Cybercrime, Ransomware and Telecommunications

RansomHub gang claims the hack of the telecommunications giant Frontier Communications

Security Affairs

JUNE 4, 2024

The RansomHub ransomware group added the American telecommunications company Frontier Comunications to the list of victims on its Tor leak site. The RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications.

Telecommunications

Telecommunications Hacking Data breaches Cybercrime

HIVE Ransomware Shut Down by International Law Enforcement

SecureWorld News

JANUARY 27, 2023

The United States Department of Justice (DOJ) recently announced that it has successfully taken down the HIVE ransomware network, an international cybercrime ring that had been responsible for stealing and encrypting the data of more than 1,500 companies from 80 different countries. Cybercrime is a constantly evolving threat.

Ransomware

Ransomware Cybercrime Cryptocurrency Telecommunications

Evolving cyberattacks, alert fatigue creating DFIR burnout, regulatory risk

CSO Magazine

FEBRUARY 16, 2023

The evolution of cybercrime is weighing heavily on digital forensics and incident response (DFIR) teams, leading to significant burnout and potential regulatory risk. That’s according to the 2023 State of Enterprise DFIR survey by Magnet Forensics , a developer of digital investigation solutions.

Risk

Risk Telecommunications Cybercrime Manufacturing

Frontier Communications data breach impacted over 750,000 individuals

Security Affairs

JUNE 9, 2024

Last week, the RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications. The RansomHub group claimed to have stolen 5GB of data from the telecommunications giant.

Data breaches

Data breaches Identity Theft Telecommunications Cybercrime

Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate

Security Affairs

JANUARY 2, 2022

The Lapsus$ ransomware hit Impresa, the largest media conglomerate in Portugal and the owner of SIC and Expresso. The Lapsus$ ransomware gang has compromised the infrastructure of Impresa, the largest media conglomerate in Portugal. The gang also targeted the South American telecommunication providers Claro and Embratel.

Media

Media Ransomware Telecommunications Accountability

Security Affairs newsletter Round 475 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 9, 2024

New York Times source code compromised via exposed GitHub token SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform Pandabuy was extorted twice by the same threat actor UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces Chinese threat actor exploits old ThinkPHP flaws since October 2023 A new Linux (..)

Data breaches

Data breaches Banking Hacking Malware

G7 calls on Russia to dismantle operations of ransomware gangs within its borders

Security Affairs

JUNE 14, 2021

The member states of the G7 group have called on Russia and other states to dismantle operations of the ransomware gangs operating within their countries. G7 member states have called on Russia and other states to dismantle operations of ransomware gangs operating within their countries. SecurityAffairs – hacking, ransomware).

Ransomware

Ransomware Cybercrime Telecommunications Accountability

Ransom House ransomware attack hit Hospital Clinic de Barcelona

Security Affairs

MARCH 6, 2023

On Sunday, a ransomware attack hit the Hospital Clinic de Barcelona, one of the main hospitals of the Catalan city. A local cybersecurity agency revealed that the attack was launched by a ransomware group known as Ransom House. At this time the ransomware gang behind the attack has yet to demand the payment of a ransom.

Ransomware

Ransomware Telecommunications Cyber Attacks Data breaches

Ukrainian police arrested Ransomware gang behind attacks on 50 companies

Security Affairs

JANUARY 14, 2022

Ukrainian police arrested members of a ransomware gang that targeted at least 50 companies in the U.S. Ukrainian police arrested members of a ransomware affiliate group that is responsible for attacking at least 50 companies in the U.S. The gang was distributing the LockerGoga and MegaCortex ransomware families. and Europe.

Ransomware

Ransomware DDOS Telecommunications Malware

RansomBoggs Ransomware hit several Ukrainian entities, experts attribute it to Russia

Security Affairs

NOVEMBER 28, 2022

Several Ukrainian organizations were hit by Russia-based RansomBoggs Ransomware in the last week, ESET reports. Researchers from ESET observed multiple attacks involving a new family of ransomware, tracked as RansomBoggs ransomware, against Ukrainian organizations. MSIL/Filecoder.RansomBoggs.A

Ransomware

Ransomware Encryption Telecommunications Malware

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

The financially-motivated hacker group FIN11 has started spreading ransomware to monetize its cyber criminal activities. The financially-motivated hacker group FIN11 has switched tactics starting using ransomware as the main monetization method. ” reads the analysis published by FireEye.

Ransomware

Ransomware Malware Telecommunications Advertising

At least 31 US Businesses targeted with WastedLocker Ransomware

Security Affairs

JUNE 29, 2020

Tens of organizations in the United States have been targeted with the recently discovered WastedLocker ransomware. Security experts from Symantec reported that at least 31 organizations in the United States have been targeted with the recently discovered WastedLocker ransomware. ” reads the analysis published by Symantec.

Ransomware

Ransomware Telecommunications Manufacturing Malware

Telecom giant Lumen suffered a ransomware attack and disclose a second incident

Security Affairs

MARCH 28, 2023

Telecommunications giant Lumen Technologies discovered two cybersecurity incidents, including a ransomware attack. One of the incidents is a ransomware attack that impacted a limited number of its servers that support a segmented hosting service. ” reads the 8-k form filed by the company with SEC.

Ransomware

Ransomware Telecommunications Technology Cybersecurity

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp.

Cybersecurity

Cybersecurity Cybercrime Education Government

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Security Affairs

OCTOBER 24, 2020

The systems at the US-based ski and golf resort operator were infected with the WastedLocker ransomware, the incident impacted reservation systems. Boyne Resorts was the victim of WastedLocker ransomware attack, the incident has impacted reservation systems. This group has been active since at least 2007, in December 2019, the U.S.

Ransomware

Ransomware Telecommunications Banking Advertising

Costa Rica Declares State of Emergency After Conti Ransomware Attack

SecureWorld News

MAY 12, 2022

Newly elected Costa Rican President Rodrigo Chaves declared a state of emergency after several government agencies were hit with ransomware. Conti is a Russian affiliated ransomware gang that has been responsible for hundreds of incidents across the globe in the last couple years. offers reward for Conti threat actors.

Ransomware

Ransomware Government Telecommunications Cybercrime

Security Affairs newsletter Round 440 by Pierluigi Paganini – International edition

Security Affairs

OCTOBER 8, 2023

QakBot threat actors are still operational after the August takedown Ransomware attack on MGM Resorts costs $110 Million Cybersecurity, why a hotline number could be important? Every week the best security articles from Security Affairs are free for you in your email box.

Data breaches

Data breaches Cybercrime Ransomware Hacking

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe.

Government

Government Malware Telecommunications Cybercrime

Sinclair TV stations downtime allegedly caused by a ransomware attack

Security Affairs

OCTOBER 18, 2021

A ransomware attack is likely the cause of the recent downtime for TV stations owned by the Sinclair Broadcast Group broadcast television company. TV stations owned by the Sinclair Broadcast Group went down over the weekend officially due to technical issues, but some media [ 1 , 2 ] reported that it was a victim of a ransomware attack.

Ransomware

Ransomware Media Telecommunications Marketing

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs

MARCH 21, 2022

Microsoft announced that is investigating claims that the Lapsus$ cybercrime gang breached their internal Azure DevOps source code repositories and stolen data. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T.

Hacking

Hacking Telecommunications InfoSec Cybercrime

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe.

Government

Government Malware Telecommunications Cybercrime

Security Affairs newsletter Round 438 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 24, 2023

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5

Cyber Attacks

Cyber Attacks Firewall Data breaches Telecommunications

4 Things the G7 Leaders Just Said About Cyberspace

SecureWorld News

JUNE 14, 2021

Ransomware gets a specific mention: "We also commit to work together to urgently address the escalating shared threat from criminal ransomware networks. We call on all states to urgently identify and disrupt ransomware criminal networks operating from within their borders, and hold those networks accountable for their actions.".

Telecommunications

Telecommunications Cybercrime Ransomware Accountability

4 Things the G7 Leaders Just Said About Cyberspace

SecureWorld News

JUNE 14, 2021

Ransomware gets a specific mention: "We also commit to work together to urgently address the escalating shared threat from criminal ransomware networks. We call on all states to urgently identify and disrupt ransomware criminal networks operating from within their borders, and hold those networks accountable for their actions.".

Telecommunications

Telecommunications Cybercrime Ransomware Accountability

Security Affairs newsletter Round 372 by Pierluigi Paganini

Security Affairs

JULY 3, 2022

Every week the best security articles from Security Affairs for free in your email box.

Telecommunications

Telecommunications Media DDOS Malware

Security Affairs newsletter Round 412 by Pierluigi Paganini – International edition

Security Affairs

MARCH 26, 2023

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites Pwn2Own Vancouver 2023 awarded $1,035,000 and a Tesla for 27 0-days CISA announced the Pre-Ransomware Notifications initiative China-linked hackers target telecommunication providers in the Middle East City of Toronto is one of the victims hacked by Clop gang using GoAnywhere (..)

Data breaches

Data breaches DDOS Backups Ransomware

The Evolving Cybersecurity Threats to Critical National Infrastructure

Thales Cloud Protection & Licensing

OCTOBER 23, 2023

For example, #CybersecurityAwarenessMonth, celebrating its 20th anniversary this October, aims to empower people and organizations across every sector to protect critical assets against cybercrime. Reducing the risk of attacks such as ransomware and malware on CNI will be paramount to the stability of national economies for the years to come.

Energy and Utilities

Energy and Utilities Cybersecurity Ransomware Technology

Microsoft has taken legal and technical action to dismantle the Zloader botnet

Security Affairs

APRIL 13, 2022

Microsoft dismantled the C2 infrastructure used by the ZLoader trojan with the help of telecommunications providers around the world and cybersecurity firms. The company also identified one of the perpetrators a man named Denis Malikov, involved in the development of a ZLoader component used to deliver ransomware. Zeus OpenSSL).

Banking

Banking Malware Telecommunications Antivirus

Access as a Service Rising in Popularity

SecureWorld News

AUGUST 10, 2021

And then you can do whatever you want in the system, you could put ransomware in there, you could copy the database and use that database, either to sell it or to get the data and use it for fishing. It notes that access as a service has become a significant enabler for ransomware attacks. Sometimes they have credit cards in there.

Telecommunications

Telecommunications Marketing Ransomware Accountability

Ubisoft suffered a cyber security incident that caused a temporary disruption

Security Affairs

MARCH 12, 2022

Thursday, March 10, Lapsus$ ransomware gang announced they’re starting to recruit insiders employed within major technology giants and ISPs, such companies include Microsoft, Apple, EA Games and IBM. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T. Pierluigi Paganini.

Data breaches

Data breaches Telecommunications Hacking Cyber Attacks

Cybersecurity awareness: Train your employees and reduce cyber threats

IT Security Guru

DECEMBER 1, 2022

During the last few years, we have all become witnesses to intense cybercrime and sophisticated cyberattacks. As cybercrime continues to increase, the human element can play the most important role in cybersecurity posture and hygiene. This upward trend is further fuelled by a shift in working conditions like working remotely.

Cyber threats

Cyber threats Cybersecurity Education Risk

Emotet campaign hits Lithuania’s National Public Health Center and several state institutions

Security Affairs

DECEMBER 31, 2020

NVSC IT staff is cleaning infected systems and restoring the operations with the help of the experts from the Central State Telecommunications Center and the National Cyber ??Security Emotet is back on Christmas Eve , after two months of silence, cybercrime operators are sending out spam messages to deliver the infamous Trickbot Trojan.

Passwords

Passwords Malware Telecommunications Banking

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017. On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware.

Phishing

Phishing Education Accountability Telecommunications

Spotlight on Cybersecurity Leaders: Dr. Cheryl Cooper

SecureWorld News

MARCH 24, 2022

Answer: The decision to pursue a career in cybersecurity came easy to me, as I was tenured as a technology and telecommunications professional for 15 years. As a military veteran of the United States Navy, I had a foundational background working in telecommunications. Question: What encouraged you to join your current organization?

Cybersecurity

Cybersecurity Telecommunications Mobile IoT

Top 5 Industries Most Vulnerable to Data Breaches in 2023

Security Boulevard

JUNE 26, 2023

Unfortunately, the increasing reliance on digital systems and capabilities has also attracted an ever-growing number of malicious actors seeking to defraud businesses through phishing , social engineering , or ransomware attacks. The end result of these types of cyber attacks are often highly public and damaging data breaches.

Data breaches

Data breaches Healthcare Telecommunications Financial Services

T-Mobile Bought Leaked Customer Data, Failed to Contain Incident

SecureWorld News

APRIL 14, 2022

After publicly acknowledging the data breach, the telecommunications giant hired a third-party security vendor to investigate the incident. Lapsus$ later posted on their Telegram channel saying that someone had hacked into a device the group was using to store the stolen Nvidia data and deployed ransomware. They claim it was Nvidia.

Mobile

Mobile Telecommunications Data breaches Hacking

New ransomware trends in 2023

SecureList

MAY 11, 2023

Ransomware keeps making headlines. attempted ransomware attacks which was 20% more than in 2021 (61.7M). attempted ransomware attacks which was 20% more than in 2021 (61.7M). Although early 2023 saw a slight decline in the number of ransomware attacks, they were more sophisticated and better targeted.

Ransomware

Ransomware Malware Architecture Telecommunications

Data Loss Prevention for Small and Medium-Sized Businesses

IT Security Guru

JULY 28, 2023

CyberEdge Group’s ninth annual Cyberthreat Defense Report (CDR) highlighted that ransomware attacks’ main target was mid-sized businesses. This is because such an attack will likely avoid confronting large enterprises’ powerful cybersecurity strongholds or drawing the attention of law enforcement agencies.

Data breaches

Data breaches Risk Education Telecommunications

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

According to the same article, another such attack took place in the late 1990s when the American military attacked a Serbian telecommunications network. On the very first day of the conflict (February 24, 2022), a massive wave of indiscriminate pseudo-ransomware and wiper attacks hit Ukrainian entities.

DDOS

DDOS Ransomware Government Energy and Utilities

Globant suffers network breach due to LAPSUS$ compromise

Malwarebytes

APRIL 1, 2022

When LAPSUS first grabbed the attention of the cybersecurity community, they had already compromised companies like Impresa, the largest media conglomerate in Brazil; Claro, one of Brazil’s telecommunications operators; and Brazil’s Ministry of Health. Notably, their use of Spanish and Portuguese was akin to native speakers.

Hacking

Hacking Social Engineering Telecommunications Cybersecurity

Ransomware world in 2021: who, how and why

SecureList

MAY 12, 2021

As the world marks the second Anti-Ransomware Day, there’s no way to deny it: ransomware has become the buzzword in the security community. Yet, much of the media attention ransomware gets is focused on chronicling which companies fall prey to it. Part I: Three preconceived ideas about ransomware.

Ransomware

Ransomware Encryption Malware Cybercrime

Are Bad Bots Unleashing Havoc in the Digital Realm?

SecureWorld News

JUNE 18, 2023

Gaming (58.7%) and telecommunications (47.7%) had the highest bad bot traffic on their websites and applications. Spreading malware: Bots play a role in distributing malware, such as viruses, trojans, and ransomware. Taking the lead were Germany with 68.6%, Ireland with 45.1%, and Singapore with 43.1%.

Passwords

Passwords Antivirus Identity Theft Internet

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. 24, Russia invades Ukraine, and fault lines quickly begin to appear in the cybercrime underground. I will also continue to post on LinkedIn about new stories in 2023. Uber blames LAPSUS$ for the intrusion.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Law enforcement raids ransomware group that counted US universities among its targets

SC Magazine

JUNE 16, 2021

Ukrainian authorities display seized money in a June 15 raid that resulted in the arrest of six individuals alleged to be part of the Cl0p ransomware gang. and Korean authorities, arrested six individuals alleged to be part of the Cl0p ransomware gang that counted U.S. Credit: Ukrainian Cyber Police). universities among its targets.

Ransomware

Ransomware Telecommunications Media Cybercrime

RansomHub gang claims the hack of the telecommunications giant Frontier Communications

HIVE Ransomware Shut Down by International Law Enforcement

Trending Sources

Evolving cyberattacks, alert fatigue creating DFIR burnout, regulatory risk

Frontier Communications data breach impacted over 750,000 individuals

Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate

Security Affairs newsletter Round 475 by Pierluigi Paganini – INTERNATIONAL EDITION

G7 calls on Russia to dismantle operations of ransomware gangs within its borders

Ransom House ransomware attack hit Hospital Clinic de Barcelona

Ukrainian police arrested Ransomware gang behind attacks on 50 companies

RansomBoggs Ransomware hit several Ukrainian entities, experts attribute it to Russia

FIN11 gang started deploying ransomware to monetize its operations

At least 31 US Businesses targeted with WastedLocker Ransomware

Telecom giant Lumen suffered a ransomware attack and disclose a second incident

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Costa Rica Declares State of Emergency After Conti Ransomware Attack

Security Affairs newsletter Round 440 by Pierluigi Paganini – International edition

Raspberry Robin malware used in attacks against Telecom and Governments

Sinclair TV stations downtime allegedly caused by a ransomware attack

Lapsus$ gang claims to have hacked Microsoft source code repositories

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs newsletter Round 438 by Pierluigi Paganini – International edition

4 Things the G7 Leaders Just Said About Cyberspace

4 Things the G7 Leaders Just Said About Cyberspace

Security Affairs newsletter Round 372 by Pierluigi Paganini

Security Affairs newsletter Round 412 by Pierluigi Paganini – International edition

The Evolving Cybersecurity Threats to Critical National Infrastructure

Microsoft has taken legal and technical action to dismantle the Zloader botnet

Access as a Service Rising in Popularity

Ubisoft suffered a cyber security incident that caused a temporary disruption

Cybersecurity awareness: Train your employees and reduce cyber threats

Emotet campaign hits Lithuania’s National Public Health Center and several state institutions

Google TAG warns of Russia-linked APT groups targeting Ukraine

Spotlight on Cybersecurity Leaders: Dr. Cheryl Cooper

Top 5 Industries Most Vulnerable to Data Breaches in 2023

T-Mobile Bought Leaked Customer Data, Failed to Contain Incident

New ransomware trends in 2023

Data Loss Prevention for Small and Medium-Sized Businesses

Reassessing cyberwarfare. Lessons learned in 2022

Globant suffers network breach due to LAPSUS$ compromise

Ransomware world in 2021: who, how and why

Are Bad Bots Unleashing Havoc in the Digital Realm?

Happy 13th Birthday, KrebsOnSecurity!

Law enforcement raids ransomware group that counted US universities among its targets

Stay Connected