SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime 137

Cybercrime Banking Malware Ransomware 137

Security Affairs

OCTOBER 15, 2023

The Alphv ransomware group added the Morrison Community Hospital to its dark web leak site. The ALPHV/BlackCat ransomware group claims to have hacked the Morrison Community Hospital and added it to its dark web Tor leak site. Its policy forbids to encrypt systems of organizations where damage could lead to the death of individuals.

Ransomware 123

Ransomware Healthcare Data breaches Cyber Attacks 123

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. Pierluigi Paganini.

Ransomware 98

Ransomware DDOS Passwords Backups 98

Security Affairs

APRIL 19, 2022

Kaspersky discovered a flaw in the encryption process of the Yanluowang ransomware that allows victims to recover their files for free. The Yanluowang ransomware was first spotted by researchers from Symantec Threat Hunter Team in October 2021, the malware was used in highly targeted attacks against large enterprises.

Ransomware 87

Ransomware Encryption DDOS Malware 87

Security Affairs

APRIL 3, 2021

The Avaddon ransomware operators updated their malware after security researchers released a public decryptor in February 2021. The Avaddon ransomware family first appeared in the threat landscape in February 2020, and its authors started offering it with a Ransomware-as-a-Service (RaaS) model in June, 2020.

Ransomware 97

Ransomware Encryption Malware Cybercrime 97

Security Affairs

OCTOBER 14, 2021

Researchers spotted a new strain of ransomware, dubbed Yanluowang, that was used in highly targeted attacks against enterprises. Researchers from Symantec Threat Hunter Team discovered a ransomware family, tracked as Yanluowang ransomware that was used in highly targeted attacks against large enterprises. Pierluigi Paganini.

Ransomware 88

Ransomware Encryption DDOS Hacking 88

Dark Reading

NOVEMBER 28, 2018

Ransomware, DDoS extortion, and encrypted communications abound as cybercriminals in the region refine their tradecraft.

Cybercrime 72

Cybercrime DDOS Encryption Ransomware 72

Security Affairs

DECEMBER 15, 2021

While investigating a data breach suffered by a healthcare organization, FBI accidentally revealed that it believes that the HelloKitty ransomware gang operates out of Ukraine. In November, the US FBI has published a flash alert warning private organizations of the evolution of the HelloKitty ransomware (aka FiveHands).

Ransomware 89

Ransomware Data breaches DDOS Healthcare 89

Security Affairs

OCTOBER 11, 2020

FONIX is a new Ransomware as a Service available in the threat landscape that was analyzed by SentinelLabs researchers. FONIX is a relatively new Ransomware as a Service (RaaS) analyzed by researchers from Sentinel Labs, its operators were previously specialized in the developers of binary crypters/packers.

Ransomware 87

Ransomware Encryption Advertising DDOS 87

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 88

Data breaches DDOS Artificial Intelligence Ransomware 88

IT Security Guru

JULY 19, 2021

Although cybercrime as a whole has seen a rise during the pandemic, arguably ransomware has been one of the more successful and lucrative attack types. Our own research report, the State of Encrypted Attacks Report 2020 , found that there had been a 500 per cent rise in ransomware compared to 2019.

Ransomware 96

Ransomware Digital transformation Antivirus DDOS 96

Security Affairs

MAY 21, 2023

X Master Password Dumper (CVE-2023-32784) Malware RapperBot DDoS Botnet Expands into Cryptojacking Newly identified RA Group compromises companies in U.S. X Master Password Dumper (CVE-2023-32784) Malware RapperBot DDoS Botnet Expands into Cryptojacking Newly identified RA Group compromises companies in U.S.

Data breaches 87

Data breaches Cybercrime Ransomware Passwords 87

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. Advanced threat actors from countries placed under economic sanctions may rely more on ransomware imitating cybercriminal activity. Analysis of forecasts for 2021.

Cryptocurrency 104

Cryptocurrency Banking Cybercrime Ransomware 104

Security Affairs

APRIL 30, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime 88

Cybercrime Malware Hacking Accountability 88

Krebs on Security

MAY 13, 2024

and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. “Installing SpyEYE, ZeuS, any DDoS and spam admin panels,” NeroWolfe wrote.

Ransomware 230

Ransomware Cybercrime Accountability Malware 230

Security Affairs

AUGUST 20, 2022

If you want to also receive for free the newsletter with the international press subscribe here. Follow me on Twitter: @securityaffairs and Facebook.

DDOS 75

DDOS Architecture Malware Cybercrime 75

Security Affairs

FEBRUARY 29, 2024

Experts warn that the LockBit ransomware group has started using updated encryptors in new attacks, after the recent law enforcement operation. The LockBit ransomware group appears to have fully recovered its operations following the recent law enforcement initiative, code-named Operation Cronos , which aimed to disrupt its activities.

Ransomware 98

Ransomware Hacking Cyber Attacks Encryption 98

CSO Magazine

MARCH 1, 2022

The hackers purportedly compromised the railway system’s routing and switching devices and rendered them inoperable by encrypting data stored on them. AgainstTheWest targeted Russian interests. Russian media outlets hacked to display anti-Russian messages. Some Russian media sources say anonymous was the source of these hacks.

DDOS 115

DDOS Media Hacking CSO 115

SecureWorld News

APRIL 4, 2022

According to a report from McAfee Enterprise and FireEye titled, "Cybercrime in a Pandemic World: The Impact of COVID-19," 81% of global organizations have experienced increased cyberthreats, and 79% experienced downtime from an attack during a peak season. One common type of cybersecurity issue organizations face is ransomware.

Digital transformation 82

Digital transformation Ransomware Phishing Small Business 82

The Last Watchdog

OCTOBER 5, 2023

He previously chronicled the emergence of cybercrime while covering Microsoft for USA TODAY. Byron: The economic impact of phishing, ransomware, business logic hacking, Business Email Compromise (BEC) and Distributed Denial of Service (DDoS) attacks continues to be devastating.

Cyber threats 203

Cyber threats Cyber Insurance Cybersecurity Threat Detection 203

Security Affairs

MARCH 1, 2020

Raccoon Malware, a success case in the cybercrime ecosystem. Kr00k Wi-Fi Encryption flaw affects more than a billion devices. Reading Municipal Light Department, an electric utility in Massachusetts, hit by ransomware. Silence Hacking Crew threatens Australian banks of DDoS attacks. Lampion malware v2 February 2020.

Banking 90

Banking Malware Advertising Ransomware 90

SiteLock

AUGUST 27, 2021

In fact, the World Economic Forum (WEF) projects that by 2021: Global cybercrime costs could total approximately $6 trillion in the US. If cybercrime were a country, it would have the third largest economy in the world. Clearly, cybercrime is big business, and it operates like one. How big is the impact of cybercrime?

Cybersecurity 98

Cybersecurity Cybercrime DDOS Malware 98

Security Affairs

NOVEMBER 17, 2019

Boardriders and its subsidiarities QuikSilver and Billabong infected with ransomware. Major ASP.NET hosting provider SmarterASP hit by ransomware attack. Apple Mail stores parts of encrypted emails in plaintext DB. Buran ransomware-as-a-service continues to improve. Mexican state-owned oil company Pemex hit by ransomware.

DDOS 52

DDOS Spyware Advertising Ransomware 52

SiteLock

AUGUST 27, 2021

A data breach, ransomware attack or other digital attack that knocks your website offline can cost your business anywhere from thousands to millions of dollars in remediation, lawsuits from customers and fines by regulators. Either way, now your databases haves been encrypted by attackers.

Data breaches 98

Data breaches DDOS Ransomware Marketing 98

BH Consulting

DECEMBER 14, 2021

Digital takeup drives accelerated cybercrime activity: IOCTA. Growing use of digital technologies, accelerated by the Covid-19 pandemic, has led to a sharp increase in cybercrime. The report listed ransomware affiliate programmes as a major risk. MORE Prof Ciaran Martin weighs in on the encryption debate. domain space.

Cybercrime 59

Cybercrime Mobile DDOS CISO 59

SecureWorld News

NOVEMBER 12, 2020

Distributed Denial of Service (DDoS). Ransomware. During the reporting period, Emotet evolved into a botnet, increased its activity, and initiated new localized spam campaigns with spear-phishing functionality to install ransomware or steal information.". 67%_of malware was delivered via encrypted HTTPS connections.

Cyber threats 107

Cyber threats Insurance Cyber Insurance Ransomware 107

SiteLock

AUGUST 27, 2021

This makes stealthy attacks incredibly popular in the cybercrime community. Cybercriminals conducting DDoS attacks deploy a network of hacked machines called a “botnet” to flood servers with traffic they can’t handle. Even when a DDoS attack doesn’t take a site completely offline, it usually slows it enough to make it unusable.

Small Business 98

Small Business Cybersecurity Phishing DDOS 98

Security Affairs

NOVEMBER 14, 2021

Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 340 appeared first on Security Affairs.

Spyware 53

Spyware Data breaches Ransomware Retail 53

SecureList

JULY 28, 2021

For example, April saw the active distribution of a new DDoS botnet called Simps — the name under which it introduced itself to owners of infected devices. The malware creators promoted their brainchild on a specially set-up YouTube channel and Discord server, where they discussed DDoS attacks.

DDOS 131

DDOS DNS IoT Marketing 131

SecureList

SEPTEMBER 11, 2023

Introduction Knowledge is our best weapon in the fight against cybercrime. Cuba ransomware gang Cuba data leak site The group’s offensives first got on our radar in late 2020. As with most cyberextortionists lately, the Cuba gang encrypts victims’ files and demands a ransom in exchange for a decryption key.

Ransomware 132

Ransomware Encryption Malware DDOS 132

SecureList

MAY 11, 2022

Ahead of the Anti-Ransomware Day, we summarized the tendencies that characterize ransomware landscape in 2022. This year, ransomware is no less active than before: cybercriminals continue to threaten nationwide retailers and enterprises , old variants of malware return while the new ones develop.

Ransomware 111

Ransomware Encryption Malware Cybercrime 111

SecureList

MAY 10, 2021

Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. In Q1 2021, cybercriminals also found a host of new tools for amplifying DDoS attacks. RDP servers listening on UDP port 3389 were used to amplify DDoS attacks. The vendor released a patch when they learned about the problem.

DDOS 96

DDOS Cryptocurrency Media Marketing 96

SecureList

NOVEMBER 23, 2023

There are two main reasons for that: political pressure and DDoS attacks. In the other case, organizations use geofencing to protect their resources from DDoS attacks. Highly disruptive attacks, such as the 2020 incident at a UAE bank , have underscored the potential of voice deepfakes as a cybercrime tool.

VPN 90

VPN Scams Education Internet 90

SecureList

APRIL 13, 2023

Introduction Although ransomware is still a hot topic on which we will keep on publishing, we also investigate and publish about other threats. Has encrypted communication with the C2. There are many ransomware variants that change names over time while mostly containing the same code base. Evades EDR/AV.

Malware 98

Malware Engineering Advertising Phishing 98

Security Affairs

SEPTEMBER 5, 2021

Follow me on Twitter: @securityaffairs and Facebook.

Ransomware 59

Ransomware Hacking DDOS Scams 59

SecureList

NOVEMBER 8, 2021

Q3 2021 brought two new DDoS attack vectors, potentially posing a serious threat, including for major web resources. ris , a new botnet capable of carrying out powerful DDoS attacks. For instance, a DDoS attack on a Cloudflare customer (attributed to M?ris) We won't let our #DDoS stop us doing what we love!

DDOS 107

DDOS Marketing Cryptocurrency IoT 107

Security Affairs

AUGUST 8, 2018

DDoS attacks, ransomware-based campaigns, cryptocurrency mining campaigns). We named this botnet “Black” due to the RC4 key value, “black”, that is used for traffic encryption in this botnet.” The second STAGE-1 C&C server is used for controlling malware via an encrypted connection. Pierluigi Paganini.

Malware 47

Malware DNS Encryption Banking 47