Cyber Attacks, Cybercrime, Information Security and Ransomware

Ransomware drama: Law enforcement seized Lockbit group’s website again

Security Affairs

MAY 5, 2024

FuckRansomware pic.twitter.com/uD09m7AukH — Jon DiMaggio (@Jon__DiMaggio) May 5, 2024 However, researchers at VX-underground have spoken with Lockbit ransomware group administrative staff regarding the return of the old domain and the gang claims law enforcement is lying. Lockbit ransomware group states law enforcement is lying.

Ransomware

Ransomware Cybercrime Cyber Attacks Encryption

Save the Children confirms it was hit by cyber attack

Security Affairs

SEPTEMBER 12, 2023

The charity organization Save the Children International revealed that it was hit by a cyber attack. The company disclosed the security incident after the ransomware gang BianLian listed the organization on its Tor leak site.

Cyber Attacks

Cyber Attacks Healthcare Education Data breaches

Sweden’s liquor supply severely impacted by ransomware attack on logistics company

Security Affairs

APRIL 25, 2024

A ransomware attack on a Swedish logistics company Skanlog severely impacted the country’s liquor supply. Skanlog, a critical distributor for Systembolaget, the Swedish government-owned retail chain suffered a ransomware attack. Our systems, including our central business system, have been affected by the attack.

Ransomware

Ransomware Retail Cyber Attacks Backups

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

The worst cyber attacks of 2021

Security Affairs

JANUARY 3, 2022

Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses and disruption of the operations? Bloomberg was informed about the payment by two people familiar with the attack. The pipeline allows carrying 2.5

Cyber Attacks

Cyber Attacks Ransomware Insurance Hacking

Australian Firstmac Limited disclosed a data breach after cyber attack

Security Affairs

MAY 13, 2024

Unfortunately, our investigation has identified that an unauthorised third party has accessed some customer information.” “It is important to note that our systems are secure. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ransomware)

Data breaches

Data breaches Cyber Attacks Identity Theft Banking

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. ” reads the alert published by the FBI. Pierluigi Paganini.

Cybercrime

Cybercrime Education Accountability Phishing

Recent cyber attack is causing Clorox products shortage

Security Affairs

SEPTEMBER 19, 2023

The cyber attack that hit the cleaning products manufacturer Clorox in August is still affecting the supply of the products to customers. In response to the cyber attack, the company has taken some of its systems offline while it was implementing additional “protections and hardening measures to further secure them”.

Cyber Attacks

Cyber Attacks Manufacturing Cybersecurity Marketing

Cactus ransomware gang claims the Schneider Electric hack

Security Affairs

JANUARY 30, 2024

Energy management and industrial automation firm Schneider Electric suffered a data breach after a Cactus ransomware attack. BleepingComputer first reported the attack that hit the Sustainability Business division of the company on January 17th. The Cactus ransomware relies on multiple legitimate tools (e.g.

Ransomware

Ransomware Hacking Data breaches Digital transformation

Electronic prescription provider MediSecure impacted by a ransomware attack

Security Affairs

MAY 16, 2024

Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate from a third-party vendor. MediSecure is a company that provides digital health solutions, particularly focusing on secure electronic prescription delivery services in Australia. ” reported ABC. million customers.

Ransomware

Ransomware Data breaches Government Insurance

Play ransomware gang hit Dutch shipping firm Royal Dirkzwager

Security Affairs

MARCH 19, 2023

Dutch maritime logistics company Royal Dirkzwager suffered a ransomware attack, the company was hit by the Play ransomware gang. The Play ransomware group hit the Dutch maritime logistics company Royal Dirkzwager. Company CEO Joan Blaas said that the ransomware attack did not impact the operations of the company.

Ransomware

Ransomware Cybercrime Hacking Cyber Attacks

Lockbit ransomware gang hit the Portuguese municipal water utility Aguas do Porto

Security Affairs

FEBRUARY 20, 2023

The LockBit ransomware gang claims to have hacked Aguas do Porto, a Portuguese municipal water utility company. The LockBit ransomware gang claims to have hacked Aguas do Porto, a Portuguese municipal water utility company, and is threatening to leak the stolen data.

Ransomware

Ransomware Cyber Attacks Cybercrime Hacking

The Alphv ransomware gang stole 5TB of data from the Morrison Community Hospital

Security Affairs

OCTOBER 15, 2023

The Alphv ransomware group added the Morrison Community Hospital to its dark web leak site. The ALPHV/BlackCat ransomware group claims to have hacked the Morrison Community Hospital and added it to its dark web Tor leak site. The group is known to have a role for its affiliated that prohibits attacking healthcare organizations.

Ransomware

Ransomware Healthcare Data breaches Cyber Attacks

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Security Affairs

MARCH 12, 2021

Researchers warn of a surge in cyber attacks against Microsoft Exchange servers exploiting the recently disclosed ProxyLogon vulnerabilities. Microsoft researchers also spotted a ransomware gangs that is exploiting ProxyLogon flaws to spread a piece of malware tracked as DearCry. and also as DearCry. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Cybercrime Authentication Hacking

Akira ransomware gang claims the theft of sensitive data from Nissan Australia

Security Affairs

DECEMBER 22, 2023

The Akira ransomware group announced it had breached the network of Nissan Australia, the Australian branch of the car maker giant. The Akira ransomware gang claimed to have breached Nissan Australia and to have stolen around 100GB of files from the carmaker giant. “We’ve obtained 100 GB of data of Nissan Australia. .”

Ransomware

Ransomware Data breaches Financial Services Scams

Medusa ransomware attack hit Kansas City Area Transportation Authority

Security Affairs

JANUARY 28, 2024

Medusa ransomware gang claimed responsibility for the attack against the Kansas City Area Transportation Authority (KCATA). On January 23, 2023, the Kansas City Area Transportation Authority (KCATA) suffered a ransomware attack. “A ransom cyber-attack hit the KCATA early Tuesday, January 23.

Ransomware

Ransomware Data breaches Cyber Attacks Cybercrime

The Netherlands declares war on ransomware operations

Security Affairs

OCTOBER 8, 2021

The Dutch government will not tolerate ransomware attacks that could threaten national security, it will use intelligence or military services to curb them. “For several years, the threat of ransomware attacks has been increasing around the world.

Ransomware

Ransomware Cybercrime Government Cyber Attacks

Conti Ransomware hit 16 US health and emergency Services, said FBI

Security Affairs

MAY 22, 2021

Conti ransomware targeted over 400 organizations worldwide, 290 in the US, and at least 16 healthcare and first responder networks. The Federal Bureau of Investigation (FBI) revealed that the Conti ransomware gang has hit at least 16 healthcare and first responder organizations. SecurityAffairs – hacking, Conti Ransomware).

Ransomware

Ransomware Healthcare Cyber Attacks Cybercrime

LockBit published data stolen from Simone Veil hospital in Cannes

Security Affairs

MAY 3, 2024

LockBit ransomware operators have published sensitive data allegedly stolen from the Simone Veil hospital in Cannes. In April, a cyber attack hit the Hospital Simone Veil in Cannes (CHC-SV), impacting medical procedures and forcing personnel to return to pen and paper.

Cyber Attacks

Cyber Attacks Ransomware Healthcare Media

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. Pierluigi Paganini.

Cybercrime

Cybercrime Security Intelligence Authentication Banking

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

Key trends: 1️ Increased Ransomware Activity Targeting Public Companies Ransomware groups are poised to intensify their focus on publicly-traded organizations. Recent U.S.

Cyber threats

Cyber threats Energy and Utilities Artificial Intelligence Cyber Attacks

BianLian, White Rabbit, and Mario Ransomware Gangs Spotted in a Joint Campaign

Security Affairs

DECEMBER 15, 2023

Resecurity has uncovered a meaningful link between three major ransomware groups, BianLian, White Rabbit, and Mario Ransomware. Resecurity’s HUNTER (HUMINT) unit spotted the BianLian , White Rabbit , and Mario ransomware gangs collaborating in a joint extortion campaign targeting publicly-traded financial services firms.

Ransomware

Ransomware Financial Services Cyber Attacks Cybersecurity

LockBit ransomware gang claims the attack on Capital Health

Security Affairs

JANUARY 9, 2024

The LockBit ransomware gang claimed responsibility for the cyber attack on the Capital Health hospital network. The LockBit ransomware operation has claimed responsibility for the cyberattack that hit the Capital Health hospital network in November 2023.

Ransomware

Ransomware Healthcare Encryption Cyber Attacks

UK Fintech company Finastra hit by a cyber attack

Security Affairs

MARCH 21, 2020

The financial technology firm Finastra announced it has suffered a ransomware attack that took down its some of its systems. Finastra , the UK leading financial technology provider, announced that some of its servers were shut down in response to a ransomware attack that the company detected. billion in revenues.

Cyber Attacks

Cyber Attacks Data breaches Advertising Ransomware

Lockbit ransomware attack interrupted medical emergencies gang at a German hospital network

Security Affairs

DECEMBER 28, 2023

A Lockbit ransomware attack against the German hospital network Katholische Hospitalvereinigung Ostwestfalen (KHO) caused service disruptions at three hospitals. The security incident could have a serious impact on the local population due to the interruption of the medical emergencies.

Ransomware

Ransomware Encryption Cyber Attacks Hacking

A cyber attack forced the wind turbine manufacturer Nordex Group to shut down some of IT systems

Security Affairs

APRIL 6, 2022

.” Nordex did not disclose technical details of the cyberattack, but the fact that it was forced to shut down part of its IT infrastructure suggests that it fell victim to a ransomware attack. In November another manufacturer of wind turbines was hit by a cyber attack, it was the Danish wind turbine giant Vestas Wind Systems.

Manufacturing

Manufacturing Cyber Attacks Ransomware Hacking

FBI confirmed that Darkside ransomware gang hit Colonial Pipeline

Security Affairs

MAY 10, 2021

FBI confirmed that the attack against the Colonial Pipeline over the weekend was launched by the Darkside ransomware gang. Federal Bureau of Investigation confirmed that the Colonial Pipeline was shut down due to a cyber attack carried out by the Darkside ransomware gang. The pipeline allows carrying 2.5

Ransomware

Ransomware Energy and Utilities Healthcare Cybercrime

Reading the “ENISA THREAT LANDSCAPE FOR RANSOMWARE ATTACKS” report

Security Affairs

JULY 30, 2022

I’m proud to announce the release of the “ENISA THREAT LANDSCAPE FOR RANSOMWARE ATTACKS” report, Enjoy it! Ransomware has become one of the most dangerous threats for organizations worldwide. Ransomware operations continue to evolve and are becoming more efficient and causing more devastating attacks.

Ransomware

Ransomware Cybercrime Cyber Attacks Encryption

Ohio Lottery data breach impacted over 538,000 individuals

Security Affairs

MAY 11, 2024

The cyber attack on the Ohio Lottery on Christmas Eve exposed the personal data of over 538,000 individuals. Attackers gained access to names or other personal identifiers in combination with Social Security Numbers of the impacted individuals. The organization is notifying the impacted people.

Data breaches

Data breaches Identity Theft Cybercrime Cyber Attacks

Rhysida Ransomware gang claims to have hacked three more US hospitals

Security Affairs

SEPTEMBER 10, 2023

Rhysida Ransomware group added three more US hospitals to the list of victims on its Tor leak site after the PROSPECT MEDICAL attack. Recently the Rhysida ransomware group made the headlines because it announced the hack of Prospect Medical Holdings and the theft of sensitive information from the organization.

Hacking

Hacking Ransomware Healthcare Cyber Attacks

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate.

Cybersecurity

Cybersecurity Cybercrime Education Passwords

UK Home Office is ignoring the risk of ‘catastrophic ransomware attacks,’ report warns

Security Affairs

DECEMBER 13, 2023

A Joint Committee on the National Security Strategy (JCNSS) warns of the high risk of a catastrophic ransomware attack on the UK government. The British government is accused of failing to mitigate the risk of ransomware attacks. said Dame Margaret Beckett, the chair of the JCNSS. Beckett added.

Ransomware

Ransomware Risk Government Cyber threats

The Rhysida ransomware group hit the Kuwait Ministry of Finance

Security Affairs

SEPTEMBER 26, 2023

This week the Rhysida ransomware group claimed the hack of the Kuwait Ministry of Finance and added it to its Tor leak site. Last week a ransomware attack hit the Government of Kuwait, the attack took place on September 18 and the government experts immediately started the incident response procedures to block the threat.

Ransomware

Ransomware Government Hacking Cyber Attacks

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Security Affairs

DECEMBER 16, 2023

The Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Another healthcare organization suffered a ransomware attack, the Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Who is Hunters International?

Ransomware

Ransomware Hacking Insurance Healthcare

Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys

Security Affairs

MARCH 3, 2021

Cybersecurity firm Qualys is the latest victim of a cyber attack, the company was likely hacked by threat actors that exploited a zero-day vulnerability in their Accellion FTA server. The attackers exfiltrate sensitive data from the target systems and then published it on the CLOP ransomware gang’s leak site.

Ransomware

Ransomware Cybersecurity Cyber Attacks Data breaches

Ransom House ransomware attack hit Hospital Clinic de Barcelona

Security Affairs

MARCH 6, 2023

Hospital Clinic de Barcelona, one of the main hospitals in the Spanish city, suffered a cyber attack that crippled its computer system. On Sunday, a ransomware attack hit the Hospital Clinic de Barcelona, one of the main hospitals of the Catalan city. ” states the Associated Press. .

Ransomware

Ransomware Telecommunications Cyber Attacks Data breaches

IKEA hit by a cyber attack that uses stolen internal reply-chain emails

Security Affairs

NOVEMBER 27, 2021

. “In internal emails seen by BleepingComputer, IKEA is warning employees of an ongoing reply-chain phishing cyber-attack targeting internal mailboxes. “There is an ongoing cyber-attack that is targeting Inter IKEA mailboxes. ” reports BleepingComputer. Source Bleeping Computer. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Phishing Malware Hacking

LockBit ransomware gang leaked data stolen from Boeing

Security Affairs

NOVEMBER 13, 2023

The LockBit ransomware group published data allegedly stolen from the aerospace giant Boeing in a recent attack. At the end of October, the Lockbit ransomware group added Boeing to the list of victims on its Tor leak site. The attack targeted elements of the parts and distribution business run by its global services division.

Ransomware

Ransomware Authentication Backups Manufacturing

Lockbit ransomware gang hit the Carthage Area Hospital and the Clayton-Hepburn Medical Center in New York

Security Affairs

SEPTEMBER 14, 2023

LockBit ransomware group breached two hospitals, the Carthage Area Hospital and the Clayton-Hepburn Medical Center in New York. The Lockbit ransomware group claims to have hacked two major hospitals, the Carthage Area Hospital and Claxton-Hepburn Medical Center. Other ransomware attacks recently hit US hospitals.

Ransomware

Ransomware Healthcare Cyber Attacks Hacking

The University of Manchester suffered a cyber attack and suspects a data breach

Security Affairs

JUNE 10, 2023

The statement doesn’t provide details about the attack, however, BleepingComputer reported that it has learned that the University was victim of a ransomware attack.

Data breaches

Data breaches Cyber Attacks Education Banking

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

OCTOBER 20, 2020

The Nefilim ransomware operators have posted a long list of files that appear to belong to Italian eyewear and eyecare giant Luxottica. Security experts believe that threat actor exploited the above flaw to infect the systems at the company with ransomware. Luxottica Group S.p.A. ” explained Odysseus. Pierluigi Paganini.

Ransomware

Ransomware Cyber Attacks Advertising Retail

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 17, 2024

France Travail data breach impacted 43 Million people Scranton School District in Pennsylvania suffered a ransomware attack Lazarus APT group returned to Tornado Cash to launder stolen funds Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case UK Defence Secretary jet hit by an electronic warfare attack in Poland Cisco (..)

Data breaches

Data breaches Computers and Electronics Cybercrime Ransomware

FBI confirmed that JBS was hit by the REvil ransomware gang

Security Affairs

JUNE 3, 2021

The US FBI announced that REvil ransomware gang (also known as Sodinokibi) is behind the attack that hit JBS Foods. JBS said that it is not aware of any data breach caused by the cyber attack, it added that transactions with customers and suppliers will be delayed. SecurityAffairs – hacking, ransomware).

Ransomware

Ransomware Cybercrime Backups Manufacturing

BlackCat ransomware group claims the hack of Seiko network

Security Affairs

AUGUST 21, 2023

The BlackCat/ALPHV ransomware group claims to have hacked the Japanese maker of watches Seiko and added the company to its data leak site. On August 10, 2023, the Japanese maker of watches Seiko disclosed a data breach following a cyber attack.

Hacking

Hacking Ransomware Data breaches Cyber Attacks

FIN11 cybercrime group is behind recent wave of attacks on FTA servers

Security Affairs

FEBRUARY 23, 2021

FireEye experts linked a series of attacks targeting Accellion File Transfer Appliance (FTA) servers to the cybercrime group UNC2546, aka FIN11. Security experts from FireEye linked a series of cyber attacks against organizations running Accellion File Transfer Appliance (FTA) servers to the cybercrime group UNC2546, aka FIN11.

Cybercrime

Cybercrime Software Ransomware Cyber Attacks

Ransomware drama: Law enforcement seized Lockbit group’s website again

Save the Children confirms it was hit by cyber attack

Webinars

Trending Sources

Sweden’s liquor supply severely impacted by ransomware attack on logistics company

Webinars

The worst cyber attacks of 2021

Australian Firstmac Limited disclosed a data breach after cyber attack

FBI: Compromised US academic credentials available on various cybercrime forums

Recent cyber attack is causing Clorox products shortage

Cactus ransomware gang claims the Schneider Electric hack

Electronic prescription provider MediSecure impacted by a ransomware attack

Play ransomware gang hit Dutch shipping firm Royal Dirkzwager

Lockbit ransomware gang hit the Portuguese municipal water utility Aguas do Porto

The Alphv ransomware gang stole 5TB of data from the Morrison Community Hospital

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Akira ransomware gang claims the theft of sensitive data from Nissan Australia

Medusa ransomware attack hit Kansas City Area Transportation Authority

The Netherlands declares war on ransomware operations

Conti Ransomware hit 16 US health and emergency Services, said FBI

LockBit published data stolen from Simone Veil hospital in Cannes

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Resecurity Released a 2024 Cyber Threat Landscape Forecast

BianLian, White Rabbit, and Mario Ransomware Gangs Spotted in a Joint Campaign

LockBit ransomware gang claims the attack on Capital Health

UK Fintech company Finastra hit by a cyber attack

Lockbit ransomware attack interrupted medical emergencies gang at a German hospital network

A cyber attack forced the wind turbine manufacturer Nordex Group to shut down some of IT systems

FBI confirmed that Darkside ransomware gang hit Colonial Pipeline

Reading the “ENISA THREAT LANDSCAPE FOR RANSOMWARE ATTACKS” report

Ohio Lottery data breach impacted over 538,000 individuals

Rhysida Ransomware gang claims to have hacked three more US hospitals

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

UK Home Office is ignoring the risk of ‘catastrophic ransomware attacks,’ report warns

The Rhysida ransomware group hit the Kuwait Ministry of Finance

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys

Ransom House ransomware attack hit Hospital Clinic de Barcelona

IKEA hit by a cyber attack that uses stolen internal reply-chain emails

LockBit ransomware gang leaked data stolen from Boeing

Lockbit ransomware gang hit the Carthage Area Hospital and the Clayton-Hepburn Medical Center in New York

The University of Manchester suffered a cyber attack and suspects a data breach

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

FBI confirmed that JBS was hit by the REvil ransomware gang

BlackCat ransomware group claims the hack of Seiko network

FIN11 cybercrime group is behind recent wave of attacks on FTA servers

Stay Connected