the company. The Cactus ransomware relies on multiple legitimate tools (e.g.

Ransomware

Ransomware Hacking Data breaches Digital transformation

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Emerging in 2007 as a banking trojan, QakBot (a.k.a. Today’s operation is not the first time the U.S. ” The DOJ said it also recovered more than 6.5

Hacking

Hacking Malware Ransomware Government

Black Basta ransomware gang hacked Hyundai Motor Europe

Security Affairs

FEBRUARY 9, 2024

Black Basta ransomware gang claims the hack of the car maker Hyundai Motor Europe and the theft of three terabytes of their data. BleepingComputer reported that the Car maker Hyundai Motor Europe was breached by the Black Basta ransomware gang. The threat actors claim to have stolen three terabytes of data from the company.

Hacking

Hacking Ransomware Data breaches Manufacturing

Hacking for Dollars: North Korean Cybercrime

Security Boulevard

FEBRUARY 24, 2021

In mid-February 2021, the Department of Justice shared the content of what had been a sealed indictment charging three North Korean (DPRK) hacking “operatives” with a plethora of cybercrimes, including “cyber heists and extortion schemes, targeting both traditional and cryptocurrencies.” Assistant Attorney General John C.

Cybercrime

Cybercrime Hacking Cryptocurrency Ransomware

Zeppelin ransomware source code sold for $500 on hacking forum

Bleeping Computer

JANUARY 4, 2024

A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the Zeppelin ransomware builder for just $500. [.]

Ransomware

Ransomware Cybercrime Hacking

Cybercrime gang FIN7 returned and was spotted delivering Clop ransomware

Security Affairs

MAY 20, 2023

Cybercriminal gang FIN7 returned with a new wave of attacks aimed at deploying the Clop ransomware on victims’ networks. The group was spotted deploying the Clop ransomware in opportunistic attacks in April 2023. Then they use OpenSSH and Impacket to move laterally and deploy the Clop ransomware payload.

Cybercrime

Cybercrime Ransomware Security Intelligence Hacking

2023 FBI Internet Crime Report reported cybercrime losses reached $12.5 billion in 2023

Security Affairs

MARCH 7, 2024

The FBI Internet Crime Complaint Center (IC3) 2023 report states that reported cybercrime losses reached $12.5 The 2023 Internet Crime Report published the FBI’s Internet Crime Complaint Center (IC3) reveals that reported cybercrime losses reached $12.5 billion in 2023. billion in 2023. A monetary hold was placed on $538.39

Cybercrime

Cybercrime Internet Internet Scams

Police arrests LockBit ransomware members, release decryptor in global crackdown

Bleeping Computer

FEBRUARY 20, 2024

Law enforcement arrested two operators of the LockBit ransomware gang in Poland and Ukraine, created a decryption tool to recover encrypted files for free, and seized over 200 crypto-wallets after hacking the cybercrime gang's servers in an international crackdown operation. [.]

Ransomware

Ransomware Cybercrime Encryption Hacking

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

Microsoft has addressed a zero-day in the Windows Common Log File System (CLFS) actively exploited in ransomware attacks. Microsoft has addressed a zero-day vulnerability, tracked as CVE-2023-28252 , in the Windows Common Log File System (CLFS), which is actively exploited in ransomware attacks.

Cybercrime

Cybercrime Ransomware Education Media

Lockbit ransomware gang claims to have hacked cybersecurity giant Mandiant

Security Affairs

JUNE 6, 2022

LockBit ransomware gang claims to have hacked the cybersecurity firm Mandiant, which is investigating the alleged security breach. Today the LockBit ransomware gang has added the cybersecurity firm Mandiant to the list of victims published on its darkweb leak site. ransomware to evade sanctions. Pierluigi Paganini.

Hacking

Hacking Ransomware Cybersecurity Cybercrime

Police arrest LockBit ransomware members, release decryptor in global crackdown

Bleeping Computer

FEBRUARY 20, 2024

Law enforcement arrested two operators of the LockBit ransomware gang in Poland and Ukraine, created a decryption tool to recover encrypted files for free, and seized over 200 crypto-wallets after hacking the cybercrime gang's servers in an international crackdown operation. [.]

Ransomware

Ransomware Cybercrime Encryption Hacking

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

Security Affairs

MARCH 15, 2024

US DoJ sentenced a Moldovan national (31) to 42 months in federal prison for operating the E-Root cybercrime marketplace. Diaconu was operating the E-Root cybercrime marketplace. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cybercrime)

Cybercrime

Cybercrime Cryptocurrency Advertising Passwords

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

Joseph Steinberg

JUNE 9, 2022

The Tenafly, New Jersey, Public School District has canceled final exams for its high school students after a ransomware cyberattack crippled the district’s computer infrastructure. The ransomware attack on Tenafly’s school system is a reminder of a sad, ironic, reality.

Ransomware

Ransomware Artificial Intelligence Education Cybercrime

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Security Affairs

DECEMBER 15, 2023

The Snatch ransomware group announced it had hacked the food giant Kraft Heinz, the company is investigating the claims. The Snatch ransomware group claims to have hacked Kraft Heinz in August and on December 14, it added the company to the list of victims on its leak site. ” reads the alert.

Hacking

Hacking Ransomware Computers and Electronics Marketing

Acer Philippines disclosed a data breach after a third-party vendor hack

Security Affairs

MARCH 13, 2024

Acer Philippines disclosed a data breach after employee data was leaked by a threat actor on a hacking forum. The hacked third-party company manages the Acer employee attendance data. ph1ns told Bleeping Computer that Acer was hacked, but threat actors did not deploy any ransomware.

Data breaches

Data breaches Computers and Electronics Hacking Cybercrime

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

Security Affairs

MAY 13, 2024

Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware. The ZIP archives contain a compressed executable payload that, if executed, will start the encryption process with LockBit Black ransomware. ” states the report published by the NJCCIC. 177 and 185[.]215[.]113[.]66.

Phishing

Phishing Ransomware Security Awareness Authentication

Medusa ransomware gang claims the hack of Toyota Financial Services

Security Affairs

NOVEMBER 17, 2023

Toyota Financial Services discloses unauthorized activity on systems after the Medusa ransomware gang claimed to have hacked the company. Today, the Medusa ransomware gang claimed responsibility for the attack and threatened to leak the purportedly stolen data if the company doesn’t pay the ransom.

Financial Services

Financial Services Hacking Ransomware Data breaches

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Krebs on Security

MAY 14, 2021

The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. The DarkSide message includes passages apparently penned by a leader of the REvil ransomware-as-a-service platform.

Ransomware

Ransomware Cryptocurrency Cybercrime Healthcare

Microsoft seized the US infrastructure of the Storm-1152 cybercrime group

Security Affairs

DECEMBER 14, 2023

Microsoft’s Digital Crimes Unit seized multiple domains used by cybercrime group Storm-1152 to sell fraudulent Outlook accounts. Microsoft’s Digital Crimes Unit seized multiple domains used by a cybercrime group, tracked as Storm-1152, to sell fraudulent accounts. ” reads the announcement published by Microsoft.

Cybercrime

Cybercrime Accountability Media Technology

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One

Security Affairs

SEPTEMBER 30, 2023

The ALPHV/BlackCat ransomware gang added the hotel chain Motel One to the list of victims on its Tor leak site. The ALPHV/BlackCat ransomware gang added Motel One to the list of victims on its Tor leak site. ” The ransomware group threatens to leak the stolen data if the company does not pay the ransom within five days.

Hacking

Hacking Ransomware Manufacturing Media

Rhysida Ransomware gang claims to have hacked three more US hospitals

Security Affairs

SEPTEMBER 10, 2023

Rhysida Ransomware group added three more US hospitals to the list of victims on its Tor leak site after the PROSPECT MEDICAL attack. Recently the Rhysida ransomware group made the headlines because it announced the hack of Prospect Medical Holdings and the theft of sensitive information from the organization.

Hacking

Hacking Ransomware Healthcare Cyber Attacks

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

SecureWorld News

MARCH 15, 2023

The FBI's Internet Crime Complaint Center (IC3) has released its 2022 Internet Crime Report , which reveals the trends and impacts of cybercrime in the United States. The report shows that phishing schemes were the most common type of cybercrime reported by victims in 2022, with 300,497 complaints.

Cybercrime

Cybercrime Scams Cryptocurrency Identity Theft

Lockbit ransomware gang hacked California Department of Finance

Security Affairs

DECEMBER 13, 2022

LockBit ransomware gang hacked the California Department of Finance and threatens to leak data stolen from its systems. The LockBit ransomware gang claims to have stolen 76Gb from the California Department of Finance and is threatening to leak the stolen data if the victims will not pay the ransom by December 24.

Hacking

Hacking Ransomware Cybersecurity Technology

ESET Research Podcast: ChatGPT, the MOVEit hack, and Pandora

We Live Security

JANUARY 31, 2024

An AI chatbot inadvertently kindles a cybercrime boom, ransomware bandits plunder organizations without deploying ransomware, and a new botnet enslaves Android TV boxes

Cybercrime

Cybercrime Hacking Ransomware

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Security Affairs

DECEMBER 16, 2023

The Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Another healthcare organization suffered a ransomware attack, the Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Who is Hunters International?

Ransomware

Ransomware Hacking Insurance Healthcare

Ransomware drama: Law enforcement seized Lockbit group’s website again

Security Affairs

MAY 5, 2024

FuckRansomware pic.twitter.com/uD09m7AukH — Jon DiMaggio (@Jon__DiMaggio) May 5, 2024 However, researchers at VX-underground have spoken with Lockbit ransomware group administrative staff regarding the return of the old domain and the gang claims law enforcement is lying. Lockbit ransomware group states law enforcement is lying.

Ransomware

Ransomware Cybercrime Cyber Attacks Encryption

On That Dusseldorf Hospital Ransomware Attack and the Resultant Death

Schneier on Security

NOVEMBER 24, 2020

Wired has a detailed story about the ransomware attack on a Dusseldorf hospital, the one that resulted in an ambulance being redirected to a more distant hospital and the patient dying. Instead, anyone who can be shown to have contributed to the hack may also be prosecuted, he says.

Ransomware

Ransomware Cybercrime Hacking

Experts link the Black Basta ransomware operation to FIN7 cybercrime gang

Security Affairs

NOVEMBER 3, 2022

Sentinel Labs found evidence that links the Black Basta ransomware gang to the financially motivated hacking group FIN7. Security researchers at Sentinel Labs shared details about Black Basta ‘s TTPs and assess it is highly likely the ransomware operation has ties with FIN7. SecurityAffairs – hacking, FIN7).

Cybercrime

Cybercrime Ransomware Antivirus Malware

Conti ransomware hacking spree breaches over 40 orgs in a month

Bleeping Computer

JUNE 23, 2022

The Conti cybercrime syndicate runs one of the most aggressive ransomware operations and has grown highly organized, to the point that affiliates were able to hack more than 40 companies in a little over a month. [.].

Hacking

Hacking Ransomware Cybercrime

REvil ransomware gang hacked gaming firm Gaming Partners International

Security Affairs

OCTOBER 31, 2020

The REvil ransomware operators made the headlines again, this time the gang claims to have hacked the Gaming Partners International (GPI). The REvil ransomware gang (aka Sodinokibi) claims to have stolen info from the systems at the company before encrypting them. ” reads the message published by the ransomware operators.

Hacking

Hacking Ransomware Advertising Encryption

FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks

Security Affairs

OCTOBER 22, 2021

FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting a pentest. The FIN7 hacking group is attempting to enter in the ransomware business and is doing it with an interesting technique. SecurityAffairs – hacking, cyber security).

Cybercrime

Cybercrime Ransomware Cybersecurity Backups

Expert warns of Turtle macOS ransomware

Security Affairs

DECEMBER 1, 2023

The popular cybersecurity researcher Patrick Wardle dissected the new macOS ransomware Turtle used to target Apple devices. The popular cyber security researcher Patrick Wardle published a detailed analysis of the new macOS ransomware Turtle. “Today we dove into a new ransomware sample, internally dubbed “Turtle”.

Ransomware

Ransomware Encryption Malware Cybercrime

BlackCat ransomware group claims the hack of Seiko network

Security Affairs

AUGUST 21, 2023

The BlackCat/ALPHV ransomware group claims to have hacked the Japanese maker of watches Seiko and added the company to its data leak site. Now the BlackCat/ALPHV ransomware gang has added Seiko to the list of victims published on its data leak site.

Hacking

Hacking Ransomware Data breaches Cyber Attacks

Daixin Team group claimed the hack of North Texas Municipal Water District

Security Affairs

NOVEMBER 28, 2023

The Daixin Team group claims to have hacked the North Texas Municipal Water District (US) and threatened to leak the stolen data. The ransomware gang claims the theft of board meeting minutes, internal project documentation, personnel details, audit reports, and more.

Hacking

Hacking VPN Ransomware Cybercrime

Cisco was hacked by the Yanluowang ransomware gang

Security Affairs

AUGUST 10, 2022

Cisco discloses a security breach, the Yanluowang ransomware group breached its corporate network in late May and stole internal data. Cisco disclosed a security breach, the Yanluowang ransomware group breached its corporate network in late May and stole internal data. yanluowang ransomware has posted #Cisco to its leaksite.

Ransomware

Ransomware Hacking VPN Phishing

Stormous ransomware gang claims to have hacked Coca-Cola

Security Affairs

APRIL 26, 2022

The Stormous ransomware gang claims to have hacked the multinational beverage corporation Coca-Cola Company. The Stormous ransomware gang announced with a post on its leak site to have hacked the multinational beverage corporation Coca-Cola Company. we hacked some of their servers and went over (161G) !

Hacking

Hacking Ransomware Cybercrime Cybersecurity

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Security Affairs

MAY 16, 2021

Avaddon ransomware gang has breached the France-based financial consultancy firm Acer Finance. Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. SecurityAffairs – hacking, Avaddon). Pierluigi Paganini.

Hacking

Hacking Ransomware DDOS Manufacturing

Cuba ransomware gang hacked 49 US critical infrastructure organizations

Security Affairs

DECEMBER 4, 2021

The FBI has revealed that the Cuba ransomware gang breached the networks of at least 49 US critical infrastructure organizations. A flash alert published by the FBI has reported that the Cuba ransomware gang breached the networks of at least 49 US critical infrastructure organizations. ” states the alert.

Ransomware

Ransomware Hacking Malware Encryption

Law enforcement agencies identified LockBit ransomware admin and sanctioned him

Security Affairs

MAY 7, 2024

The FBI, UK National Crime Agency, and Europol have unmasked the identity of the admin of the LockBit ransomware operation, aka ‘LockBitSupp’ and ‘putinkrab’ , and issued sanctions against him. The FBI, UK National Crime Agency, and Europol revealed the identity of the admin of the LockBit operation and sanctioned him.

Ransomware

Ransomware Cybercrime Healthcare Encryption

The newer cybercrime triad: TrickBot-Emotet-Conti

Security Affairs

NOVEMBER 20, 2021

Advanced Intelligence researchers argue that the restarting of the Emotet botnet was driven by Conti ransomware gang. The infamous banking trojan was also used to deliver other malicious code, such as Trickbot and QBot trojans, or ransomware such as Conti , ProLock , Ryuk , and Egregor. ” states the report published by AdvIntel.

Cybercrime

Cybercrime Ransomware Banking Malware

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Cryptocurrencies and cybercrime: A critical intermingling

Webinars

Trending Sources

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Webinars

Cactus ransomware gang claims the Schneider Electric hack

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Black Basta ransomware gang hacked Hyundai Motor Europe

Hacking for Dollars: North Korean Cybercrime

Zeppelin ransomware source code sold for $500 on hacking forum

Cybercrime gang FIN7 returned and was spotted delivering Clop ransomware

2023 FBI Internet Crime Report reported cybercrime losses reached $12.5 billion in 2023

Police arrests LockBit ransomware members, release decryptor in global crackdown

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Cybercrime group exploits Windows zero-day in ransomware attacks

Lockbit ransomware gang claims to have hacked cybersecurity giant Mandiant

Police arrest LockBit ransomware members, release decryptor in global crackdown

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Acer Philippines disclosed a data breach after a third-party vendor hack

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

Medusa ransomware gang claims the hack of Toyota Financial Services

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Microsoft seized the US infrastructure of the Storm-1152 cybercrime group

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One

Rhysida Ransomware gang claims to have hacked three more US hospitals

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

Lockbit ransomware gang hacked California Department of Finance

ESET Research Podcast: ChatGPT, the MOVEit hack, and Pandora

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Ransomware drama: Law enforcement seized Lockbit group’s website again

On That Dusseldorf Hospital Ransomware Attack and the Resultant Death

Experts link the Black Basta ransomware operation to FIN7 cybercrime gang

Conti ransomware hacking spree breaches over 40 orgs in a month

REvil ransomware gang hacked gaming firm Gaming Partners International

FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks

Expert warns of Turtle macOS ransomware

BlackCat ransomware group claims the hack of Seiko network

Daixin Team group claimed the hack of North Texas Municipal Water District

Cisco was hacked by the Yanluowang ransomware gang

Stormous ransomware gang claims to have hacked Coca-Cola

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Cuba ransomware gang hacked 49 US critical infrastructure organizations

Law enforcement agencies identified LockBit ransomware admin and sanctioned him

The newer cybercrime triad: TrickBot-Emotet-Conti

Stay Connected