2022, Cybercrime, Hacking and Ransomware

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported. The FBI, CISA, HHS, and MS-ISAC have issued a joint Cybersecurity Advisory (CSA) regarding the Black Basta ransomware activity as part of the StopRansomware initiative. ” reads the CSA.

Ransomware

Ransomware Hacking Healthcare Retail

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Emerging in 2007 as a banking trojan, QakBot (a.k.a. Today’s operation is not the first time the U.S. ” The DOJ said it also recovered more than 6.5

Hacking

Hacking Malware Ransomware Government

2023 FBI Internet Crime Report reported cybercrime losses reached $12.5 billion in 2023

Security Affairs

MARCH 7, 2024

The FBI Internet Crime Complaint Center (IC3) 2023 report states that reported cybercrime losses reached $12.5 The 2023 Internet Crime Report published the FBI’s Internet Crime Complaint Center (IC3) reveals that reported cybercrime losses reached $12.5 The figure marks a 22% surge in reported losses compared to 2022.

Cybercrime

Cybercrime Internet Internet Scams

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Blackbasta group claims to have hacked Atlas, one of the largest US oil distributors

Security Affairs

MAY 21, 2024

The Blackbasta extortion group claims to have hacked Atlas, one of the largest national distributors of fuel in the United States. The gang published a series of documents as proof of the hack, including people’s ID cards, data sheets, payroll payment requesters and a picture of the folder exfiltrated from the victim’s systems.

Hacking

Hacking Ransomware Phishing Malware

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

Joseph Steinberg

JUNE 9, 2022

The Tenafly, New Jersey, Public School District has canceled final exams for its high school students after a ransomware cyberattack crippled the district’s computer infrastructure. The ransomware attack on Tenafly’s school system is a reminder of a sad, ironic, reality.

Ransomware

Ransomware Artificial Intelligence Education Cybercrime

Cybercrime gang FIN7 returned and was spotted delivering Clop ransomware

Security Affairs

MAY 20, 2023

Cybercriminal gang FIN7 returned with a new wave of attacks aimed at deploying the Clop ransomware on victims’ networks. The group was spotted deploying the Clop ransomware in opportunistic attacks in April 2023. Then they use OpenSSH and Impacket to move laterally and deploy the Clop ransomware payload.

Cybercrime

Cybercrime Ransomware Security Intelligence Hacking

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

Lockbit ransomware gang claims to have hacked cybersecurity giant Mandiant

Security Affairs

JUNE 6, 2022

LockBit ransomware gang claims to have hacked the cybersecurity firm Mandiant, which is investigating the alleged security breach. Today the LockBit ransomware gang has added the cybersecurity firm Mandiant to the list of victims published on its darkweb leak site. ransomware to evade sanctions. Pierluigi Paganini.

Hacking

Hacking Ransomware Cybersecurity Cybercrime

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

SecureWorld News

MARCH 15, 2023

Alright, how many of you saw a cryptocurrency ad on TV in 2022? The FBI's Internet Crime Complaint Center (IC3) has released its 2022 Internet Crime Report , which reveals the trends and impacts of cybercrime in the United States. However, phishing schemes were not the most costly type of cybercrime in terms of financial losses.

Cybercrime

Cybercrime Scams Cryptocurrency Identity Theft

The source code of Zeppelin Ransomware sold on a hacking forum

Security Affairs

JANUARY 5, 2024

A threat actor announced the sale of the source code and a cracked version of the Zeppelin ransomware builder for $500. Researchers from cybersecurity firm KELA reported that a threat actor announced on a cybercrime forum the sale of the source code and a cracked version of the Zeppelin ransomware builder for $500.

Ransomware

Ransomware Hacking Encryption Malware

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

Microsoft has addressed a zero-day in the Windows Common Log File System (CLFS) actively exploited in ransomware attacks. Microsoft has addressed a zero-day vulnerability, tracked as CVE-2023-28252 , in the Windows Common Log File System (CLFS), which is actively exploited in ransomware attacks.

Cybercrime

Cybercrime Ransomware Education Media

Ransomware activity and network access sales in Q3 2022

Security Affairs

NOVEMBER 1, 2022

Ransomware activity report: Threat actors are selling access to hundreds of organizations, with a cumulative requested price of around $4M. KELA identified around 600 victims by analyzing ransomware actors’ blogs and negotiation portals, data leak sites and public reports. SecurityAffairs – hacking, cybercrime).

Ransomware

Ransomware Cybercrime Hacking Information Security

Lockbit ransomware gang hacked California Department of Finance

Security Affairs

DECEMBER 13, 2022

LockBit ransomware gang hacked the California Department of Finance and threatens to leak data stolen from its systems. The LockBit ransomware gang claims to have stolen 76Gb from the California Department of Finance and is threatening to leak the stolen data if the victims will not pay the ransom by December 24.

Hacking

Hacking Ransomware Cybersecurity Technology

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Security Affairs

DECEMBER 15, 2023

The Snatch ransomware group announced it had hacked the food giant Kraft Heinz, the company is investigating the claims. The Snatch ransomware group claims to have hacked Kraft Heinz in August and on December 14, it added the company to the list of victims on its leak site. ” reads the alert.

Hacking

Hacking Ransomware Computers and Electronics Marketing

Experts link the Black Basta ransomware operation to FIN7 cybercrime gang

Security Affairs

NOVEMBER 3, 2022

Sentinel Labs found evidence that links the Black Basta ransomware gang to the financially motivated hacking group FIN7. Security researchers at Sentinel Labs shared details about Black Basta ‘s TTPs and assess it is highly likely the ransomware operation has ties with FIN7. iso” that exploits a DLL hijacking in calc.exe.”

Cybercrime

Cybercrime Ransomware Antivirus Malware

Ransomware gangs are exploiting CVE-2022-26134 RCE in Atlassian Confluence servers

Security Affairs

JUNE 12, 2022

Ransomware gangs are actively exploiting CVE-2022-26134 remote code execution (RCE) flaw in Atlassian Confluence Server and Data Center. Multiple ransomware groups are actively exploiting the recently disclosed remote code execution (RCE) vulnerability, tracked as CVE-2022-26134 , affecting Atlassian Confluence Server and Data Center.

Ransomware

Ransomware Encryption Malware Hacking

Daixin Team group claimed the hack of North Texas Municipal Water District

Security Affairs

NOVEMBER 28, 2023

The Daixin Team group claims to have hacked the North Texas Municipal Water District (US) and threatened to leak the stolen data. The ransomware gang claims the theft of board meeting minutes, internal project documentation, personnel details, audit reports, and more. The group claims to have stolen a total of 33844 files.

Hacking

Hacking VPN Ransomware Cybercrime

RansomHub Responsible for Christie's Hack, Threatens Data Leak

SecureWorld News

MAY 30, 2024

The world-renowned auction house Christie's has become the latest major corporation to fall victim to a ransomware attack. The cybercrime gang RansomHub has claimed responsibility and is threatening to release "a massive trove of sensitive personal information" belonging wealthy clients of Christie's unless their ransom demand is met.

Identity Theft

Identity Theft Hacking Ransomware Data breaches

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Security Affairs

DECEMBER 1, 2023

The Black Basta ransomware gang infected over 300 victims accumulating ransom payments exceeding $100 million since early 2022. The Black Basta ransomware group has been active since April 2022, like other ransomware operations, it implements a double-extortion attack model. The average ransom payment was $1.2

Ransomware

Ransomware Retail Malware Insurance

Electronic prescription provider MediSecure impacted by a ransomware attack

Security Affairs

MAY 16, 2024

Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate from a third-party vendor. The company was forced to shut down its website and phone lines following a cyber attack, but it did not mention a ransomware attack. .” ” reported ABC. million customers. million customers.

Ransomware

Ransomware Data breaches Government Insurance

New ransomware trends in 2022

SecureList

MAY 11, 2022

Ahead of the Anti-Ransomware Day, we summarized the tendencies that characterize ransomware landscape in 2022. This year, ransomware is no less active than before: cybercriminals continue to threaten nationwide retailers and enterprises , old variants of malware return while the new ones develop.

Ransomware

Ransomware Encryption Malware Cybercrime

Ransomware attacks hit 105 US local governments in 2022

Security Affairs

JANUARY 2, 2023

In 2022, ransomware attacks targeted 105 state or municipal governments or agencies in the US, reads a report published by Emsisoft. ” The ransomware attack against local governments resulted in data theft in at least 27 of the 105 incidents (26 percent). “Early ransomware attacks were simple and mostly automated.

Government

Government Ransomware Healthcare Education

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. In their online statement about the hack (updated on Feb. Image: Ke-la.com. ” On Jan. “The company pay $1.35

Hacking

Hacking Media Ransomware Accountability

LockBit ransomware gang claims the hack of Continental automotive group

Security Affairs

NOVEMBER 3, 2022

The LockBit ransomware group claimed to have hacked the multinational automotive group Continental and threatens to leak stolen data. LockBit ransomware gang announced to have hacked the German multinational automotive parts manufacturing company Continental. SecurityAffairs – hacking, Lockbit). Pierluigi Paganini.

Hacking

Hacking Ransomware Manufacturing Technology

Who Wrote the ALPHV/BlackCat Ransomware Strain?

Krebs on Security

JANUARY 28, 2022

In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV (a.k.a. “ BlackCat “), considered to be the first professional cybercrime group to create and use a ransomware strain written in the Rust programming language. Image: Varonis. ” Meanwhile, the U.S.

Ransomware

Ransomware Accountability Cybercrime Malware

Cisco was hacked by the Yanluowang ransomware gang

Security Affairs

AUGUST 10, 2022

Cisco discloses a security breach, the Yanluowang ransomware group breached its corporate network in late May and stole internal data. Cisco disclosed a security breach, the Yanluowang ransomware group breached its corporate network in late May and stole internal data. yanluowang ransomware has posted #Cisco to its leaksite.

Ransomware

Ransomware Hacking VPN Phishing

Stormous ransomware gang claims to have hacked Coca-Cola

Security Affairs

APRIL 26, 2022

The Stormous ransomware gang claims to have hacked the multinational beverage corporation Coca-Cola Company. The Stormous ransomware gang announced with a post on its leak site to have hacked the multinational beverage corporation Coca-Cola Company. we hacked some of their servers and went over (161G) !

Hacking

Hacking Ransomware Cybercrime Cybersecurity

Law enforcement agencies identified LockBit ransomware admin and sanctioned him

Security Affairs

MAY 7, 2024

The FBI, UK National Crime Agency, and Europol have unmasked the identity of the admin of the LockBit ransomware operation, aka ‘LockBitSupp’ and ‘putinkrab’ , and issued sanctions against him. The FBI, UK National Crime Agency, and Europol revealed the identity of the admin of the LockBit operation and sanctioned him.

Ransomware

Ransomware Cybercrime Healthcare Encryption

Lockbit ransomware gang claims to have stolen data from Boeing

Security Affairs

OCTOBER 27, 2023

The Lockbit ransomware gang claims to have hacked the aerospace manufacturer and defense contractor Boeing and threatened to leak the stolen data. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022). In 2022, Boeing recorded $66.61 ransomware ??????: ” ?????????:

Ransomware

Ransomware Manufacturing InfoSec Hacking

Akira ransomware targets Finnish organizations

Security Affairs

JANUARY 13, 2024

The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. The Finish National Cybersecurity Center (NCSC-FI) reported an increase in Akira ransomware attacks, targeting organizations in the country. concludes the alert.

Ransomware

Ransomware Backups VPN Authentication

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

Cuba ransomware gang received more than $60 million in ransom payments related to attacks against 100 entities worldwide as of August 2022. The threat actors behind the Cuba ransomware (aka COLDDRAW, Tropical Scorpius ) have demanded over 145 million U.S. “Since spring 2022, Cuba ransomware actors have expanded their TTPs.

Ransomware

Ransomware Financial Services Manufacturing Healthcare

French authorities arrested a Russian national for his role in the Hive ransomware operation

Security Affairs

DECEMBER 14, 2023

French police arrested a Russian national who is suspected of laundering money resulting from the criminal activity of the Hive ransomware gang. The French authorities arrested in Paris a Russian national who is suspected of laundering criminal proceeds for the Hive ransomware gang. anti-cybercrime (Ofac).”

Ransomware

Ransomware Cryptocurrency Cybercrime VPN

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. technology companies during the summer of 2022. stole at least $800,000 from at least five victims between August 2022 and March 2023. 9, 2024, U.S.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Ransomware gang Money Message claims to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International). Ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International). MSI is headquartered in Taipei, Taiwan.

Hacking

Hacking Ransomware Manufacturing Education

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. SecurityAffairs – hacking, FBI). To nominate, please visit:?.

Cybercrime

Cybercrime Education Accountability Phishing

ENISA: Ransomware became a prominent threat against the transport sector in 2022

Security Affairs

MARCH 22, 2023

The report covers incidents in aviation, maritime, railway, and road transport industries between January 2021 and October 2022. During the reporting period, ransomware was the most prominent threat against the sector in 2022. The researchers pointed out that the ransomware attacks doubled compared to the previous year.

Ransomware

Ransomware DDOS Cyber threats Phishing

Play ransomware gang hit Dutch shipping firm Royal Dirkzwager

Security Affairs

MARCH 19, 2023

Dutch maritime logistics company Royal Dirkzwager suffered a ransomware attack, the company was hit by the Play ransomware gang. The Play ransomware group hit the Dutch maritime logistics company Royal Dirkzwager. Company CEO Joan Blaas said that the ransomware attack did not impact the operations of the company.

Ransomware

Ransomware Cybercrime Hacking Cyber Attacks

Black Basta gang claims the hack of the UK water utility Southern Water

Security Affairs

JANUARY 23, 2024

The Black Basta ransomware gang claimed to have hacked the UK water utility Southern Water, a major player in the UK water industry. The Black Basta ransomware group added Southern Water to the list of victims on its Tor data leak site and threatened to leak the stolen data on February 29, 2024.

Hacking

Hacking Encryption Ransomware Insurance

Carbanak malware returned in ransomware attacks

Security Affairs

DECEMBER 26, 2023

Researchers at NCC Group reported that in November they observed the return of the infamous banking malware Carbanak in ransomware attacks. The cybersecurity firm NCC Group reported that in November the banking malware Carbanak was observed in ransomware attacks.

Malware

Malware Ransomware Banking Healthcare

Experts warn of ransomware attacks against government organizations of small states

Security Affairs

MAY 31, 2022

Cyber Research Labs reported a rise in ransomware attacks in the second quarter of 2022, small states are more exposed to these attacks. The experts warn of ransomware attacks against government organizations. They observed a total of 48 government organizations from 21 countries that were hit by 13 ransomware attacks in 2022.

Government

Government Ransomware Cybercrime Banking

FBI Hacker Dropped Stolen Airbus Data on 9/11

Krebs on Security

SEPTEMBER 13, 2023

In December 2022, KrebsOnSecurity broke the news that a cybercriminal using the handle “ USDoD ” had infiltrated the FBI ‘s vetted information sharing network InfraGard , and was selling the contact information for all 80,000 members. But on Sept. defense contractors. USDoD’s avatar used to be the seal of the U.S.

Cybercrime

Cybercrime Passwords Authentication Malware

Ex-members of the Conti ransomware gang target Ukraine

Security Affairs

SEPTEMBER 8, 2022

Some members of the Conti ransomware gang were involved in financially motivated attacks targeting Ukraine from April to August 2022. UAC-0098 historically delivered the IcedID trojan to achieve an initial compromise to the target networks before deploying human-operated ransomware. SecurityAffairs – hacking, Conti ransomware).

Ransomware

Ransomware Cybercrime Government Media

A cracked copy of Brute Ratel post-exploitation tool leaked on hacking forums

Security Affairs

SEPTEMBER 29, 2022

The Brute Ratel post-exploitation toolkit has been cracked and now is available in the underground hacking and cybercrime communities. Threat actors have cracked the Brute Ratel C4 (BRC4) post-exploitation toolkit and leaked it for free in the cybercrime underground. SecurityAffairs – hacking, Brute Ratel). in, and Xss[.]is,

Hacking

Hacking Cybercrime Ransomware Antivirus

New ransomware trends in 2023

SecureList

MAY 11, 2023

Ransomware keeps making headlines. In 2022, Kaspersky solutions detected over 74.2M attempted ransomware attacks which was 20% more than in 2021 (61.7M). In 2022, Kaspersky solutions detected over 74.2M attempted ransomware attacks which was 20% more than in 2021 (61.7M). We named it RedAlert/N13V.

Ransomware

Ransomware Malware Architecture Telecommunications

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Webinars

Trending Sources

2023 FBI Internet Crime Report reported cybercrime losses reached $12.5 billion in 2023

Webinars

Blackbasta group claims to have hacked Atlas, one of the largest US oil distributors

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

Cybercrime gang FIN7 returned and was spotted delivering Clop ransomware

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Lockbit ransomware gang claims to have hacked cybersecurity giant Mandiant

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

The source code of Zeppelin Ransomware sold on a hacking forum

Cybercrime group exploits Windows zero-day in ransomware attacks

Ransomware activity and network access sales in Q3 2022

Lockbit ransomware gang hacked California Department of Finance

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Experts link the Black Basta ransomware operation to FIN7 cybercrime gang

Ransomware gangs are exploiting CVE-2022-26134 RCE in Atlassian Confluence servers

Daixin Team group claimed the hack of North Texas Municipal Water District

RansomHub Responsible for Christie's Hack, Threatens Data Leak

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Electronic prescription provider MediSecure impacted by a ransomware attack

New ransomware trends in 2022

Ransomware attacks hit 105 US local governments in 2022

Red Cross Hack Linked to Iranian Influence Operation?

LockBit ransomware gang claims the hack of Continental automotive group

Who Wrote the ALPHV/BlackCat Ransomware Strain?

Cisco was hacked by the Yanluowang ransomware gang

Stormous ransomware gang claims to have hacked Coca-Cola

Law enforcement agencies identified LockBit ransomware admin and sanctioned him

Lockbit ransomware gang claims to have stolen data from Boeing

Akira ransomware targets Finnish organizations

Cuba Ransomware received over $60M in Ransom payments as of August 2022

French authorities arrested a Russian national for his role in the Hive ransomware operation

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Money Message ransomware group claims to have hacked IT giant MSI

FBI: Compromised US academic credentials available on various cybercrime forums

ENISA: Ransomware became a prominent threat against the transport sector in 2022

Play ransomware gang hit Dutch shipping firm Royal Dirkzwager

Black Basta gang claims the hack of the UK water utility Southern Water

Carbanak malware returned in ransomware attacks

Experts warn of ransomware attacks against government organizations of small states

FBI Hacker Dropped Stolen Airbus Data on 9/11

Ex-members of the Conti ransomware gang target Ukraine

A cracked copy of Brute Ratel post-exploitation tool leaked on hacking forums

New ransomware trends in 2023

Stay Connected