Backups, Cybercrime, Manufacturing and Ransomware

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported. The FBI, CISA, HHS, and MS-ISAC have issued a joint Cybersecurity Advisory (CSA) regarding the Black Basta ransomware activity as part of the StopRansomware initiative. The average ransom payment was $1.2

Ransomware

Ransomware Hacking Healthcare Retail

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” ” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. ” reads the message published on the leak site.

Manufacturing

Manufacturing Ransomware Engineering Hacking

8Base ransomware operators use a new variant of the Phobos ransomware

Security Affairs

NOVEMBER 19, 2023

8Base ransomware operators were observed using a variant of the Phobos ransomware in a recent wave of attacks. Cisco Talos researchers observed 8Base ransomware operators using a variant of the Phobos ransomware in recent attacks. The ransomware component is then decrypted and loaded into the SmokeLoader process’ memory.

Ransomware

Ransomware Encryption Backups Manufacturing

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Experts link Raspberry Robin Malware to Evil Corp cybercrime gang

Security Affairs

SEPTEMBER 2, 2022

Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers discovered similarities between a component used in the Raspberry Robin malware and a Dridex malware loader, which was part of the malicious operations of the cybercrime gang Evil Corp.

Cybercrime

Cybercrime Malware Backups Manufacturing

Rheinmetall attacked by BlackBasta ransomware

Malwarebytes

MAY 24, 2023

The BlackBasta ransomware group has already claimed responsibility for the attack through its leak-site. A spokesman for the Central and Contact Point Cybercrime (ZAC NRW) at the Cologne public prosecutor's office confirmed corresponding knowledge of an incident in the early evening. How to avoid ransomware Block common forms of entry.

Ransomware

Ransomware Backups Manufacturing Encryption

LockBit ransomware gang leaked data stolen from Boeing

Security Affairs

NOVEMBER 13, 2023

The LockBit ransomware group published data allegedly stolen from the aerospace giant Boeing in a recent attack. The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022).

Ransomware

Ransomware Authentication Backups Manufacturing

FBI confirmed that JBS was hit by the REvil ransomware gang

Security Affairs

JUNE 3, 2021

The US FBI announced that REvil ransomware gang (also known as Sodinokibi) is behind the attack that hit JBS Foods. The company’s backup servers were not affected, and it is actively working with an Incident Response firm to restore its systems as soon as possible.” SecurityAffairs – hacking, ransomware). Pierluigi Paganini.

Ransomware

Ransomware Cybercrime Backups Manufacturing

NCR was the victim of BlackCat/ALPHV ransomware gang

Security Affairs

APRIL 16, 2023

NCR was the victim of the BlackCat/ALPHV ransomware gang, the attack caused an outage on the company’s Aloha PoS platform. It manufactures self-service kiosks, point-of-sale terminals, automated teller machines, check processing systems, and barcode scanners. the fashion giant Moncler and the Swissport.

Ransomware

Ransomware Manufacturing Backups Education

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Security Affairs

JULY 5, 2023

RedEnergy is a sophisticated stealer-as-a-ransomware that was employed in attacks targeting energy utilities, oil, gas, telecom, and machinery sectors. Zscaler ThreatLabz researchers discovered a new Stealer-as-a-Ransomware named RedEnergy used in attacks against energy utilities, oil, gas, telecom, and machinery sectors.

Energy and Utilities

Energy and Utilities Ransomware Backups Malware

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

The FBI published a flash alert to warn of the activity of the Ranzy Locker ransomware that had already compromised tens of US companies. The FBI published a flash alert to warn of Ranzy Locker ransomware operations that had already compromised at least 30 US companies this year. SecurityAffairs – hacking, Ranzy Locker ransomware).

Ransomware

Ransomware Firmware Antivirus Accountability

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. Pierluigi Paganini.

Ransomware

Ransomware DDOS Passwords Backups

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

Security Affairs

OCTOBER 27, 2022

DEV-0950 group used Clop ransomware to encrypt the network of organizations previously infected with the Raspberry Robin worm. Microsoft has discovered recent activity that links the Raspberry Robin worm to human-operated ransomware attacks. . The final-stage malware was the Clop ransomware.

Ransomware

Ransomware Malware Data collection Encryption

City of Dallas shut down IT services after ransomware attack

Security Affairs

MAY 4, 2023

The City of Dallas, Texas, was hit by a ransomware attack that forced it to shut down some of its IT systems. The IT systems at the City of Dallas, Texas, have been targeted by a ransomware attack. However, CBS News Texas obtained an image the ransomware note dropped by the malware on the infected systems. Source J.D.

Ransomware

Ransomware Healthcare Education Encryption

Avaddon ransomware campaign prompts warnings from FBI, ACSC

Malwarebytes

MAY 11, 2021

Both the Australian Cyber Security Centre (ACSC) and the US Federal Bureau of Investigation (FBI) have issued warnings about an ongoing cybercrime campaign that is using Avaddon ransomware. In a separate advisory (pdf) , the ACSC says it is also aware of an ongoing ransomware campaign using the Avaddon Ransomware malware.

Ransomware

Ransomware VPN Encryption Cybercrime

Could You Be a Ransomware Target? Here’s What Attackers Look For

eSecurity Planet

SEPTEMBER 22, 2021

Ransomware is one of the fastest-growing and most destructive cyber threats today. Cybersecurity researchers largely agree that ransomware growth has been astronomical; the only question is by how much. Given how high profile ransomware attacks have become, you may be wondering if you, too, could become a target. Valuable Data.

Ransomware

Ransomware Risk Backups Education

From Caribbean shores to your devices: analyzing Cuba ransomware

SecureList

SEPTEMBER 11, 2023

Introduction Knowledge is our best weapon in the fight against cybercrime. Cuba ransomware gang Cuba data leak site The group’s offensives first got on our radar in late 2020. Geographic distribution of Cuba victims Ransomware The Cuba ransomware is a single file without additional libraries.

Ransomware

Ransomware Encryption Malware DDOS

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

Security Affairs

MAY 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. The company earned $770 million in 2022.

Manufacturing

Manufacturing Ransomware Cyber Attacks Backups

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

Security Affairs

AUGUST 13, 2022

The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI are warning of Zeppelin ransomware attacks. The US Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have published a joint advisory to warn of Zeppelin ransomware attacks. The ransomware can be deployed as a

Ransomware

Ransomware Encryption Firmware Backups

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition

Security Affairs

JULY 2, 2023

Illicit Telegram Communities Dismantling of an encrypted network sends shockwaves through organised crime groups across Europe TSMC Says Supplier Hacked After Ransomware Group Claims Attack on Chip Giant Malware Trojanized Super Mario Game Installer Spreads SupremeBot Malware Initial research exposing JOKERSPY Who is 8BASE?

Cybercrime

Cybercrime Hacking Ransomware Malware

Security Affairs newsletter Round 392

Security Affairs

NOVEMBER 6, 2022

Cisco addressed several high-severity flaws in its products LockBit ransomware gang claims the hack of Continental automotive group 250+ U.S. Cisco addressed several high-severity flaws in its products LockBit ransomware gang claims the hack of Continental automotive group 250+ U.S.

Hacking

Hacking Ransomware Cybercrime Backups

Ransomware world in 2021: who, how and why

SecureList

MAY 12, 2021

As the world marks the second Anti-Ransomware Day, there’s no way to deny it: ransomware has become the buzzword in the security community. Yet, much of the media attention ransomware gets is focused on chronicling which companies fall prey to it. Part I: Three preconceived ideas about ransomware.

Ransomware

Ransomware Encryption Malware Cybercrime

Ransomware Prevention Guide for Enterprise

Spinone

OCTOBER 13, 2020

Like a terrible disease epidemic, ransomware infects and destroys any data in its path. Preventing a ransomware infection is much more desirable than having to recover from one. In this post, we will take a look at ransomware trends, costs, targets, and ransomware prevention software. What do these costs include?

Ransomware

Ransomware Backups Data breaches Encryption

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Government

Government Malware Telecommunications Cybercrime

Alert: 'Imminent and Increasing Threat' as Wave of Ryuk Ransomware Hits Hospitals

SecureWorld News

OCTOBER 29, 2020

With COVID-19 cases surging and hospitalizations increasing, the operators of the Ryuk ransomware smell opportunity. Security researchers say the Ryuk gang is unleashing an unprecedented wave of ransomware attacks against U.S. There is an imminent and increased cybercrime threat to U.S. How do Ryuk ransomware attacks operate?

Ransomware

Ransomware Healthcare Backups Cybercrime

5 Ways Businesses Can Stay Ahead of Cybersecurity Attacks

CyberSecurity Insiders

SEPTEMBER 20, 2021

In addition, workers are trained to identify ransomware attacks and business email compromise funds. Encryption and data backup. Additionally, backing up your data and storing it helps you stay safe from ransomware attackers. Data encryption is a protection strategy that renders data useless even when an intruder accesses it.

Cybersecurity

Cybersecurity Insurance Passwords Encryption

The Analyst Prompt #20: Attack Against Tata Power Highlights Cyber Risk to India’s Growing and Increasingly Connected Population?

Security Boulevard

OCTOBER 27, 2022

1) In late October, Hive ransomware claimed the attack and began leaking data stolen from Tata Power on its website. (16) Malware: Recent Deadbolt Ransomware Operations Stymied Though Action by Dutch Police. Finally, it should encourage victims of cybercrimes to continue to come forward and report thefts to the proper authorities.

Cyber Risk

Cyber Risk Risk Cryptocurrency Backups

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

DNS

DNS Data breaches Hacking Backups

Security Affairs newsletter Round 303

Security Affairs

FEBRUARY 28, 2021

Bug bounty hacker earned $5,000 reporting a Stored XSS flaw in iCloud.com Experts warn of threat actors abusing Google Alerts to deliver unwanted programs FBI warns of the consequences of telephony denial-of-service (TDoS) attacks An attacker was able to siphon audio feeds from multiple Clubhouse rooms Georgetown County has yet to recover from a sophisticated (..)

Spyware

Spyware Backups Manufacturing Data breaches

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Government

Government Malware Telecommunications Cybercrime

Interpol warns that crooks are increasingly targeting hospitals

Security Affairs

APRIL 7, 2020

While the Coronavirus outbreak is threatening the world, the INTERPOL warns that crooks are increasingly targeting hospitals with ransomware. The INTERPOL (International Criminal Police Organisation) is warning of ransomware attacks against hospitals despite the currently ongoing Coronavirus outbreak. reported BleepingComputer.

Healthcare

Healthcare Ransomware Backups Advertising

Microsoft experts linked the Raspberry Robin malware to Evil Corp operation

Security Affairs

JULY 29, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Malware

Malware Backups Manufacturing Accountability

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

eSecurity Planet

SEPTEMBER 14, 2022

Cybercrime is a growth industry like no other. According to the 2021 IBM Threat Force Intelligence Index , Manufacturing was the industry most likely to be attacked last year, comprising 23.2% Given how lucrative and necessary both sectors are to daily life, they make prime targets for ransomware. billion in reported losses.

Social Engineering

Social Engineering Energy and Utilities Phishing Scams

Cyber Security Informer

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Webinars

Trending Sources

8Base ransomware operators use a new variant of the Phobos ransomware

Webinars

Experts link Raspberry Robin Malware to Evil Corp cybercrime gang

Rheinmetall attacked by BlackBasta ransomware

LockBit ransomware gang leaked data stolen from Boeing

FBI confirmed that JBS was hit by the REvil ransomware gang

NCR was the victim of BlackCat/ALPHV ransomware gang

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Ranzy Locker ransomware hit tens of US companies in 2021

Avoslocker ransomware gang targets US critical infrastructure

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

City of Dallas shut down IT services after ransomware attack

Avaddon ransomware campaign prompts warnings from FBI, ACSC

Could You Be a Ransomware Target? Here’s What Attackers Look For

From Caribbean shores to your devices: analyzing Cuba ransomware

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 392

Ransomware world in 2021: who, how and why

Ransomware Prevention Guide for Enterprise

Raspberry Robin malware used in attacks against Telecom and Governments

Alert: 'Imminent and Increasing Threat' as Wave of Ryuk Ransomware Hits Hospitals

5 Ways Businesses Can Stay Ahead of Cybersecurity Attacks

The Analyst Prompt #20: Attack Against Tata Power Highlights Cyber Risk to India’s Growing and Increasingly Connected Population?

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs newsletter Round 303

Raspberry Robin malware used in attacks against Telecom and Governments

Interpol warns that crooks are increasingly targeting hospitals

Microsoft experts linked the Raspberry Robin malware to Evil Corp operation

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

Stay Connected