Security Affairs

NOVEMBER 8, 2023

The FBI published a PIN alert warning of ransomware operators compromising third-party vendors and services for initial access to target environments. The FBI continues to observe ransomware operators abusing third-party vendors and services as an attack vector. ” reported the PIN.

Ransomware 106

Ransomware Backups Encryption Phishing 106

Security Affairs

SEPTEMBER 1, 2023

Researchers released a free decryptor for the Key Group ransomware that allows victims to recover their data without paying a ransom. Threat intelligence firm EclecticIQ released a free decryption tool for the Key Group ransomware (aka keygroup777) that allows victims to recover their data without paying a ransom.

Ransomware 112

Ransomware Encryption Backups Malware 112

Malwarebytes

OCTOBER 11, 2023

The Philippine Health Insurance Corporation (PhilHealth), has confirmed that it was unprotected by antivirus software when it was attacked by the Medusa ransomware group in September. EDR can detect an intruder's suspicious activity in advance of them running ransomware, as well as being able to identify the ransomware itself.

Antivirus 100

Antivirus Insurance Ransomware Healthcare 100

Security Affairs

NOVEMBER 13, 2023

The LockBit ransomware group published data allegedly stolen from the aerospace giant Boeing in a recent attack. At the end of October, the Lockbit ransomware group added Boeing to the list of victims on its Tor leak site. At the end of October, the Lockbit ransomware group added Boeing to the list of victims on its Tor leak site.

Ransomware 117

Ransomware Authentication Backups Manufacturing 117

Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. The company said that the ransomware attack took place on Friday night and impacted only one data center in Sweden. The company later confirmed the news of an Akira ransomware attack.

Ransomware 107

Ransomware VPN Government Retail 107

Krebs on Security

SEPTEMBER 30, 2023

Earlier this week, KrebsOnSecurity revealed that the darknet website for the Snatch ransomware group was leaking data about its users and the crime gang’s internal operations. According to a September 20, 2023 joint advisory from the FBI and the U.S. “Experience in backup, increase privileges, mikicatz, network.

Ransomware 224

Ransomware Accountability Cybercrime Backups 224

Malwarebytes

MAY 24, 2023

On Friday May 19, 2023, the German arms producer Rheinmetall acknowledged a cyber-incident at one of it’s subsidiaries in the private sector. The BlackBasta ransomware group has already claimed responsibility for the attack through its leak-site. After the data is copied, the ransomware encrypts files and gives them the ".basta"

Ransomware 87

Ransomware Backups Manufacturing Encryption 87

Security Affairs

OCTOBER 15, 2023

The Alphv ransomware group added the Morrison Community Hospital to its dark web leak site. The ALPHV/BlackCat ransomware group claims to have hacked the Morrison Community Hospital and added it to its dark web Tor leak site. Other ransomware attacks recently hit US hospitals. Threat actors continue to target hospitals.

Ransomware 122

Ransomware Healthcare Data breaches Cyber Attacks 122

Malwarebytes

MARCH 3, 2023

The Pierce County Public Transportation Benefit Area Corporation (Pierce Transit) has fallen victim to a cyberattack using LockBit ransomware. The attack began on February 14, 2023, and required Pierce Transit to implement temporary workarounds, to maintain the service of the transit system which transports around 18,000 people every day.

Ransomware 82

Ransomware Backups Cybercrime Malware 82

SecureWorld News

FEBRUARY 28, 2024

In a coordinated international law enforcement operation on February 19, the notorious LockBit ransomware gang had its Dark Web infrastructure seized by authorities. By co-opting the ransomware group's own communication channels, police aimed to sow doubts in the cybercrime community reliant on LockBit's tools and services.

Cybercrime 86

Cybercrime Ransomware Backups Encryption 86

Malwarebytes

FEBRUARY 19, 2024

For the last two years the absolute worst, most prolific, most globally significant “big game” ransomware gang has been LockBit. This evening its position as ransomware’s biggest beast is suddenly in doubt, following some non-consensual website redecoration at the hands of the UK’s National Crime Agency (NCA).

Ransomware 70

Ransomware Backups Malware Software 70

Thales Cloud Protection & Licensing

DECEMBER 13, 2023

Ransomware Sanctions: Do They Have Any Impact? madhav Thu, 12/14/2023 - 05:37 Ransomware is one of the most high-profile and high-value cybercrimes that organizations need to watch out for. What Can Organizations Do?

Ransomware 77

Ransomware Encryption Backups Accountability 77

Security Affairs

JUNE 17, 2023

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9 Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9

Data breaches 89

Data breaches DDOS Backups Firewall 89

Security Affairs

MARCH 1, 2023

Satellite TV giant Dish Network has confirmed that the recent outage was caused by a ransomware attack, it also disclosed a data breach. Satellite TV giant Dish Network finally admitted that the recent outage was caused by a ransomware attack.

Ransomware 82

Ransomware Data breaches Backups Hacking 82

Security Affairs

FEBRUARY 28, 2023

Antivirus company Bitdefender has released a free decryptor for the recently discovered ransomware family MortalKombat. Good news for the victims of the recently discovered MortalKombat ransomware , the antivirus firm Bitdefender has released a free decryptor that will allow them to recover their file without paying the ransom.

Ransomware 91

Ransomware Antivirus Backups Malware 91

SecureWorld News

JANUARY 19, 2023

That is how James McQuiggan, CISSP, Security Awareness Advocate for KnowBe4, kicked off the recent SecureWorld Remote Sessions webcast titled, "Ransomware, Ransom-war, and Ran-some-where: What We Can Learn When the Hackers Get Hacked." It will be available for viewing through August 2023. He ran-some-where.

Hacking 89

Hacking Backups Ransomware Retail 89

SecureWorld News

MARCH 8, 2023

One of Spain's leading hospitals, Hospital Clinic de Barcelona, was hit by a ransomware attack on Sunday, March 5th, that affected its computer systems and forced the cancellation of thousands of appointments and surgeries. However, it was soon discovered to be linked to the WhiteRabbit ransomware encryptor and to other ransomware attacks.

Ransomware 69

Ransomware Healthcare Backups Cybersecurity 69

Security Affairs

FEBRUARY 8, 2023

Cybersecurity and Infrastructure Security Agency (CISA) released a script to recover VMware ESXi servers infected with ESXiArgs ransomware. Good news for the victims of the recent wave of ESXiArgs ransomware attacks, the U.S. Experts noticed that only a few thousand systems were encrypted worldwide. Then the U.S.

Ransomware 89

Ransomware Encryption Backups Cybersecurity 89

Thales Cloud Protection & Licensing

NOVEMBER 13, 2023

Defending Financial Services Against Fraud in a Shifting Cyber Landscape sparsh Tue, 11/14/2023 - 05:05 As we approach International Fraud Awareness Week during 12-18 November 2023, taking stock of the evolving threat landscape and the vulnerabilities that financial services organizations face is crucial. billion annually.

Financial Services 104

Financial Services Encryption Cybercrime Threat Reports 104

Security Affairs

FEBRUARY 16, 2023

Talos researchers observed a financially motivated threat actor using a new ransomware dubbed MortalKombat and a clipper malware named Laplas. Unlike other ransomware families, MortalKombat did not show any wiper behavior or delete the volume shadow copies on the infected system.

Ransomware 82

Ransomware Cryptocurrency Malware Small Business 82

Security Affairs

MAY 22, 2023

Satellite TV giant Dish Network disclosed a data breach after the February ransomware attack and started notifying impacted individuals. The American satellite broadcast provider Dish Network went offline on February 24, 2023 , the outage impacted Dish.com, Dish Anywhere app, and many other services owned by the company.

Ransomware 83

Ransomware Data breaches Identity Theft Backups 83

Security Affairs

JULY 2, 2023

Illicit Telegram Communities Dismantling of an encrypted network sends shockwaves through organised crime groups across Europe TSMC Says Supplier Hacked After Ransomware Group Claims Attack on Chip Giant Malware Trojanized Super Mario Game Installer Spreads SupremeBot Malware Initial research exposing JOKERSPY Who is 8BASE?

Cybercrime 87

Cybercrime Hacking Ransomware Malware 87

Security Affairs

MAY 9, 2024

Researchers from Juniper Threat Labs reported that threat actors are exploiting recently disclosed Ivanti Connect Secure (ICS) vulnerabilities CVE-2023-46805 and CVE-2024-21887 to drop the payload of the Mirai botnet. The flaw CVE-2023-46805 (CVSS score 8.2) x and Ivanti Policy Secure. “If reads the advisory published by Ivanti.

Authentication 97

Authentication Backups Cyber threats Malware 97

Security Affairs

MAY 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The company announced the closure of the plant on May 12, the response to the incident suggest it was the victim of a ransomware attack. Lacroix plans to resume production on May 22, 2023.

Manufacturing 86

Manufacturing Ransomware Cyber Attacks Backups 86

Security Affairs

MAY 8, 2023

In March 2022, Western Digital was hit by a ransomware attack and in response to the incident, it shut down several of its services. reads the status page of the company on April 2, 2023. reads the status page of the company on April 2, 2023. “We We expect to restore access the week of May 15, 2023.”

Data breaches 78

Data breaches Backups Ransomware Wireless 78

Security Affairs

MARCH 26, 2023

If you want to also receive for free the newsletter with the international press subscribe here.

Data breaches 78

Data breaches DDOS Backups Ransomware 78

Malwarebytes

MAY 16, 2023

The investigation showed that an unauthorized party accessed PharMerica computer systems on March 12-13, 2023, and that this party may have had access to certain personal information. Ransomware group Money Message has claimed responsibility for the attack. How to avoid ransomware Block common forms of entry. Prevent intrusions.

Identity Theft 84

Identity Theft Ransomware Data breaches Passwords 84

Security Affairs

NOVEMBER 20, 2023

“On October 19 th , 2023, Brookfield Global Relocation Services (BGRS) informed the Government of Canada of a breach involving Government of Canada information held by BGRS and SIRVA Canada systems.” We have over 1.5TB of documents leaked + 3 full backups of CRM for branches (eu, na and au) Sirva Worldwide, Inc.

Data breaches 111

Data breaches Government Hacking Backups 111

SecureList

MAY 8, 2024

Ransomware attacks continue to be one of the biggest contemporary cybersecurity threats, affecting organizations and individuals alike on a global scale. As we approach International Anti-Ransomware Day, we have analyzed the major ransomware events and trends. The group itself also has a large affiliate network.

Ransomware 119

Ransomware Encryption Small Business Cybersecurity 119

SecureWorld News

JANUARY 22, 2024

While details remain limited, Microsoft stated that Nobelium, also known as Midnight Blizzard, leveraged a simple password spray attack to compromise an unsecured legacy account back in November 2023. Microsoft is lucky this time, as apparently the gang was searching emails to see what Microsoft was saying about them.

Passwords 101

Passwords Accountability Backups Hacking 101

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

DNS 87

DNS Data breaches Hacking Backups 87

Security Affairs

APRIL 17, 2023

Vice Society ransomware operators have been spotted using a PowerShell tool to exfiltrate data from compromised networks. Palo Alto Unit 42 team identified observed the Vice Society ransomware gang exfiltrating data from a victim network using a custom-built Microsoft PowerShell (PS) script.

Ransomware 92

Ransomware Backups Education Media 92

SecureList

JUNE 26, 2023

That same year saw one of the worst ransomware incidents in history, the Kaseya VSA supply-chain attack. In this report, we have analyzed the key threats to small and medium-sized companies in 2022 and 2023, and provided advice on how to stay safe. Finally, the Trojan can install other malware, such as ransomware.

Cybercrime 97

Cybercrime Phishing Banking Malware 97

The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. What should I be most concerned about – and focus on – in 2024?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

Malwarebytes

APRIL 5, 2023

In a perfect storm of lightning-quick edtech adoption with limited IT support, cybercriminals have seized on the opportunity to launch an unprecedented number of strikes against schools—21 ransomware attacks in January 2023 alone—straining resources and impacting the delivery of critical education services across the US.

Education 63

Education Ransomware Cybersecurity Risk 63

eSecurity Planet

MAY 30, 2024

Ransomware attacks and data breaches make headlines when they shut down huge connected healthcare providers such as Ascension Healthcare or Change Healthcare. 2024 looks like it will only increase the number of affected individuals considering the scale of ransomware attacks from the first half of the year in the USA, Canada, and Australia.

Healthcare 123

Healthcare Cybersecurity Backups Ransomware 123

Digital Shadows

NOVEMBER 1, 2022

As we move towards the end of 2022, now is the time to take a look back at the major trends from the last eleven months and identify what might happen from a cyber threat perspective in 2023. Many groups that have faced law enforcement attention often follow an impactful attack being made against a sensitive target.

Cyber threats 52

Cyber threats Ransomware Media Data breaches 52