Security Affairs

JANUARY 3, 2022

Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses and disruption of the operations? Bloomberg was informed about the payment by two people familiar with the attack. The pipeline allows carrying 2.5

Cyber Attacks 111

Cyber Attacks Ransomware Insurance Hacking 111

Krebs on Security

SEPTEMBER 15, 2021

TTEC , [ NASDAQ: TTEC ], a company used by some of the world’s largest brands to help manage customer support and sales online and over the phone, is dealing with disruptions from a network security incident resulting from a ransomware attack, KrebsOnSecurity has learned. ET: TTEC confirmed a ransomware attack.

Ransomware 333

Ransomware Banking Cryptocurrency Media 333

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. kapuchin0 claims that the leaked code is the first breach of the HelloKitty ransomware. kapuchin0 claims that the leaked code is the first breach of the HelloKitty ransomware.

Cybercrime 118

Cybercrime Ransomware DDOS Encryption 118

Security Affairs

SEPTEMBER 28, 2023

Johnson Controls International suffered a ransomware attack that impacted the operations of the company and its subsidiaries. The company provides HVAC (heating, ventilation, and air conditioning), solutions for building automation, fire and security systems, and components for energy management. ” reported Bleeping Computer. .”

Ransomware 116

Ransomware Insurance Technology Encryption 116

Security Affairs

OCTOBER 15, 2021

A joint cybersecurity advisory published by US agencies revealed that three ransomware attacks on wastewater systems this year. The three facilities hit by ransomware operators are located in the states of Nevada, Maine, and California. The ransomware affected the victim’s SCADA system and backup systems.

Ransomware 93

Ransomware Cyber threats Firmware Backups 93

Security Affairs

MARCH 3, 2021

Cybersecurity firm Qualys seems to have suffered a data breach, threat actors allegedly exploited zero-day flaw in their Accellion FTA server. Cybersecurity firm Qualys is the latest victim of a cyber attack, the company was likely hacked by threat actors that exploited a zero-day vulnerability in their Accellion FTA server.

Ransomware 128

Ransomware Cybersecurity Cyber Attacks Data breaches 128

Security Boulevard

JANUARY 21, 2022

Our thanks to Security BSides London for publishing their tremendous videos from the Security BSides London 2021 Conference on the organization’s YouTube channel. The post Security BSides London 2021 – Bigezy’s ‘Decriminalization Of Ransomware’ appeared first on Security Boulevard.

Ransomware 87

Ransomware Education InfoSec Information Security 87

Security Affairs

DECEMBER 14, 2023

French police arrested a Russian national who is suspected of laundering money resulting from the criminal activity of the Hive ransomware gang. The French authorities arrested in Paris a Russian national who is suspected of laundering criminal proceeds for the Hive ransomware gang. cybersecurity and intelligence authorities.

Ransomware 112

Ransomware Cryptocurrency Cybercrime VPN 112

Security Affairs

OCTOBER 13, 2023

FBI and CISA published a joint Cybersecurity Advisory (CSA) to disseminate IOCs, TTPs, and detection methods associated with AvosLocker ransomware. The joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort aimed at sharing technical details associated with various ransomware operations.

Ransomware 116

Ransomware System Administration Antivirus Malware 116

Herjavec Group

DECEMBER 15, 2021

Needless to say, in 2021 cybersecurity was front and center for individuals, enterprises, and governments alike. Data breaches and cybersecurity threats were at an all-time high this past year. So let’s take a look at the big challenges, priorities, and trends we saw in cybersecurity over the past year.

Cybersecurity 52

Cybersecurity Digital transformation Ransomware Cyber Risk 52

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. FatFace CEO Liz Evans released a statement which said “ On 17th January 2021 FatFace identified some suspicious activity within its IT systems.

Energy and Utilities 120

Energy and Utilities Ransomware Banking Hacking 120

Security Boulevard

DECEMBER 27, 2021

Our thanks to BSides Greenville / BSidesGVL for publishing their Track1 , Track 2 and Track 3 of their well-crafted videos from the BSides Greenville / BSidesGVL 2021 conference on the Organization’s’ YouTube channel.

Ransomware 75

Ransomware Education InfoSec Information Security 75

BH Consulting

JANUARY 11, 2022

From ransomware and scams to security frameworks and employee privacy, our 2021 ‘greatest hits’ show how broad the areas of cybersecurity and data protection can be. There’s plenty of food for thought and perspective for anyone in security leadership or privacy roles in their organisations.

Cybersecurity 59

Cybersecurity Insurance Scams Cyber Risk 59

Security Boulevard

MAY 3, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. The UK Security Service MI5 said 10,000 staff from every UK government department and from important UK industries have been lured by fake LinkedIn profiles.

Ransomware 124

Ransomware Passwords Scams Government 124

Security Affairs

SEPTEMBER 10, 2023

Rhysida Ransomware group added three more US hospitals to the list of victims on its Tor leak site after the PROSPECT MEDICAL attack. Recently the Rhysida ransomware group made the headlines because it announced the hack of Prospect Medical Holdings and the theft of sensitive information from the organization.

Hacking 126

Hacking Ransomware Healthcare Cyber Attacks 126

Security Affairs

JULY 7, 2022

US authorities have issued a joint advisory warning of North Korea-linked APTs using Maui ransomware in attacks against the Healthcare sector. Treasury Department issued a joint advisory that warn of North-Korea-linked threat actors using Maui ransomware in attacks aimed at organizations in the Healthcare sector. Pierluigi Paganini.

Healthcare 122

Healthcare Ransomware Encryption Government 122

Security Affairs

JULY 23, 2022

DoJ seized $500,000 worth of Bitcoin from North Korea-linked threat actors who are behind the Maui ransomware. Department of Justice (DoJ) has seized $500,000 worth of Bitcoin from North Korean threat actors who used the Maui ransomware to target several organizations worldwide. ” reads the announcement published by DoJ.

Ransomware 128

Ransomware Healthcare Cryptocurrency Encryption 128

Security Affairs

AUGUST 5, 2021

ERG SPA, an Italian energy company, reports a minor impact on its operations after the recent ransomware attack conducted by LockBit 2.0 ransomware gang, now the company reported “only a few minor disruptions” for its ICT infrastructure. The crooks will start leaking the stolen data on August 14, 2021, at 00:00:00.

Ransomware 137

Ransomware Media Cyber Attacks Cybersecurity 137

Security Affairs

MAY 31, 2022

Cyber Research Labs reported a rise in ransomware attacks in the second quarter of 2022, small states are more exposed to these attacks. The experts warn of ransomware attacks against government organizations. They observed a total of 48 government organizations from 21 countries that were hit by 13 ransomware attacks in 2022.

Government 138

Government Ransomware Cybercrime Banking 138

Security Affairs

JANUARY 26, 2023

The leak site of the Hive ransomware gang was seized due to an international operation conducted by law enforcement in ten countries. The Tor leak site used by Hive ransomware operators has been seized as part of an international operation conducted by law enforcement in 10 countries. cybersecurity and intelligence authorities.

Ransomware 92

Ransomware VPN Manufacturing Healthcare 92

Security Affairs

JULY 18, 2021

BleepingComputer became aware that the recent wave of attacks targeting vulnerable SonicWall devices was carried out by HelloKitty ransomware operators. SonicWall this week has issued an urgent security alert to warn companies of “ an imminent ransomware campaing ” targeting some of its equipment that reached end-of-life (EoL).

Ransomware 115

Ransomware Firmware Mobile InfoSec 115

Security Affairs

FEBRUARY 28, 2024

healthcare organizations of targeted ALPHV/Blackcat ransomware attacks. A cybersecurity alert published by the FBI, CISA, and the Department of Health and Human Services (HHS) warned U.S. healthcare organizations of targeted attacks conducted by ALPHV/Blackcat ransomware attacks. ” reads the joint advisory.

Healthcare 105

Healthcare Ransomware Government Insurance 105

CyberSecurity Insiders

DECEMBER 24, 2021

2022 Predictions for the Cybersecurity Industry and Advice for Newcomers or Those Working for Small to Medium-Sized Businesses. In 2021, we experienced a rapid evolution to these interactions. Like us, you may be wondering, what will 2022 look like for information security professionals? 2022 Cybersecurity Fundamentals.

Cybersecurity 98

Cybersecurity Ransomware VPN Architecture 98

Security Affairs

MAY 12, 2023

The leak of the source code of the Babuk ransomware allowed 9 ransomware gangs to create their own ransomware targeting VMware ESXi systems. SentinelLabs researchers have identified 10 ransomware families using VMware ESXi lockers based on the source code of the Babuk ransomware that was leaked in 2021.

Ransomware 96

Ransomware Encryption Hacking Cybersecurity 96

Security Affairs

NOVEMBER 6, 2021

The FBI issued a private industry notification (PIN) to warn of ransomware attacks that hit several tribal-owned casinos last year. A private industry notification issued by the FBI’s Cyber Division revealed that ransomware attacks hit several tribal-owned casinos causing millions of dollar losses. Pierluigi Paganini.

Ransomware 114

Ransomware Hacking Cybersecurity Cybercrime 114

Security Affairs

JULY 15, 2021

HelloKitty ransomware gang is using a Linux variant of their malware to target VMware ESXi virtual machine platform. A Linux variant of the HelloKitty ransomware was employed in attacks against VMware ESXi systems. Once the virtual machines are shut down, the ransomware will encrypt .vmdk ” reported BleepingComputer.

Ransomware 143

Ransomware Encryption Malware Hacking 143

Security Affairs

DECEMBER 1, 2021

Sabbath ransomware is a new threat that has been targeting critical infrastructure in the United States and Canada since June 2021. A new ransomware group called Sabbath (aka UNC2190) has been targeting critical infrastructure in the United States and Canada since June 2021. ” reads the post published by Mandiant.

Ransomware 117

Ransomware Hacking Education Encryption 117

Security Affairs

MARCH 23, 2023

Dole Food Company confirmed that threat actors behind the recent ransomware attack had access to employees’ data. Dole reported 2021 revenues of $6.5 In February, the company announced that it has suffered a ransomware attack that impacted its operations. Securities and Exchange Commission (SEC).

Data breaches 84

Data breaches Ransomware Cybersecurity Hacking 84

Security Affairs

JANUARY 22, 2022

The Dutch National Cybersecurity Centre (NCSC) warns organizations of risks associated with cyberattacks exploiting the Log4J vulnerability. The Dutch National Cybersecurity Centre (NCSC) warns organizations to remain vigilant on possible attacks exploiting the Log4J vulnerability. Follow me on Twitter: @securityaffairs and Facebook.

Cybersecurity 95

Cybersecurity Ransomware Risk Internet 95

Security Affairs

JANUARY 11, 2022

Another gang, Night Sky ransomware operation, started exploiting the Log4Shell vulnerability in the Log4j library to gain access to VMware Horizon systems. The Night Sky ransomware operation started exploiting the Log4Shell flaw (CVE-2021-44228) in the Log4j library to gain access to VMware Horizon systems.

Ransomware 99

Ransomware Hacking Internet Internet 99

Security Affairs

OCTOBER 11, 2022

Lockbit ransomware affiliates are compromising Microsoft Exchange servers to deploy their ransomware, experts warn. South-Korean cybersecurity firm AhnLab reported that Lockbit ransomware affiliates are distributing their malware via compromised Microsoft Exchange servers. ransomware. . ransomware. .

Ransomware 126

Ransomware Encryption Malware Hacking 126

Security Affairs

FEBRUARY 12, 2022

CISA, FBI and NSA published a joint advisory warning of ransomware attacks targeting critical infrastructure organizations. Cybersecurity agencies from the U.K., and Australia have published a joint advisory warning of an increased globalised threat of ransomware worldwide in 2021. ” reads the joint advisory.

Ransomware 91

Ransomware Backups Encryption Accountability 91

Security Affairs

FEBRUARY 27, 2024

A BlackCat ransomware attack hit UnitedHealth Group subsidiary Optum causing an outage impacting the Change Healthcare payment exchange platform. A ransomware attack hit the UnitedHealth Group subsidiary Optum leading to an outage impacting the Change Healthcare payment exchange platform. ” reads the Reuters.

Ransomware 90

Ransomware Healthcare Government Technology 90

Security Affairs

APRIL 4, 2023

An ALPHV/BlackCat ransomware affiliate was spotted exploiting vulnerabilities in the Veritas Backup solution. An affiliate of the ALPHV/BlackCat ransomware gang, tracked as UNC4466, was observed exploiting three vulnerabilities in the Veritas Backup solution to gain initial access to the target network. CVSS score: 8.1).

Backups 93

Backups Ransomware Authentication Penetration Testing 93

Security Affairs

DECEMBER 5, 2021

German BSI warns of ransomware attacks over the Christmas and end-of-year holidays, fearing Emotet return and attacks on Microsoft Exchange servers. The German cybersecurity authority BSI warns of ransomware attacks over the Christmas holidays, fearing the return of the Emotet botnet return. ” reads the BSI’s alert.

Ransomware 119

Ransomware Scams Cybersecurity Accountability 119

Security Affairs

JUNE 4, 2021

Threat actors are actively scanning the Internet for VMware vCenter servers affected by a critical remote code execution (RCE) vulnerability tracked as CVE-2021-21985. The CVE-2021-21985 flaw is caused by the lack of input validation in the Virtual SAN ( vSAN ) Health Check plug-in, which is enabled by default in the vCenter Server.

Internet 133

Internet Internet Ransomware Encryption 133

CyberSecurity Insiders

DECEMBER 6, 2021

Like years past, 2021 revealed more of the same for the cybersecurity industry—more breaches, bigger ransomware attacks, higher stakes. These attacks received global attention and spotlighted the need for even more attention on cybersecurity best practices. Understand cybersecurity impacts your bottom line.

Cybersecurity 105

Cybersecurity Ransomware Security Awareness Technology 105