Security Affairs

APRIL 25, 2024

A ransomware attack on a Swedish logistics company Skanlog severely impacted the country’s liquor supply. Skanlog, a critical distributor for Systembolaget, the Swedish government-owned retail chain suffered a ransomware attack. Systembolaget has a monopoly on the sale of alcoholic beverages containing more than 3.5%

Ransomware 104

Ransomware Retail Cyber Attacks Backups 104

Security Affairs

NOVEMBER 19, 2023

8Base ransomware operators were observed using a variant of the Phobos ransomware in a recent wave of attacks. Cisco Talos researchers observed 8Base ransomware operators using a variant of the Phobos ransomware in recent attacks. The ransomware component is then decrypted and loaded into the SmokeLoader process’ memory.

Ransomware 129

Ransomware Encryption Backups Manufacturing 129

Malwarebytes

FEBRUARY 14, 2024

In 2023, the CL0P ransomware gang broke the scalability barrier and shook the security world with a series of short, automated campaigns, hitting hundreds of unsuspecting targets simultaneously with attacks based on zero-day exploits. Big game ransomware attacks are devastating but relatively rare compared to other forms of cyberattack.

Ransomware 78

Ransomware Cybercrime Backups Malware 78

Security Affairs

FEBRUARY 13, 2024

Authorities in Romania reported that at least 100 hospitals went offline after a ransomware attack hit the Hipocrate platform. Authorities in Romania confirmed that a ransomware attack that targeted the Hipocrate Information System (HIS) has disrupted operations for at least 100 hospitals. The threat actors demand the payment of 3.5

Ransomware 119

Ransomware Backups Encryption Healthcare 119

Security Affairs

NOVEMBER 8, 2023

The FBI published a PIN alert warning of ransomware operators compromising third-party vendors and services for initial access to target environments. The FBI continues to observe ransomware operators abusing third-party vendors and services as an attack vector. ” reported the PIN.

Ransomware 114

Ransomware Backups Encryption Phishing 114

Security Affairs

SEPTEMBER 2, 2022

Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers discovered similarities between a component used in the Raspberry Robin malware and a Dridex malware loader, which was part of the malicious operations of the cybercrime gang Evil Corp.

Cybercrime 111

Cybercrime Malware Backups Manufacturing 111

Malwarebytes

JANUARY 25, 2024

The British National Cyber Security Centre (NCSC) says it expects Artificial Intelligence (AI) to heighten the global ransomware threat. In how far new moves on the front of a United Nations Cybercrime Treaty will have a short-term effect on the behavior of state-sponsored groups is very hard to predict. Prevent intrusions.

Ransomware 84

Ransomware Government Social Engineering Spyware 84

Security Affairs

SEPTEMBER 1, 2023

Researchers released a free decryptor for the Key Group ransomware that allows victims to recover their data without paying a ransom. Threat intelligence firm EclecticIQ released a free decryption tool for the Key Group ransomware (aka keygroup777) that allows victims to recover their data without paying a ransom.

Ransomware 117

Ransomware Encryption Backups Malware 117

Krebs on Security

JUNE 9, 2020

that their information technology systems had been infiltrated by hackers who specialize in deploying ransomware. Nevertheless, on Friday, June 5, the intruders sprang their attack, deploying ransomware and demanding nearly $300,000 worth of bitcoin. The average ransomware payment by ransomware strain.

Ransomware 356

Ransomware System Administration Backups Technology 356

Malwarebytes

OCTOBER 11, 2023

The Philippine Health Insurance Corporation (PhilHealth), has confirmed that it was unprotected by antivirus software when it was attacked by the Medusa ransomware group in September. EDR can detect an intruder's suspicious activity in advance of them running ransomware, as well as being able to identify the ransomware itself.

Antivirus 107

Antivirus Insurance Ransomware Healthcare 107

Malwarebytes

JANUARY 9, 2024

Ransomware groups are liars, yes, but even when these dangerous cybercriminals would ransack organizations and destroy entire companies, a few select groups espoused a sort of “honor among thieves.” But, as can be expected from ransomware groups, these were nothing but lies. How to avoid ransomware Block common forms of entry.

Ransomware 83

Ransomware Passwords Backups Healthcare 83

Malwarebytes

MAY 24, 2023

The BlackBasta ransomware group has already claimed responsibility for the attack through its leak-site. A spokesman for the Central and Contact Point Cybercrime (ZAC NRW) at the Cologne public prosecutor's office confirmed corresponding knowledge of an incident in the early evening. How to avoid ransomware Block common forms of entry.

Ransomware 87

Ransomware Backups Manufacturing Encryption 87

Malwarebytes

FEBRUARY 19, 2024

For the last two years the absolute worst, most prolific, most globally significant “big game” ransomware gang has been LockBit. This evening its position as ransomware’s biggest beast is suddenly in doubt, following some non-consensual website redecoration at the hands of the UK’s National Crime Agency (NCA).

Ransomware 73

Ransomware Backups Malware Software 73

Krebs on Security

DECEMBER 8, 2022

Ransomware groups are constantly devising new methods for infecting victims and convincing them to pay up, but a couple of strategies tested recently seem especially devious. Department of Health and Human Services (HHS) warned that Venus ransomware attacks were targeting a number of U.S. “ Cl0p ” a.k.a.

Healthcare 257

Healthcare Backups Ransomware Insurance 257

Krebs on Security

SEPTEMBER 30, 2023

Earlier this week, KrebsOnSecurity revealed that the darknet website for the Snatch ransomware group was leaking data about its users and the crime gang’s internal operations. It continues: “Prior to deploying the ransomware, Snatch threat actors were observed spending up to three months on a victim’s system.

Ransomware 212

Ransomware Accountability Cybercrime Backups 212

Thales Cloud Protection & Licensing

DECEMBER 13, 2023

Ransomware Sanctions: Do They Have Any Impact? madhav Thu, 12/14/2023 - 05:37 Ransomware is one of the most high-profile and high-value cybercrimes that organizations need to watch out for. What Can Organizations Do?

Ransomware 77

Ransomware Encryption Backups Accountability 77

Security Affairs

OCTOBER 19, 2021

FBI, CISA, NSA have published a joint advisory about the operation of the BlackMatter ransomware gang and provides defense recommendations. Like other ransomware operations, BlackMatter also set up its leak site where it publishes data exfiltrated from the victims before encrypting their system.

Ransomware 119

Ransomware Backups Encryption Cybercrime 119

Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. The company said that the ransomware attack took place on Friday night and impacted only one data center in Sweden. The company later confirmed the news of an Akira ransomware attack.

Ransomware 115

Ransomware VPN Government Retail 115

Herjavec Group

DECEMBER 16, 2020

Sophisticated Ransomware . Ransomware, the fastest-growing type of cybercrime, will claim a new victim? Sadly, in 2020, we saw the first instance of human loss as a direct result of cybercrime – ransomware to be exact. Originally posted on Cybercrime Magazine. every 5 seconds ?by Insider Threat .

Cybercrime 98

Cybercrime Cybersecurity Digital transformation CISO 98

Security Affairs

OCTOBER 15, 2023

The Alphv ransomware group added the Morrison Community Hospital to its dark web leak site. The ALPHV/BlackCat ransomware group claims to have hacked the Morrison Community Hospital and added it to its dark web Tor leak site. Other ransomware attacks recently hit US hospitals. Threat actors continue to target hospitals.

Ransomware 129

Ransomware Healthcare Data breaches Cyber Attacks 129

Security Affairs

JUNE 7, 2022

The QBot malware operation has partnered with Black Basta ransomware group to target organizations worldwide. Researchers from NCC Group spotted a new partnership in the threat landscape between the Black Basta ransomware group and the QBot malware operation. SecurityAffairs – hacking, Black Basta ransomware).

Ransomware 143

Ransomware Backups Malware Firewall 143

Security Affairs

JANUARY 17, 2022

The operators of the SFile ransomware (aka Escal) have developed a Linux version of their malware to expand their operations. SFile ransomware (aka Escal), has been active since 2020 , it was observed targeting only Windows systems. Recently, Rising captured the Linux platform variant of the ransomware.”

Ransomware 143

Ransomware Encryption Backups Malware 143

SecureWorld News

FEBRUARY 28, 2024

In a coordinated international law enforcement operation on February 19, the notorious LockBit ransomware gang had its Dark Web infrastructure seized by authorities. By co-opting the ransomware group's own communication channels, police aimed to sow doubts in the cybercrime community reliant on LockBit's tools and services.

Cybercrime 83

Cybercrime Ransomware Backups Encryption 83

Malwarebytes

FEBRUARY 7, 2023

ION Group, a financial software firm, is reportedly beginning to bring clients back online after being hit by a ransomware attack late last week. The Russian-linked LockBit ransomware group claimed responsibility for attacking a division of ION Group, which affecting 42 clients in Europe and the United States. Backup your files.

Ransomware 72

Ransomware Backups Digital transformation Social Engineering 72

Krebs on Security

MAY 31, 2022

Costa Rica’s national health service was hacked sometime earlier this morning by a Russian ransomware group known as Hive. The intrusion comes just weeks after Costa Rican President Rodrigo Chaves declared a state of emergency in response to a data ransom attack from a different Russian ransomware gang — Conti.

Ransomware 251

Ransomware Government Hacking Media 251

Malwarebytes

FEBRUARY 14, 2023

Apart from taking over bank accounts, TrickBot has been instrumental in spreading ransomware across multiple healthcare organizations, and critical infrastructure in the US, especially during the height of the COVID-19 pandemic. How to avoid ransomware There is no doubt hospitals remain under a bullseye, and attackers can strike at any time.

Ransomware 68

Ransomware Backups Banking Social Engineering 68

Malwarebytes

MARCH 3, 2023

The Pierce County Public Transportation Benefit Area Corporation (Pierce Transit) has fallen victim to a cyberattack using LockBit ransomware. Based on the number of known attacks, Lockbit has been the most widely used ransomware-as-a-service (RaaS) for some time now. How to avoid ransomware Block common forms of entry.

Ransomware 82

Ransomware Backups Cybercrime Malware 82

eSecurity Planet

AUGUST 12, 2021

Accenture officials are saying they staved off a ransomware attack this week by a cybercriminal ring using the LockBit malware even as the hacker group claimed to have captured data from the massive global IT and business consulting firm and has threatened to release it. Further reading: How Zero Trust Security Can Protect Against Ransomware.

Ransomware 104

Ransomware Backups Cybercrime Artificial Intelligence 104

Security Affairs

NOVEMBER 13, 2023

The LockBit ransomware group published data allegedly stolen from the aerospace giant Boeing in a recent attack. At the end of October, the Lockbit ransomware group added Boeing to the list of victims on its Tor leak site. At the end of October, the Lockbit ransomware group added Boeing to the list of victims on its Tor leak site.

Ransomware 123

Ransomware Authentication Backups Manufacturing 123

Security Affairs

NOVEMBER 5, 2021

A new threat actor is exploiting ProxyShell flaws in attacks aimed at Microsoft Exchange servers to deploy the Babuk Ransomware in corporate networks. Talos researchers warn of a new threat actor that is hacking Microsoft Exchange servers by exploiting ProxyShell flaws to gain access to corporate and deploy the Babuk Ransomware.

Ransomware 132

Ransomware Backups Encryption DNS 132

Security Affairs

APRIL 25, 2022

At least 60 entities worldwide have been breached by BlackCat ransomware, warns a flash report published by the U.S. Federal Bureau of Investigation (FBI) published a flash report that states that at least 60 entities worldwide have been breached by BlackCat ransomware (aka ALPHV and Noberus) since it started its operations in November.

Ransomware 112

Ransomware Antivirus Passwords Malware 112

IT Security Guru

AUGUST 16, 2021

million to cybercrime, as per official police statistics. One of the most damaging forms of cybercrime comes in the form of Ransomware. . Not only that, but 81% of cyber security experts believe we are likely to see more ransomware than ever across the next few years, thanks to its increasing prevalence.

Ransomware 102

Ransomware Cybercrime Backups Encryption 102

Security Affairs

JANUARY 6, 2023

Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware allowing its victims to restore their data for free. Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware , which can allow victims of the group to restore their data for free. SecurityAffairs – hacking, ransomware).

Ransomware 97

Ransomware Antivirus Encryption Backups 97

Security Affairs

OCTOBER 22, 2022

US government agencies warned that the Daixin Team cybercrime group is actively targeting the U.S. Healthcare and Public Health sector with ransomware. CISA, the FBI, and the Department of Health and Human Services (HHS) warned that the Daixin Team cybercrime group is actively targeting U.S. ” reads the alert. .”

Ransomware 73

Ransomware VPN Cybercrime Accountability 73

Malwarebytes

JANUARY 15, 2023

The real world impact of cybercrime rears its head once more, with word that 14 schools in the UK have been caught out by ransomware. There’s no word if any of the schools affected paid the ransom and had their data leaked anyway, or if the ransomware gang stuck to its word and “only” leaked in cases of non-payment.

Ransomware 78

Ransomware Backups Education VPN 78

Security Affairs

JUNE 3, 2021

The US FBI announced that REvil ransomware gang (also known as Sodinokibi) is behind the attack that hit JBS Foods. The company’s backup servers were not affected, and it is actively working with an Incident Response firm to restore its systems as soon as possible.” SecurityAffairs – hacking, ransomware). Pierluigi Paganini.

Ransomware 118

Ransomware Cybercrime Backups Manufacturing 118

Hacker Combat

APRIL 27, 2022

Ransomware is malicious software that encrypts your files and demands a fee in exchange for access. This type of malware is now the most profitable form of cybercrime since victims feel compelled to pay, even if there are no guarantees that their data will be recovered. Create a backup. Get rid of the ransomware.

Ransomware 105

Ransomware Encryption Wireless Malware 105