Security Affairs

OCTOBER 13, 2023

FBI and CISA published a joint Cybersecurity Advisory (CSA) to disseminate IOCs, TTPs, and detection methods associated with AvosLocker ransomware. The joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort aimed at sharing technical details associated with various ransomware operations.

Ransomware 118

Ransomware System Administration Antivirus Malware 118

Security Affairs

FEBRUARY 28, 2023

Antivirus company Bitdefender has released a free decryptor for the recently discovered ransomware family MortalKombat. Good news for the victims of the recently discovered MortalKombat ransomware , the antivirus firm Bitdefender has released a free decryptor that will allow them to recover their file without paying the ransom.

Ransomware 91

Ransomware Antivirus Backups Malware 91

Security Affairs

OCTOBER 17, 2023

What is the impact of ransomware on organizations? According to Statista.com, the impact of cybercrime is expected to reach almost $13 trillion this year. Based on Ransomlooker, a free Cybernews tool for monitoring the dark web and other hidden areas of the internet, 64% of organizations have already suffered from a ransomware attack.

Social Engineering 114

Social Engineering Ransomware Engineering Phishing 114

Security Affairs

JANUARY 6, 2023

Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware allowing its victims to restore their data for free. Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware , which can allow victims of the group to restore their data for free. SecurityAffairs – hacking, ransomware).

Ransomware 96

Ransomware Antivirus Encryption Backups 96

Security Affairs

MAY 9, 2023

Researchers warn of a new ransomware family called CACTUS that exploits known vulnerabilities in VPN appliances to gain initial access to victims’ networks. The new ransomware operation has been active since March 2023, despite the threat actors use a double-extortion model, their data leak site has yet to be discovered.

Ransomware 76

Ransomware VPN Antivirus Encryption 76

Security Affairs

MARCH 3, 2023

Cybersecurity and Infrastructure Security Agency (CISA) is warning of the capabilities of the recently emerged Royal ransomware. The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars. ” reads the alert.

Ransomware 91

Ransomware Healthcare Antivirus Encryption 91

Security Affairs

JANUARY 16, 2023

Antivirus firm Avast released a free decryptor for the BianLian ransomware family that allows victims to recover locked files. Security firm Avast has released a free decryptor for the BianLian ransomware to allow victims of the malware to recover locked files. ” reads the post published by Avast. anabolic.exe.

Ransomware 92

Ransomware Malware Antivirus Encryption 92

The Last Watchdog

JUNE 21, 2020

Ransomware is undoubtedly one of the most unnerving phenomena in the cyber threat landscape. Numerous strains of this destructive code have been the front-page news in global computer security chronicles for almost a decade now, with jaw-dropping ups and dramatic downs accompanying its progress. inch diskettes. inch diskettes.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

NOVEMBER 22, 2020

. “Two Romanian suspects have been arrested yesterday for allegedly running the CyberSeal and Dataprotector crypting services to evade antivirus software detection.” The pair also operated the Cyberscan service which allowed their clients to test their malware against antivirus tools. ” continues the press release.

Malware 133

Malware Antivirus Cybercrime Software 133

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. Pierluigi Paganini.

Ransomware 99

Ransomware DDOS Passwords Backups 99

Security Affairs

MAY 4, 2022

A security researcher discovered that samples of Conti, REvil, LockBit ransomware were vulnerable to DLL hijacking. Endpoint protection systems and or antivirus can potentially be killed prior to executing malware, but this method cannot as theres nothing to kill the DLL just lives on disk waiting. Pierluigi Paganini.

Ransomware 104

Ransomware Antivirus Malware Encryption 104

Security Affairs

AUGUST 3, 2020

Last week, the Minister of Internal Affairs of Belarus announced the arrest of a 31-year-old man that is accused of distributing the infamous GandCrab ransomware. Last week, the Minister of Internal Affairs of Belarus announced the arrest of a man on charges of distributing the infamous GandCrab ransomware.

Ransomware 118

Ransomware Advertising Malware Hacking 118

Security Affairs

MAY 4, 2023

The City of Dallas, Texas, was hit by a ransomware attack that forced it to shut down some of its IT systems. The IT systems at the City of Dallas, Texas, have been targeted by a ransomware attack. However, CBS News Texas obtained an image the ransomware note dropped by the malware on the infected systems. Source J.D.

Ransomware 93

Ransomware Healthcare Education Encryption 93

Security Affairs

AUGUST 27, 2022

Trend Micro researchers warn of a new ransomware family called Agenda, which has been used in attacks on organizations in Asia and Africa. Trend Micro researchers recently discovered a new piece of targeted ransomware, tracked as Agenda, that was written in the Go programming language. ” reads the report published by Trend Micro.

Ransomware 97

Ransomware Encryption Accountability Antivirus 97

Security Affairs

OCTOBER 26, 2021

The FBI published a flash alert to warn of the activity of the Ranzy Locker ransomware that had already compromised tens of US companies. The FBI published a flash alert to warn of Ranzy Locker ransomware operations that had already compromised at least 30 US companies this year. SecurityAffairs – hacking, Ranzy Locker ransomware).

Ransomware 130

Ransomware Firmware Antivirus Accountability 130

Security Affairs

JANUARY 6, 2023

The Saint Gheorghe Recovery Hospital in Romania suffered a ransomware attack in December that is still impacting medical activity. The Saint Gheorghe Recovery Hospital in Botoşani, in northeastern Romania, was hit by a ransomware attack in December that is still impacting medical operations. Pierluigi Paganini.

Ransomware 83

Ransomware Antivirus Media Encryption 83

Security Affairs

JANUARY 7, 2021

The Ryuk ransomware had a disruptive impact on multiple industries around the world, operators already earned more than $150 million. The Ryuk ransomware gang is one of the most prolific criminal operations that caused destruction in multiple industries around the world. SecurityAffairs – hacking, Ryuk ransomware).

Ransomware 129

Ransomware Cryptocurrency Antivirus Banking 129

Security Affairs

MARCH 18, 2023

ransomware gang. ransomware. “The Federal Bureau of Investigation (FBI), CISA, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) has released a joint cybersecurity advisory (CSA), #StopRansomware: LockBit 3.0. ransomware. ransomware as recently as March 2023.” “LockBit 3.0

Ransomware 82

Ransomware Penetration Testing Encryption Accountability 82

Security Affairs

MARCH 19, 2020

CERT France is warning of a new wave of attacks using Pysa ransomware (Mespinoza) that is targeting local governments. CERT France cyber-security agency is warning about a new wave of ransomware attack that is targeting the networks of local government authorities. ” reads the issued by French CERT.

Government 107

Government Ransomware Encryption Penetration Testing 107

Security Affairs

JULY 3, 2021

A supply attack by REvil ransomware operators against Kaseya VSA impacted multiple managed service providers (MSPs) and their clients. A new supply chain attack made the headlines, this afternoon, the REvil ransomware gang hit the cloud-based MSP platform impacting MSPs and their customers. ” continues the Kaseya’s notice.

Ransomware 128

Ransomware Antivirus Software Encryption 128

Security Affairs

FEBRUARY 14, 2022

The US Federal Bureau of Investigation (FBI) said that the BlackByte ransomware gang has breached at least three organizations from US critical infrastructure sectors. Secret Service (USSS) to provide information on BlackByte ransomware. ” reads the advisory.

Ransomware 90

Ransomware Accountability Firmware Antivirus 90

Security Affairs

MARCH 17, 2021

The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the US and UK. The FBI has issued Tuesday an alert to warn about an increase in PYSA ransomware attacks against education institutions in the United States and the United Kingdom. The malicious code appended the extension .

Education 95

Education Ransomware Encryption Antivirus 95

Security Affairs

FEBRUARY 21, 2023

Recently emerged HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost. The HardBit ransomware group first appeared on the threat landscape in October 2022, but unlike other ransomware operations, it doesn’t use a double extortion model at this time. Very important!

Insurance 81

Insurance Ransomware Cyber Insurance Malware 81

Security Affairs

SEPTEMBER 29, 2022

The Brute Ratel post-exploitation toolkit has been cracked and now is available in the underground hacking and cybercrime communities. Threat actors have cracked the Brute Ratel C4 (BRC4) post-exploitation toolkit and leaked it for free in the cybercrime underground. On 13 September 2022, an archive file called “bruteratel_1.2.2.Scandinavian_Defense.tar.gz”

Hacking 104

Hacking Cybercrime Ransomware Antivirus 104

Security Affairs

DECEMBER 12, 2021

. “A Russian national was sentenced today to 48 months in prison for operating a “crypting” service used to conceal the Kelihos malware from antivirus software, which enabled hackers to systematically infect approximately hundreds of thousands of victim computers around the world with malicious software, including ransomware.”

Antivirus 87

Antivirus Malware Cybercrime Cyber threats 87

Security Affairs

NOVEMBER 19, 2019

Ransomware accounted for over half of all malicious mailings in H1 2019, Troldesh aka Shade being the most popular tool among cybercriminals. To bypass antivirus systems, hackers send out malicious emails in non-working hours with delayed activation. The revival of ransomware. rar archive files. Dangerous email.

Ransomware 71

Ransomware Antivirus Malware Banking 71

Security Affairs

OCTOBER 11, 2020

ransomware displays ransom note in innovative way Carnival confirms data breach as a result of the August ransomware attack Google enhances malware protection for accounts enrolled in Advanced Protection Program (APP) Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns. Pierluigi Paganini.

Advertising 88

Advertising Antivirus Data privacy Ransomware 88

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. The ransomware attack was said to be executed on 17th January 2021 and over 200Gb of data was exfiltrated. More and More Ransomware Attacks. All very sound advice.

Energy and Utilities 122

Energy and Utilities Ransomware Banking Hacking 122

Spinone

OCTOBER 10, 2019

Hacking Vision Hacking Vision is a cybersecurity blog with a vision to bring a community of white hat security experts together to learn and gain knowledge. In this blog, you can find detailed info about ransomware protection, wireless security, and much more. Their main focus is on cybercrime investigations.

Cybersecurity 56

Cybersecurity IoT Antivirus Education 56

Security Affairs

APRIL 13, 2022

The company also identified one of the perpetrators a man named Denis Malikov, involved in the development of a ZLoader component used to deliver ransomware. ” Over time, Zloader operators began offering malware as a service, the malware was used to distribute multiple ransomware, including Ryuk. Zeus OpenSSL).

Banking 116

Banking Malware Telecommunications Antivirus 116

SecureWorld News

JANUARY 28, 2021

This is a unique and new approach to effectively disrupt the activities of the facilitators of cybercrime.". EMOTET gained notoriety for being one of the most professional and longest lasting cybercrime services to exist. Most antivirus programs look for known malware codes, making a code change difficult to be detected.

Cybercrime 52

Cybercrime Malware Antivirus Banking 52

Security Affairs

OCTOBER 31, 2022

Reflecting on the Wannacry ransomware attack, which is the lesson learnt e why most organizations are still ignoring it. The spread of this ransomware was considered to be the worst cyber attack in terms of contamination rate and scope, putting public offices and companies (especially healthcare facilities) out of operation.

Malware 99

Malware Computers and Electronics Encryption Ransomware 99

Security Affairs

AUGUST 2, 2022

ransomware-as-a-service (RaaS) operation abusing the Windows Defender command line tool MpCmdRun.exe to decrypt and load Cobalt Strike payloads. “Importantly, tools that should receive careful scrutiny are any that either the organization or the organization’s security software have made exceptions for.

Antivirus 98

Antivirus Software Hacking Ransomware 98

Security Affairs

NOVEMBER 26, 2021

Babadeda is able to bypass antivirus solutions. According to the researchers, this crypto-malware was recently employed in several campaigns to deliver information stealers, RATs, and ransomware like LockBit. Threat actors are attempting to exploit the booming market for NFTs and crypto games.

Cryptocurrency 123

Cryptocurrency Malware Antivirus Phishing 123

Security Affairs

AUGUST 24, 2020

The attackers used Dharma ransomware and a mix of publicly available tools to target companies in Russia, Japan, China, and India. Group-IB researchers have recently observed increased activities around Dharma ransomware distribution. All the affected organizations had hosts with Internet-facing RDP and weak credentials.

Threat Detection 87

Threat Detection Ransomware Advertising Cybercrime 87

Security Affairs

SEPTEMBER 7, 2020

Recent spam campaigns used messages with malicious Word documents, or links to them, pretending to be an invoice, shipping information, COVID-19 information , resumes, financial documents, or scanned documents. Generally speaking, removal/cleaning by antivirus is not a sufficient guarantee. Send the samples (.doc

Malware 113

Malware Advertising Antivirus Banking 113

SecureList

MAY 11, 2023

Ransomware keeps making headlines. attempted ransomware attacks which was 20% more than in 2021 (61.7M). attempted ransomware attacks which was 20% more than in 2021 (61.7M). Although early 2023 saw a slight decline in the number of ransomware attacks, they were more sophisticated and better targeted.

Ransomware 116

Ransomware Malware Architecture Telecommunications 116