Security Affairs

SEPTEMBER 5, 2020

FBI issued a second flash alert about ProLock ransomware stealing data, four months after the first advisory published by the feds on the same threat. The FBI has issued the 20200901-001 Private Industry Notification about ProLock ransomware stealing data on September 1st. reads a report published by Group-IB. “The

Ransomware 133

Ransomware Advertising Malware Backups 133

Security Affairs

AUGUST 10, 2020

Nefilim ransomware operators allegedly targeted the SPIE group, an independent European leader in multi-technical services. Researchers from threat intelligence firm Cyble reported that Nefilim ransomware operators allegedly hacked The SPIE Group , an independent European leader in multi-technical services. ” reported Cyble. .

Ransomware 108

Ransomware Hacking Advertising Backups 108

Security Affairs

JULY 5, 2020

Experts spotted recent samples of the Snake ransomware that were isolating the infected systems while encrypting files to avoid interference. The activity of the gang was relatively quiet during the COVID-19 outbreak since May 4, when the ransomware operators launched a massive campaign that targeted organizations worldwide.

Encryption 99

Encryption Ransomware Firewall Backups 99

Security Affairs

JULY 28, 2020

Cyble researchers reported that Nefilim ransomware operators allegedly targeted the Dussmann group, the German largest private multi-service provider. Researchers from threat intelligence firm Cyble reported that Nefilim ransomware operators allegedly targeted the Dussmann group, the German largest private multi-service provider.

Ransomware 108

Ransomware Data breaches Advertising Backups 108

Security Affairs

APRIL 9, 2020

million ransom to decrypt its files after being encrypted by the infamous Sodinokibi ransomware. “As part of this attack, the operators behind the Sodinokibi ransomware told BleepingComputer that they had encrypted the company’s entire network, deleted backup files, and copied more than 5GB of personal data.

Ransomware 116

Ransomware Encryption Advertising Backups 116

Security Affairs

JUNE 25, 2020

Maze ransomware operators claims to have breached the South Korean multinational electronics company LG Electronics. Researchers at Cyble discovered a data leak of LG Electronics published by Maze ransomware operators. Just after the WorldNet Telecommunications, the LG electronics fall as a victim of the Maze ransomware operators.”

Computers and Electronics 102

Computers and Electronics Ransomware Mobile Telecommunications 102

Security Affairs

AUGUST 15, 2020

Sodinokibi (REvil) ransomware operators announced on Friday to have hacked Brown-Forman, one of the largest U.S. Sodinokibi (REvil) ransomware operators announced last week to have breached the network of the Brown-Forman, one of the largest U.S. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware 114

Ransomware Advertising Encryption Hacking 114

Security Affairs

APRIL 19, 2019

A ransomware attack knocked the Weather Channel off the air for at least 90 minutes Thursday morning, federal law enforcement are investigating the incident. IT staff has restored the normal operations using the backups. The live show was interrupted due to a ransomware attack, likely an attempt to extort money to from the broadcaster.

Ransomware 92

Ransomware Backups Cyber Attacks Advertising 92

Security Affairs

JUNE 12, 2020

A ransomware attack that targeted the offices of the City of Knoxville, Tennessee, forced to shut down its entire computer network. The city of Knoxville, Tennessee, has shut down its computer network following a ransomware attack. The City will use backup to resume operations, the good news is that backup servers were not affected.

Ransomware 107

Ransomware Backups Advertising Malware 107

Security Affairs

AUGUST 4, 2020

Maze ransomware operators published internal data from LG and Xerox after the company did not pay the ransom. Ransomware crews are very active during these months, Maze ransomware operators have published tens of GB of internal data allegedly stolen from IT giants LG and Xerox following failed extortion attempts.

Ransomware 111

Ransomware Encryption Advertising Firmware 111

Security Affairs

AUGUST 6, 2020

Netwalker ransomware operators breached the networks of Forsee Power , a well-known player in the electromobility market. A new company has been added to the list of the victims of the Netwalker ransomware operators, it is Forsee Power , which provides advanced lithium-ion battery systems for any mobility application.

Ransomware 107

Ransomware VPN Advertising Marketing 107

eSecurity Planet

FEBRUARY 15, 2022

Ransomware attacks on critical infrastructure and a surge in exploited vulnerabilities are getting the attention of U.S. BlackByte Ransomware Attack Methods, IoCs. The FBI-Secret Service warning came just ahead of news that the NFL’s San Francisco 49ers had also been hit by BlackByte ransomware. The FBI and U.S.

Ransomware 128

Ransomware Encryption Backups Accountability 128

Security Affairs

APRIL 22, 2020

The City of Torrance of the Los Angeles metropolitan area, California, is the last victim of the DoppelPaymer Ransomware, hackers also stole its data. Below the Tweet published the data breach notification service Under the Breach: Dopple ransomware group hacked into the government site of Torrance (California). million ransom.

Ransomware 99

Ransomware Advertising Backups Data breaches 99

Security Affairs

JUNE 17, 2020

system-on-chip maker MaxLinear disclosed a security incident, Maze ransomware operators infected some of its computing systems in May. MaxLinear restored some of the systems using its backups, despite Maze Ransomware threatened to leak over 1TB of data allegedly stolen before encrypting the infected systems. Pierluigi Paganini.

Ransomware 96

Ransomware Data breaches Advertising Insurance 96

Security Affairs

AUGUST 27, 2020

REvil ransomware operators claimed to have breached another healthcare organization, the victim is Valley Health Systems. “Recently, during the monitoring process of data leaks the Cyble Research Team identified a leak disclosure post in which the REvil ransomware operators claimed to have breached Valley Health Systems.”

Healthcare 82

Healthcare Ransomware Advertising Cyber Risk 82

Security Affairs

DECEMBER 24, 2019

The FBI has issued a warning to the private industry of cyber attacks involving the LockerGoga and MegaCortex Ransomware. The FBI is warning the private industry of cyber attacks involving the LockerGoga and MegaCortex Ransomware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware 61

Ransomware Backups Encryption Cyber Attacks 61

Security Affairs

NOVEMBER 28, 2019

According to a confidential report from the Dutch National Cyber Security Centre (NCSC), at least 1,800 companies were infected with 3 ransomware. A confidential report published by the Dutch National Cyber Security Centre (NCSC) revealed that at least 1,800 companies are affected by three strain s of ransomware across the world.

Ransomware 110

Ransomware Advertising Backups Malware 110

Security Affairs

MAY 6, 2020

Australian shipping giant Toll informed its customers that it has shut down some IT systems due to a new ransomware attack. The Australian transportation and logistics giant Toll Group informed its customers that it has shut down some IT systems after a new ransomware attack, it is the second infection disclosed by the company this year.

Ransomware 99

Ransomware Encryption Backups Healthcare 99

Security Affairs

AUGUST 12, 2020

The City of Lafayette, Colorado, USA, has been forced to pay $45,000 because they were unable to restore necessary files from backup. On July 27th, the systems at the City of Lafayette, Colorado, were infected with ransomware, the malicious code impacted phone services, email, and online payment reservation systems. Pierluigi Paganini.

Backups 136

Backups Advertising Ransomware Hacking 136

Security Affairs

AUGUST 26, 2019

A new ransomware, dubbed Nemty, appeared in the threat landscape over the weekend, it spreads via compromised RDP connections. A new ransomware, called Nemty ransomware, has been discovered over the weekend by malware researchers. Below the ransom note dropped by the Nemty ransomware after the encryption process is completed.

Ransomware 93

Ransomware Malware Antivirus Encryption 93

Security Affairs

JUNE 27, 2020

The group confirmed that the broadcasting of France 3 will be transferred to the headquarters of France Televisions, the company also activated the backup site in response to the incident. This isn’t the first attack that targeted French media, in 2019 ransomware operators hit the M6 ??group Pierluigi Paganini.

Cyber Attacks 139

Cyber Attacks Backups Advertising Media 139

Security Affairs

MAY 21, 2020

Hackers attempted to exploit a zero-day flaw in the Sophos XG firewall to distribute ransomware to Windows machines, but the attack was blocked. In the new wave of attacks, hackers exploited the issue to distribute the Ragnarok Ransomware. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firewall 135

Firewall Ransomware Passwords VPN 135

Security Affairs

JUNE 2, 2020

The REvil/Sodinokibi ransomware operators have leaked the files allegedly stolen from the UK power grid middleman Elexon. In May Elexon , a middleman in the UK power grid network, was the victim of a cyber attack, its systems have been infected with the Sodinokibi ransomware. Pierluigi Paganini.

Ransomware 91

Ransomware Cyber Attacks Advertising Insurance 91

Security Affairs

DECEMBER 12, 2019

Experts found a new variant of the Vega ransomware, dubbed Zeppelin, targeting technology and healthcare companies across Europe, the US, and Canada. Unlike other variants of the Vega ransomware, the Zeppelin ransomware doesn’t infect users in Russia or other ex-USSR countries like Ukraine, Belorussia, and Kazakhstan.

Ransomware 62

Ransomware Encryption Healthcare Backups 62

Security Affairs

APRIL 24, 2019

were infected by the Ryuk ransomware on April 13, 2018. Law enforcement is investigating a ransomware attack that hit the City of Stuart on April 13, 2018. “City officials on Wednesday confirmed a computer virus that infected servers over the weekend was the result of a ransomware attack.” Pierluigi Paganini.

Ransomware 76

Ransomware Backups Malware Advertising 76

Security Affairs

JANUARY 10, 2020

Officials at the Albany County Airport Authority revealed that New York airport servers were infected with ransomware on Christmas. Officials at the Albany County Airport Authority announced this week that a ransomware attack hit the New York airport and its computer management provider LogicalNet over Christmas. Pierluigi Paganini.

Ransomware 68

Ransomware Insurance VPN Backups 68

Security Affairs

DECEMBER 28, 2019

A Ryuk Ransomware attack has taken down the corporate IT network of a Maritime Transportation Security Act (MTSA) regulated facility. Ryuk Ransomware continues to infect systems worldwide, the U.S. The Ryuk ransomware was involved in a long string of attacks targeting cities, hospitals, and organizations worldwide.

Ransomware 73

Ransomware Advertising Encryption Phishing 73

Security Affairs

JANUARY 2, 2019

The Cloud hosting provider Dataresolution.net was hit by a ransomware-based attack on Christmas Eve that took down its systems. The Ryuk ransomware recently crippled printing and delivery operations for major U.S. The Ryuk ransomware appears connected to Hermes malware that was associated with the notorious Lazarus APT group.

Ransomware 88

Ransomware Encryption Advertising Backups 88

Krebs on Security

OCTOBER 2, 2020

Over the past 10 days, someone has been launching a series of coordinated attacks designed to disrupt Trickbot , an enormous collection of more than two million malware-infected Windows PCs that are constantly being harvested for financial data and are often used as the entry point for deploying ransomware within compromised organizations.

Ransomware 338

Ransomware Malware Healthcare Internet 338

Security Affairs

JUNE 13, 2019

Malware infections could be devastating for production environments, a ransomware infection halts production operations for days at airplane parts manufacturer ASCO. A ransomware attack has paralyzed the production in ASCO plants across several countries worldwide. A complaint has been submitted to the police.”

Ransomware 83

Ransomware Manufacturing Cyber Attacks Advertising 83

Security Affairs

SEPTEMBER 5, 2019

Another US city was the victim of a ransomware attack, this time crooks hit the city of New Bedford, Massachusetts, asking for $5.3 Million Ransom, but… The systems of New Bedford, Massachusetts, were infected with ransomware and crooks asked for a $5.3 Then the city opted out to restore from backups. Pierluigi Paganini.

Ransomware 79

Ransomware Encryption Advertising Backups 79

The Last Watchdog

APRIL 29, 2019

Semperis is a security company, launched in 2014, that is entirely focused on AD – or, to put it more precisely, on delivering state-of-art AD cyber resilience, threat mitigation and rapid recovery from cyber breaches. This, in fact, was the service Semperis set out to provide when it launched in 2014.

Backups 207

Backups Ransomware Accountability Malware 207

Security Affairs

FEBRUARY 3, 2020

TVEyes was brought down after its core server and engineering workstations were infected with a ransomware attack, company CEO confirmed. On Thursday night, a ransomware attack hit the company network causing an outage of its multimedia messaging and data feed services (i.e. TVEyes Media Monitoring Suite (MMS)). ” . .

Engineering 60

Engineering Ransomware Advertising Backups 60

Security Affairs

DECEMBER 4, 2019

Ransomware attacks continue to threaten organizations worldwide, CyrusOne , one of the biggest data center providers in the US, is facing with an infection. A new ransomware attack made the headlines, systems at CyrusOne , one of the biggest data center providers in the US, were infected by the malware. Pierluigi Paganini.

Ransomware 57

Ransomware Advertising Backups Malware 57

Security Affairs

NOVEMBER 29, 2018

DoJ charges two Iranian men over their alleged role in creating and spreading the infamous SamSam ransomware. Two Iranian men, Faramarz Shahi Savandi (34) and Mohammad Mehdi Shah Mansouri (27) have been charged by DoJ for their role in creating and distributing the dreaded SamSam ransomware. ” reads the DoJ indictment. .

Ransomware 84

Ransomware Encryption Advertising Backups 84

Security Affairs

DECEMBER 9, 2019

Emsisoft warns that a bug in the decrypter app of the Ryuk ransomware could damage large files making it impossible to decrypt them. Experts from Antivirus maker Emsisoft discovered a bug in the decrypter app of the infamous Ryuk ransomware. Ryuk is one of today’s most active ransomware strains. ” continues the post.

Ransomware 59

Ransomware Encryption Backups Advertising 59

Security Affairs

JULY 11, 2019

Malware researchers at two security firms Intezer and Anomali have discovered a new piece of ransomware targeting Network Attached Storage (NAS) devices. Experts at security firms Intezer and Anomali have separately discovered a new piece of ransomware targeting Network Attached Storage (NAS) devices. The malicious code appends.

Ransomware 90

Ransomware Encryption Malware Advertising 90