Krebs on Security

APRIL 18, 2022

Conti — one of the most ruthless and successful Russian ransomware groups — publicly declared during the height of the COVID-19 pandemic that it would refrain from targeting healthcare providers. But according to Microsoft and an advisory from the U.S. National Security Agency (NSA).

Healthcare 292

Healthcare Ransomware Cybersecurity Malware 292

Schneier on Security

FEBRUARY 11, 2022

It had no documented cyber incident response runbooks or IT recovery plans (apart from documented AD recovery plans) for recovering from a wide-scale ransomware event. Over 30,000 machines were running Windows 7 (out of support since January 2020).

Antivirus 298

Antivirus Hacking Ransomware CISO 298

The Last Watchdog

JUNE 21, 2020

Ransomware is undoubtedly one of the most unnerving phenomena in the cyber threat landscape. Related: What local government can do to repel ransomware Ransomware came into existence in 1989 as a primitive program dubbed the AIDS Trojan that was spreading via 5.25-inch inch diskettes. inch diskettes. FBI spoofs 2012 – 2013.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Threatpost

DECEMBER 28, 2020

From attacks on the UVM Health Network that delayed chemotherapy appointments, to ones on public schools that delayed students going back to the classroom, ransomware gangs disrupted organizations to inordinate levels in 2020.

Ransomware 121

Ransomware Malware Hacking 121

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking 201

Hacking Cybercrime Ransomware Government 201

Security Affairs

DECEMBER 4, 2021

The FBI has revealed that the Cuba ransomware gang breached the networks of at least 49 US critical infrastructure organizations. A flash alert published by the FBI has reported that the Cuba ransomware gang breached the networks of at least 49 US critical infrastructure organizations. ” states the alert.

Ransomware 133

Ransomware Hacking Malware Encryption 133

Security Affairs

AUGUST 19, 2021

Threat actors breached the servers of US Census Bureau on January 11, 2020, exploiting an unpatched Citrix ADC zero-day vulnerability, OIG revealed. The report states that the servers did not provide access to 2020 decennial census networks, this means that the attacker did not interfere with the results of the census.

Hacking 111

Hacking Firewall Accountability Technology 111

Security Affairs

OCTOBER 14, 2021

The popular Google’s VirusTotal scanning service has published an interesting analysis of more than 80 Million ransomware samples. VirusTotal has published its first ransomware activity report based on the analysis of more than 80 million samples that have been uploaded from 140 countries worldwide. percent of the submitted samples.

Ransomware 89

Ransomware Malware Accountability Hacking 89

Security Affairs

NOVEMBER 7, 2020

At least one ransomware operator appears to have exploited the recently patched CVE-2020-14882 vulnerability affecting Oracle WebLogic. At least one ransomware operator appears is exploiting the recently patched CVE-2020-14882 vulnerability in Oracle WebLogic. SecurityAffairs – hacking, CVE-2020-14882).

Ransomware 85

Ransomware Malware Internet Internet 85

Krebs on Security

MAY 11, 2021

The FBI confirmed this week that a relatively new ransomware group known as DarkSide is responsible for an attack that caused Colonial Pipeline to shut down 5,550 miles of pipe , stranding countless barrels of gasoline, diesel and jet fuel on the Gulf Coast. victim that earns $15 billion in annual revenue. Image: colpipe.com.

Ransomware 363

Ransomware Advertising Healthcare Penetration Testing 363

Security Affairs

JUNE 15, 2021

The source code for the Paradise Ransomware has been released on a hacking forum allowing threat actors to develop their customized variant. The source code for the Paradise Ransomware has been released on the hacking forum XSS allowing threat actors to develop their own customized ransomware operation.

Ransomware 117

Ransomware Hacking Encryption Malware 117

Krebs on Security

DECEMBER 13, 2021

The consulting firm PricewaterhouseCoopers recently published lessons learned from the disruptive and costly ransomware attack in May 2021 on Ireland’s public health system. The unusually candid post-mortem found that nearly two months elapsed between the initial intrusion and the launching of the ransomware.

Healthcare 276

Healthcare Ransomware Antivirus Software 276

CyberSecurity Insiders

JULY 7, 2021

Russia is back in news and that too for hacking the Republican National Committee (RNC) last week. APT29 aka Cozy Bear, a hacking group funded by Kremlin is suspected to be behind the attack. However, the good news is that there was not data steal in the incident and that was confirmed by the spokesperson of RNC.

Hacking 133

Hacking Ransomware Cyber Attacks Media 133

Security Affairs

JULY 1, 2020

Xerox Corporation is the last victim of the Maze ransomware operators, hackers have encrypted its files and threaten of releasing them. Maze ransomware operators have breached the systems of the Xerox Corporation and stolen files before encrypting them. billion in revenu e in Q1 2020 and has 27,000 employees across the globe.

Ransomware 97

Ransomware Hacking Encryption Banking 97

Security Affairs

MAY 18, 2021

Researchers from blockchain analysis firm Elliptic estimated that Darkside ransomware gang has made over $90 million from its attacks. Experts from blockchain analysis firm Elliptic estimated that the Darkside ransomware gang has earned over $90 million from ransom payments from its victims since October 2020. million. .

Ransomware 81

Ransomware Malware Hacking Information Security 81

Security Affairs

APRIL 21, 2024

Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments. Like other ransomware gangs, the group has developed a Linux encryptor to target VMware ESXi servers. The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269.

Ransomware 99

Ransomware Encryption Antivirus VPN 99

Krebs on Security

MARCH 25, 2022

prison for his role in at least 13 ransomware attacks that caused losses of approximately $53 million. Prosecutors say the accused also enjoyed a lengthy career of “cashing out” access to hacked bank accounts worldwide. An Estonian man was sentenced today to more than five years in a U.S. Acting on information from U.S.

Ransomware 248

Ransomware Banking Cybercrime Hacking 248

Security Affairs

JANUARY 2, 2021

Below the list of the top stories of 2020. December 21 – SUPERNOVA, a backdoor found while investigating SolarWinds hack. August 2 – Garmin allegedly paid for a decryptor for WastedLocker ransomware. April 27 – Hacking Microsoft Teams accounts with a GIF image. Pierluigi Paganini.

Firewall 104

Firewall VPN Hacking Accountability 104

Security Affairs

MAY 17, 2024

The City of Wichita disclosed a data breach after the ransomware attack that hit the Kansas’s city earlier this month. On May 5th, 2024, the City of Wichita, Kansas, was the victim of a ransomware attack and shut down its network to contain the threat. Wichita is the most populous city in the U.S.

Data breaches 95

Data breaches Ransomware Hacking Cybercrime 95

WIRED Threat Level

DECEMBER 27, 2020

From ransomware schemes to supply chain attacks, this year melded classic hacks with extraordinary circumstances.

Hacking 116

Hacking Ransomware 116

Adam Levin

NOVEMBER 4, 2020

The infamous Maze ransomware gang has announced they will cease operations, effective immediately. . On November 1, the hacking group behind several high profile ransomware attacks in 2020 issued a rambling press release, riddled with spelling errors, on the dark web announcing, “it is officially closed.”.

Ransomware 168

Ransomware Scams Hacking Malware 168

Security Affairs

MARCH 16, 2024

School districts continue to be under attack, schools in Scranton, Pennsylvania, are suffering a ransomware attack. This week, schools in Scranton, Pennsylvania, experienced a ransomware attack, resulting in IT outages. According to the 2020 census, the Scranton School District serves a resident population of 76,997.

Ransomware 100

Ransomware Computers and Electronics Data breaches Hacking 100

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware 92

Ransomware VPN Cybercrime Advertising 92

Krebs on Security

JANUARY 14, 2022

The Russian government said today it arrested 14 people accused of working for “ REvil ,” a particularly aggressive ransomware group that has extorted hundreds of millions of dollars from victim organizations. The FSB said it arrested 14 REvil ransomware members, and searched more than two dozen addresses in Moscow, St.

Ransomware 325

Ransomware Government Media Cybercrime 325

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware 74

Ransomware VPN Cybercrime Advertising 74

Security Affairs

FEBRUARY 12, 2024

Researchers discovered a vulnerability in the code of the Rhysida ransomware that allowed them to develop a decryption tool. Cybersecurity researchers from Kookmin University and the Korea Internet and Security Agency (KISA) discovered an implementation vulnerability in the source code of the Rhysida ransomware.

Ransomware 110

Ransomware Encryption VPN Manufacturing 110

SecureList

MAY 26, 2021

The statistics in this report cover the period from May 2020 to April 2021, inclusive. 56,877 unique users in the EU were attacked by ransomware. Number of EU users attacked by financial malware, May 2020 – April 2021 ( download ). Geography of banking malware attacks in the EU, May 2020 – April 2021 ( download ).

Phishing 131

Phishing Malware Ransomware Adware 131

Security Affairs

SEPTEMBER 18, 2020

Singapore, 09/18/2020 — Group-IB , a global threat hunting and intelligence company headquartered in Singapore, evidenced the transformation of the threat portfolio over the first half of 2020. Another 17 percent contained downloaders, while backdoors and banking Trojans came third with a 16- and 15-percent shares, respectively.

Phishing 101

Phishing Ransomware Spyware Banking 101

SC Magazine

MARCH 18, 2021

Ransomware gangs are evolving their operations at a rapid pace and making off with increasingly large pay days, according to a new report from Palo Alto Networks Unit 42. In 2020 groups were demanding as much as $30 million to unlock a victim’s files and systems. High-end ransoms have gone up significantly too.

Ransomware 97

Ransomware Manufacturing Media Insurance 97

CyberSecurity Insiders

JANUARY 17, 2022

Note 3 -But a hacking group named FIN11 linked to Clop Ransomware Group succeeded in exploiting the vulnerabilities of the legacy file transfer solution provider and managed to steal a sizeable amount of information to demand a ransom in exchange of the stolen data and a decryption key. million with no obligations on a further note.

Data breaches 126

Data breaches Healthcare Ransomware Software 126

Security Affairs

OCTOBER 22, 2020

According to the ENISA Threat Landscape Report 2020, cyberattacks are becoming more sophisticated, targeted, and in many cases undetected. I’m proud to present the ENISA Threat Landscape Report 2020 , the annual report published by the ENISA that provides insights on the evolution of cyber threats for the period January 2019-April 2020.

Cyber threats 100

Cyber threats Digital transformation Advertising IoT 100

CyberSecurity Insiders

OCTOBER 3, 2022

Ferrari, the luxury car maker, was recently hit by a ransomware attack that apparently led to data leak that is now being posted online on an installment basis. NOTE 1- Since the year 2020, RansomEXX has been highly prevalent on the dark web and has mainly targeted companies from the United States and Europe.

Ransomware 125

Ransomware Cryptocurrency Encryption Accountability 125

Security Affairs

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report , which includes data from 791,790 complaints of suspected cybercrimes. Data that emerged from the report are worrisome, in 2020 the reported losses exceeded $4.2 ” reads 2020 Internet Crime Report. billion in losses.

Internet 102

Internet Internet Scams Identity Theft 102

Security Affairs

NOVEMBER 14, 2023

Experts warn of an alarming rise in ransomware operations targeting the energy sector, including nuclear facilities and related research entities. Over the last year, ransomware attackers have targeted energy installations in North America, Asia, and the European Union. Resecurity, Inc.

Ransomware 103

Ransomware Cyber threats Government Hacking 103

Security Affairs

NOVEMBER 25, 2020

Group-IB , a global threat hunting and intelligence company, has presented its annual Hi-Tech Crime Trends 2020/2021 report. In the report, the company examines key shifts in the cybercrime world internationally between H2 2019 and H1 2020 and gives forecasts for the coming year.

Banking 125

Banking Ransomware Phishing Marketing 125

Security Affairs

JANUARY 12, 2021

Security firm Bitdefender released a tool that allows victims of the Darkside ransomware to recover their files without paying the ransom. Good news for the victims of the Darkside ransomware , they could recover their files for free using a tool that was released by the security firm Bitdefender. Pierluigi Paganini.

Ransomware 110

Ransomware Encryption Hacking Information Security 110

CSO Magazine

NOVEMBER 24, 2021

Cybersecurity and threat analysts from Fox-IT (part of NCC Group) have shone a light on the mechanics of ransomware negotiations to help organizations improve the outcome of an attack. Concepts were presented by Pepijn Hack and Zong-Yu Wu at Black Hat Europe 2021 and expanded upon in a detailed NCC Group blog posting shortly after.

Ransomware 134

Ransomware Hacking Cybersecurity 134