Adam Levin

JANUARY 2, 2019

2019 will be the year consumers start thinking more about cyber hygiene , and the year Congress becomes more proactive in the areas of privacy and cybersecurity. As the exchange rates for cyptocurrencies continue to decline, ransomware attack on investors will become less profitable. This presents myriad business opportunities.

Cybersecurity 157

Cybersecurity Identity Theft Passwords Password Management 157

Krebs on Security

NOVEMBER 2, 2021

A number of publications in September warned about the emergence of “ Groove ,” a new ransomware group that called on competing extortion gangs to unite in attacking U.S. Fortinet said the credentials were collected from systems that hadn’t yet implemented a patch issued in May 2019. government interests online.

Ransomware 265

Ransomware Cybercrime VPN Media 265

Security Affairs

JANUARY 18, 2022

Europol this week announced the shutdown of VPNLab, a VPN service that is very popular in the cybercrime ecosystem. An international operation conducted by law enforcement bodies from 10 countries took down VPNLab.net, a VPN service provider that is very popular in the cybercrime ecosystem. ” continues the EUROPOL. Europol said.

VPN 81

VPN Cybercrime Ransomware Advertising 81

Security Affairs

FEBRUARY 16, 2020

Iranian hackers have been hacking VPN servers to plant backdoors in companies around the world. Iran-linked attackers targeted Pulse Secure, Fortinet, Palo Alto Networks, and Citrix VPNs to hack into large companies as part of the Fox Kitten Campaign. SecurityAffairs – Fox Kitten campaign, VPN ). Pierluigi Paganini.

VPN 115

VPN Telecommunications Advertising Hacking 115

Adam Levin

JANUARY 9, 2020

Currency exchange giant Travelex has effectively been taken offline by a ransomware attack. . The ransomware detected on the Travelex servers has been identified as Sodinokibi (also known as REvil), a “ransomware as a service” form of malware that is developed and maintained by the Sodinokibi hacking group and deployed by over 40 affiliates.

Ransomware 157

Ransomware Encryption Insurance VPN 157

Security Affairs

MAY 27, 2020

The number of ransomware attacks increased by 40 percent last year, according to Group-IB attackers think bigger and grow more advanced. The greediest ransomware families with highest pay-off were Ryuk , DoppelPaymer and REvil. . In 2019, most ransomware operators actively used post-exploitation frameworks.

Ransomware 84

Ransomware Phishing Advertising Encryption 84

Security Affairs

AUGUST 2, 2020

The FBI has issued a security alert about Netwalker ransomware attacks targeting U.S. The FBI has issued a new security flash alert to warn of Netwalker ransomware attacks targeting U.S. The flash alert also includes indicators of compromise for the Netwalker ransomware along with mitigations. ” reads the alert.

Ransomware 130

Ransomware VPN Advertising Government 130

Security Affairs

APRIL 24, 2020

The popular SeaChange video platform is the latest victim of the Sodinokibi Ransomware gang, which is threatening to leak the stolen data. SeaChange International, the multinational supplier of video delivery software solutions, was the victim of the Sodinokibi Ransomware gang. SecurityAffairs – Sodinokibi Ransomware, hacking).

Software 102

Software Ransomware VPN Advertising 102

DoublePulsar

JANUARY 4, 2020

A security vulnerability in a popular enterprise remote access product is being used to deliver ransomware into organisations , with targeted delivery to also delete backups and disable endpoint security controls. On 14th August 2019 somebody posted an exploit for the issue on my forum, OpenSecurity.global.

VPN 52

VPN Ransomware Passwords Internet 52

Krebs on Security

JULY 8, 2019

The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims. Image: Malwarebytes.

Ransomware 260

Ransomware Accountability Cybercrime Passwords 260

Security Affairs

JULY 18, 2021

BleepingComputer became aware that the recent wave of attacks targeting vulnerable SonicWall devices was carried out by HelloKitty ransomware operators. SonicWall this week has issued an urgent security alert to warn companies of “ an imminent ransomware campaing ” targeting some of its equipment that reached end-of-life (EoL).

Ransomware 113

Ransomware Firmware Mobile InfoSec 113

SC Magazine

FEBRUARY 11, 2021

Ransomware is getting worse. Cybersecurity analysts have been screaming this sentiment from the rooftops for years, but now new research examining the expanding landscape of software vulnerabilities leveraged in ransomware attacks offers up some hard numbers that put the depth of this problem into context.

Ransomware 139

Ransomware Digital transformation Media Software 139

SecureList

JUNE 17, 2021

Black Kingdom ransomware appeared on the scene back in 2019, but we observed some activity again in 2021. The ransomware was used by an unknown adversary for exploiting a Microsoft Exchange vulnerability (CVE-2021-27065). The ransomware family was DearCry. CVE-2019-11510. Ransomware is written in Python.

Ransomware 134

Ransomware Encryption VPN System Administration 134

Approachable Cyber Threats

OCTOBER 16, 2020

Back in June, the Department of Homeland Security (DHS) issued an advisory that married together two of today’s major cybersecurity concerns: remote access technology and ransomware. VPNs continue to be problematic as well. VPN technology allows better security and more granularity in terms of access. million exposed RDP ports.

Ransomware 98

Ransomware VPN Internet Internet 98

SecureList

APRIL 23, 2021

Kaspersky has been following the ransomware landscape for years. In the past, we’ve published yearly reports on the subject: PC ransomware in 2014-2016 , Ransomware in 2016-2017 , and Ransomware and malicious crypto miners in 2016-2018. Was ransomware, in fact, a dying species of malware? What was happening?

Ransomware 104

Ransomware Mobile Malware Encryption 104

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware 93

Ransomware VPN Cybercrime Advertising 93

Security Affairs

SEPTEMBER 10, 2020

US-based supplier of video delivery software solutions, SeaChange International, revealed that a ransomware attack disrupted its operations in Q1 2020. SeaChange International, a US-based supplier of video delivery software solutions, revealed that a ransomware attack has disrupted its operations during the first quarter of 2020.

Ransomware 64

Ransomware VPN Banking Data breaches 64

Malwarebytes

MAY 11, 2021

Both the Australian Cyber Security Centre (ACSC) and the US Federal Bureau of Investigation (FBI) have issued warnings about an ongoing cybercrime campaign that is using Avaddon ransomware. In a separate advisory (pdf) , the ACSC says it is also aware of an ongoing ransomware campaign using the Avaddon Ransomware malware.

Ransomware 107

Ransomware VPN Encryption Cybercrime 107

SecureList

JULY 5, 2021

An attack perpetrated by REvil aka Sodinokibi ransomware gang against Managed Service Providers (MSPs) and their clients was discovered on July 2. REvil ransomware has been advertised on underground forums for three years and it is one of the most prolific RaaS operations. To keep your company protected against ransomware 2.0

Ransomware 140

Ransomware Encryption VPN Software 140

Security Affairs

MARCH 18, 2023

Kaspersky released a new version of the decryptor for the Conti ransomware that is based on the previously leaked source code of the malware. Kaspersky has published a new version of a decryption tool for the Conti ransomware based on previously leaked source code for the Conti ransomware. Request access to this offer here.

Ransomware 81

Ransomware Malware VPN Passwords 81

SecureList

DECEMBER 7, 2021

In the past twelve months, the word “ransomware” has popped up in countless headlines worldwide across both print and digital publications: The Wall Street Journal , the BBC , the New York Times. That is precisely why we have chosen ransomware as our story of the year for Kaspersky’s annual Security Bulletin.

Ransomware 126

Ransomware B2B B2C Government 126

Security Affairs

JULY 15, 2021

SonicWall has issued an urgent security alert to warn customers of “ an imminent ransomware campaing ” targeting EOL equipment. SonicWall has issued an urgent security alert to warn companies of “ an imminent ransomware campaing ” targeting some of its equipment that reached end-of-life (EoL). continues the alert. 34 or 9.0.0.10

Firmware 108

Firmware Ransomware Passwords Mobile 108

Security Affairs

JUNE 23, 2020

CLOP ransomware operators have allegedly hacked IndiaBulls Group , an Indian conglomerate headquartered in Gurgaon, India. CLOP ransomware operators have allegedly hacked the Indian conglomerate IndiaBulls Group , its primary businesses are housing finance, consumer finance, and wealth management. . Pierluigi Paganini.

Hacking 101

Hacking Ransomware Banking Mobile 101

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware 74

Ransomware VPN Cybercrime Advertising 74

Malwarebytes

MARCH 10, 2022

In this February 2022 ransomware review, we go over some the most successful ransomware incidents based on both open source and dark web intelligence. > BlackByte Ransomware Sample hash: 1df11bc19aa52b623bdf15380e3fded56d8eb6fb7b53a2240779864b1a6474ad. Observed since: February 2022 Ransomware note: .<company_name>

Ransomware 73

Ransomware Phishing Accountability Technology 73

Malwarebytes

NOVEMBER 1, 2021

Ransomware attacks, despite dramatically increasing in frequency this summer , remain opaque for many potential victims. It isn’t anyone’s fault, necessarily, since news articles about ransomware attacks often focus on the attack, the suspected threat actors, the ransomware type, and, well, not much else.

Ransomware 115

Ransomware Backups System Administration Cyber Insurance 115

Malwarebytes

JULY 15, 2021

X remote access devices that they have been made aware of an imminent ransomware campaign using stolen credentials. In its report, SonicWall reports that ransomware attacks are being launched against these products using a known vulnerability in the 8.x SSL-VPN 200/2000/400 (EOL 2013/2014) disconnect immediately and reset passwords.

Ransomware 87

Ransomware Firmware VPN Firewall 87

Security Affairs

MARCH 8, 2022

The US FBI warns that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations from multiple US critical infrastructure sectors. “RagnarLocker ransomware actors work as part of a ransomware family, frequently changing obfuscation techniques to avoid detection and prevention.”

Ransomware 83

Ransomware Financial Services Passwords VPN 83

Malwarebytes

MARCH 17, 2021

On March 16, the Federal Bureau of Investigation (FBI) issued a “Flash” alert on PYSA ransomware after an uptick on attacks this month against institutions in the education sector, particularly higher ed, K-12, and seminaries. And this isn’t just limited to ransomware attacks.

Education 107

Education Ransomware Phishing Passwords 107

IT Security Guru

JULY 19, 2021

Although cybercrime as a whole has seen a rise during the pandemic, arguably ransomware has been one of the more successful and lucrative attack types. Our own research report, the State of Encrypted Attacks Report 2020 , found that there had been a 500 per cent rise in ransomware compared to 2019. Consider Zero Trust.

Ransomware 96

Ransomware Digital transformation Antivirus DDOS 96

SecureList

OCTOBER 7, 2021

These days, when speaking of cyberthreats, most people have in mind ransomware, specifically cryptomalware. This roundup spotlights the ransomware Trojan families that most actively attacked businesses in the CIS in H1 2021, and their technical characteristics. Ransomware families at a glance. Note left by the ransomware.

Ransomware 117

Ransomware Encryption Passwords Malware 117

Security Affairs

NOVEMBER 22, 2020

A threat actor has published online a list of one-line exploits to steal VPN credentials from over 49,000 vulnerable Fortinet VPNs. A threat actor, who goes online with the moniker “pumpedkicks,” has leaked online a list of exploits that could be exploited to steal VPN credentials from almost 50,000 Fortinet VPN devices.

VPN 135

VPN Banking Government Hacking 135

Security Affairs

SEPTEMBER 2, 2022

The UNC2165 group has been active since at least 2019, it was mainly observed using the FAKEUPDATES infection chain (aka UNC1543 ) to access the victims’ networks. Previously, the UNC2165 actors also deployed the HADES ransomware. companies. . ” reads the analysis published by the experts.

Hacking 96

Hacking VPN Ransomware Authentication 96

SecureList

MAY 25, 2021

Over the past few years, the ransomware threat landscape has been gradually changing. In some cases, this global trend is just a reflection of the continuous life cycle of threats: old ransomware families shut down and new ones appear and pursue new targets. May 2019: JSWorm. We have been witness to a paradigm shift. Chronology.

Ransomware 106

Ransomware Encryption Malware Energy and Utilities 106

SecureList

MAY 12, 2021

As the world marks the second Anti-Ransomware Day, there’s no way to deny it: ransomware has become the buzzword in the security community. Yet, much of the media attention ransomware gets is focused on chronicling which companies fall prey to it. Part I: Three preconceived ideas about ransomware.

Ransomware 129

Ransomware Encryption Malware Cybercrime 129

Malwarebytes

MAY 28, 2021

On the 14th of May, the Health Service Executive (HSE) , Ireland’s publicly funded healthcare system, fell victim to a Conti ransomware attack, forcing the organization to shut down more than 80,000 affected endpoints and plunging them back to the age of pen and paper. Threat profile: Conti ransomware.

Healthcare 110

Healthcare Ransomware Encryption Passwords 110

Security Affairs

NOVEMBER 19, 2019

Ransomware accounted for over half of all malicious mailings in H1 2019, Troldesh aka Shade being the most popular tool among cybercriminals. The report’s findings reveal that email remains the main method of delivering ransomware, banking Trojans, and backdoors. The revival of ransomware.

Ransomware 69

Ransomware Antivirus Malware Banking 69