DDOS, Information Security and Ransomware

Conti Ransomware Group Diaries, Part IV: Cryptocrime

Krebs on Security

MARCH 7, 2022

Three stories here last week pored over several years’ worth of internal chat records stolen from the Conti ransomware group, the most profitable ransomware gang in operation today. Before that, Jeffrey Ladish , an information security consultant based in Oakland, Calif., We release ddos. Crypto falls in price.

Ransomware

Ransomware Cryptocurrency DDOS Scams

HelloKitty ransomware gang also targets victims with DDoS attacks

Security Affairs

NOVEMBER 1, 2021

The US FBI has published a flash alert warning private organizations of the evolution of the HelloKitty ransomware (aka FiveHands). Federal Bureau of Investigation (FBI) has sent out a flash alert warning private industry of a new feature of the HelloKitty ransomware gang (aka FiveHands). ” reads the flash alert.

DDOS

DDOS Ransomware Cybercrime Encryption

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Security Affairs

MARCH 7, 2021

The REvil ransomware operators are using DDoS attacks and voice calls to journalists and victim’s business partners to force victims to pay the ransom. Malware #Ransomware #REvil REvil Ransomware launched a service for contact to news media, companies for the best pressure at no cost, and DDoS (L3, L7) as a paid service.

DDOS

DDOS Ransomware Media Malware

Difference between Cybersecurity and Information Security

CyberSecurity Insiders

JANUARY 18, 2023

Many of you get confused with terms cybersecurity and Information Security and think that both these words are same and synonymous. As organizations face constant threats in cyberspace like DDoS, ransomware, malware and data breaches, cybersecurity helps track and mitigate threats to eliminate business risks.

Information Security

Information Security Cybersecurity DDOS Data breaches

Borat RAT, a new RAT that performs ransomware and DDoS attacks

Security Affairs

APRIL 3, 2022

Cyble researchers discovered a new remote access trojan (RAT) named Borat capable of conducting DDoS and ransomware attacks. Unlike other RATs, the Borat RAT provides Ransomware and DDOS services to attackers expanding their capabilities. DDOS – This module is used to perform a DDOS attack.

DDOS

DDOS Ransomware Spyware Encryption

Ransomware Groups Add a Third Threat Vector: DDoS

Daniel Miessler

OCTOBER 4, 2020

I’ve been writing a lot on ransomware recently , and wanted to comment on an interesting new development in attackers’ toolchests. This is the original ransomware tactic. They threaten to DDoS your company so customers can’t use your service. It’s a denial of service against your data.

DDOS

DDOS Ransomware Backups Encryption

Akamai prevented the largest DDoS attack on a US financial company

Security Affairs

SEPTEMBER 10, 2023

Akamai announced it has mitigated the largest distributed denial-of-service (DDoS) attack on a U.S. Cybersecurity firm Akamai successfully identified and prevented a massive distributed denial-of-service (DDoS) attack targeting an unnamed, leading American financial institution. financial company. gigabits per second.

DDOS

DDOS Financial Services Hacking Ransomware

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

eSecurity Planet

JANUARY 28, 2022

Microsoft in November fended off a massive distributed denial-of-service (DDoS) attack in its Azure cloud that officials said was the largest ever recorded, the latest in a wave of record attacks that washed over the IT industry in the second half of 2021. Also read: How to Stop DDoS Attacks: 6 Tips for Fighting DDoS Attacks.

DDOS

DDOS IoT Engineering Internet

Experts warn of surge in DDoS attacks targeting education institutions

Security Affairs

SEPTEMBER 15, 2020

Experts warn of a surge in the DDoS attacks against education institutions and the academic industry across the world. The DDoS attacks are causing severe issues to the targeted education institutions such as temporarily takedown of the network and online classes. were victims of ransomware attacks this year. Pierluigi Paganini.

Education

Education DDOS Advertising Cyber Attacks

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Security Affairs

JUNE 26, 2020

Upon infecting a system the bot turns it into a cryptomining client and could use it to launch distributed denial-of-service (DDoS) attacks. The malware author named the bot Satan DDoS, but Palo Alto Network’s Unit42 researchers dubbed it Lucifer because there’s another malware with the same name, the Satan Ransomware.

DDOS

DDOS Malware Advertising Passwords

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. kapuchin0 claims that the leaked code is the first breach of the HelloKitty ransomware. kapuchin0 claims that the leaked code is the first breach of the HelloKitty ransomware.

Cybercrime

Cybercrime Ransomware DDOS Encryption

Security Affairs newsletter Round 497 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 10, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Ransomware

Ransomware Cybercrime Phishing Banking

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Security Affairs

MAY 11, 2021

The FBI and Australian Australian Cyber Security Centre (ACSC) warn of an ongoing Avaddon ransomware campaign targeting organizations worldwide. “The Australian Cyber Security Centre (ACSC) is aware an ongoing ransomware campaign utilising the Avaddon Ransomware malware. Pierluigi Paganini.

Ransomware

Ransomware Backups Antivirus DDOS

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. Pierluigi Paganini.

Ransomware

Ransomware DDOS Passwords Backups

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Security Affairs

MAY 16, 2021

Avaddon ransomware gang has breached the France-based financial consultancy firm Acer Finance. Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. Acer Finance operates as an investment management company. Pierluigi Paganini.

Hacking

Hacking Ransomware DDOS Manufacturing

Ukrainian police arrested Ransomware gang behind attacks on 50 companies

Security Affairs

JANUARY 14, 2022

Ukrainian police arrested members of a ransomware gang that targeted at least 50 companies in the U.S. Ukrainian police arrested members of a ransomware affiliate group that is responsible for attacking at least 50 companies in the U.S. The gang was distributing the LockerGoga and MegaCortex ransomware families. and Europe.

Ransomware

Ransomware DDOS Telecommunications Malware

Clop Ransomware gang now contacts victims’ customers to force victims into pay a ransom

Security Affairs

MARCH 27, 2021

Clop ransomware operators now email victim’s customers and ask them to demand a ransom payment to protect their privacy to force victims into paying the ransom. ” Clop ransomware operators invited the victim’s customer to contact the victim and ask it protect their privacy by paying the ransomware. .

Ransomware

Ransomware DDOS Banking Hacking

Darkside Ransomware gang aims at influencing the stock price of their victims

Security Affairs

APRIL 23, 2021

The Darkside ransomware gang is enhancing its extortion tactics to interfere with the valuation of stocks of companies that are listed on NASDAQ or other stock markets. The Darkside ransomware operators are stepping up their extortion tactics targeting companies that are listed on NASDAQ or other stock markets with a new technique.

Ransomware

Ransomware Marketing DDOS Cybercrime

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 17, 2024

that reboots locked devices Ymir ransomware, a new stealthy ransomware grow in the wild Amazon discloses employee data breach after May 2023 MOVEit attacks A new fileless variant of Remcos RAT observed in the wild A surge in Pro-Russia cyberattacks after decision to monitor North Korean Troops in Ukraine U.S.

Cryptocurrency

Cryptocurrency Malware Hacking Ransomware

Law enforcement shutdown a long-standing DDoS-for-hire service

Security Affairs

JUNE 17, 2023

Polish police, as part of the international law enforcement operation PowerOFF, dismantled a DDoS-for-hire service that has been active since at least 2013. An international operation codenamed PowerOff led to the shutdown of a DDoS-for-hire service that has been active since at least 2013. Viewer discretion is advised.

DDOS

DDOS Computers and Electronics Cybercrime Cryptocurrency

Chinese AI platform DeepSeek faced a “large-scale” cyberattack

Security Affairs

JANUARY 28, 2025

The AI company did not share details about the attack or its origin, however likely the platform was targeted by a massive DDoS attack. .” reads a statement published by the company on its status page. The company announced that is still investigating the issue.

Artificial Intelligence

Artificial Intelligence DDOS Architecture Marketing

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Security Affairs

AUGUST 22, 2022

LockBit ransomware gang claims to have hacked the IT giant Entrust and started leaking the stolen files. The Lockbit ransomware gang claimed to have hacked the company and is threatening to leak the stolen files. Curiously, the LockBit ransomware’s Tor leak sites were unreacheable due to a DDoS attack. Entrust Corp.

DDOS

DDOS Hacking Ransomware InfoSec

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Cryptocurrency Cybercrime Artificial Intelligence

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

National Cyber Security Centre (NCSC) has issued an alert about a surge in ransomware attacks targeting education institutions. National Cyber Security Centre (NCSC), has issued an alert about a surge in ransomware attacks against education institutions. PowerShell) to easily deploy tooling or ransomware.

Education

Education Ransomware Antivirus Backups

Evolution and rise of the Avaddon Ransomware-as-a-Service

Security Affairs

APRIL 3, 2021

The Avaddon ransomware operators updated their malware after security researchers released a public decryptor in February 2021. The Avaddon ransomware family first appeared in the threat landscape in February 2020, and its authors started offering it with a Ransomware-as-a-Service (RaaS) model in June, 2020.

Ransomware

Ransomware Encryption Malware Cybercrime

REvil ransomware gang recommends that Apple buy back its data stolen in Quanta hack

Security Affairs

APRIL 21, 2021

The REvil ransomware operators are attempting to blackmail Apple after they has allegedly stolen product blueprints of the IT giant from its business partner. ” Quanta Computer was recently the victim of the REvil ransomware operators, but the vendor refused to pay a $50 million ransom. .” Its customers include Apple Inc.,

Computers and Electronics

Computers and Electronics Ransomware Hacking Wireless

A large-scale phishing campaign targets WordPress WooCommerce users

Security Affairs

APRIL 28, 2025

These web shells gave attackers full control of the server, enabling activities like injecting ads, redirecting visitors, stealing billing data, launching DDoS attacks, or conducting ransomware operations. -Fork, p0wny, and WSO) into the website’s uploads folder.

Phishing

Phishing Accountability DDOS Hacking

Ransomware world in 2021: who, how and why

SecureList

MAY 12, 2021

As the world marks the second Anti-Ransomware Day, there’s no way to deny it: ransomware has become the buzzword in the security community. Yet, much of the media attention ransomware gets is focused on chronicling which companies fall prey to it. Part I: Three preconceived ideas about ransomware.

Ransomware

Ransomware Encryption Malware Cybercrime

FBI’s investigation accidentally revealed the HelloKitty ransomware gang operates out of Ukraine

Security Affairs

DECEMBER 15, 2021

While investigating a data breach suffered by a healthcare organization, FBI accidentally revealed that it believes that the HelloKitty ransomware gang operates out of Ukraine. In November, the US FBI has published a flash alert warning private organizations of the evolution of the HelloKitty ransomware (aka FiveHands).

Ransomware

Ransomware Data breaches DDOS Healthcare

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 36

Security Affairs

MARCH 9, 2025

Cellebrite zero-day exploit used to target phone of Serbian student activist One in Four Cyberattacks in 2024 Traced to Infostealers, Huntress Reports Uncovering.NET Malware Obfuscated by Encryption and Virtualization Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal Satori Threat Intelligence Disruption: BADBOX 2.0

Malware

Malware DDOS Hacking Ransomware

Underestimating the FONIX – Ransomware as a Service could be an error

Security Affairs

OCTOBER 11, 2020

FONIX is a new Ransomware as a Service available in the threat landscape that was analyzed by SentinelLabs researchers. FONIX is a relatively new Ransomware as a Service (RaaS) analyzed by researchers from Sentinel Labs, its operators were previously specialized in the developers of binary crypters/packers. Pierluigi Paganini.

Ransomware

Ransomware Encryption Advertising DDOS

BlackCat ransomware targets another healthcare facility

Malwarebytes

FEBRUARY 22, 2023

In a statement issued Monday morning, Lehigh Valley Health Network said it had been the target of a cyberattack attributed to a ransomware gang known as BlackCat. BlackCat The ransomware-as-a-service (RaaS) group BlackCat, also known as ALPHV and Noberus, is currently one of the most active groups, and has been associated with Russia.

Healthcare

Healthcare Ransomware Backups DDOS

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Security Affairs

DECEMBER 16, 2023

The Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Another healthcare organization suffered a ransomware attack, the Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Who is Hunters International?

Ransomware

Ransomware Hacking Insurance Healthcare

Kaspersky releases a free decryptor for Yanluowang ransomware

Security Affairs

APRIL 19, 2022

Kaspersky discovered a flaw in the encryption process of the Yanluowang ransomware that allows victims to recover their files for free. Researchers from Kaspersky discovered a vulnerability in the encryption process of the Yanluowang ransomware that can be exploited to recover the files encrypted by the malware without paying the ransom.

Ransomware

Ransomware Encryption DDOS Malware

ENISA: Ransomware became a prominent threat against the transport sector in 2022

Security Affairs

MARCH 22, 2023

During the period covered by the report, the expert identified the following prime threats: ransomware attacks (38%), data related threats (30%), malware (17%), denial-of-service (DoS), distributed denial-of-service (DDoS) and ransom denial-of-service (RDoS) attacks (16%), phishing / spear phishing (10%), supply-chain attacks (10%).

Ransomware

Ransomware DDOS Cyber threats Phishing

New Yanluowang ransomware used in highly targeted attacks on large orgs

Security Affairs

OCTOBER 14, 2021

Researchers spotted a new strain of ransomware, dubbed Yanluowang, that was used in highly targeted attacks against enterprises. Researchers from Symantec Threat Hunter Team discovered a ransomware family, tracked as Yanluowang ransomware that was used in highly targeted attacks against large enterprises. Pierluigi Paganini.

Ransomware

Ransomware Encryption DDOS Hacking

Security Affairs newsletter Round 270

Security Affairs

JUNE 28, 2020

Every week the best security articles from Security Affairs free for you in your email box. Every week the best security articles from Security Affairs free for you in your email box. Every week the best security articles from Security Affairs free for you in your email box.

DDOS

DDOS Spyware Advertising Ransomware

Suspected exploitation of Apache ActiveMQ flaw CVE-2023-46604 to install HelloKitty ransomware

Security Affairs

NOVEMBER 2, 2023

Rapid7 identified exploitation attempts of the CVE-2023-46604 flaw to deploy HelloKitty ransomware in two different customer environments. “In both instances, the adversary attempted to deploy ransomware binaries on target systems in an effort to ransom the victim organizations. ” reads the report published by Rapid7.

Ransomware

Ransomware Cybercrime Software Encryption

Eternity Project: You can pay $260 for a stealer and $490 for a ransomware

Security Affairs

MAY 15, 2022

Researchers at cybersecurity firm Cyble analyzed a Tor website named named ‘Eternity Project’ that offers for sale a broad range of malware, including stealers, miners, ransomware, and DDoS Bots. The post Eternity Project: You can pay $260 for a stealer and $490 for a ransomware appeared first on Security Affairs.

Ransomware

Ransomware DDOS Cybercrime Malware

Security Affairs newsletter Round 445 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 11, 2023

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform Serbian pleads guilty to running ‘Monopoly’ dark web drug market McLaren Health Care revealed that a data breach impacted 2.2 Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams How a ‘Refund Fraud’ Gang Stole $700,000 From Amazon Info from 5.6

DDOS

DDOS Data breaches Ransomware Marketing

Security Affairs newsletter Round 514 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 8, 2025

Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Hacking Artificial Intelligence Cybercrime

Security Roundup October 2024

BH Consulting

OCTOBER 24, 2024

The malevolent seven: ENISA report identifies prime cybersecurity threats Ransomware; malware; social engineering; threats against data; threats against availability (denial of service); information manipulation and interference; and supply chain attacks. Information Security Buzz has a good summary of the main points.

Social Engineering

Social Engineering Passwords Cybersecurity Ransomware

Data wiper attacks on Ukraine were planned at least in November and used ransomware as decoy

Security Affairs

FEBRUARY 24, 2022

Experts reported that the wiper attacks that yesterday hit hundreds of systems in Ukraine used a GoLang-based ransomware decoy. According to the security firm, the infections followed the DDoS attacks against several Ukrainian websites, including Ministry of Foreign Affairs, Cabinet of Ministers, and Rada. Pierluigi Paganini.

Ransomware

Ransomware DDOS Malware Cyber Attacks

Security Affairs newsletter Round 522 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MAY 4, 2025

Every week the best security articles from Security Affairs are free in your email box. Rhysida Ransomware gang claims the hack of the Government of Peru DragonForce group claims the theft of data after Co-op cyberattack U.S. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cyber Attacks

Cyber Attacks Cybercrime Malware Phishing

Conti Ransomware Group Diaries, Part IV: Cryptocrime

HelloKitty ransomware gang also targets victims with DDoS attacks

Trending Sources

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Difference between Cybersecurity and Information Security

Borat RAT, a new RAT that performs ransomware and DDoS attacks

Ransomware Groups Add a Third Threat Vector: DDoS

Akamai prevented the largest DDoS attack on a US financial company

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

Experts warn of surge in DDoS attacks targeting education institutions

New Lucifer DDoS botnet targets Windows systems with multiple exploits

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs newsletter Round 497 by Pierluigi Paganini – INTERNATIONAL EDITION

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Avoslocker ransomware gang targets US critical infrastructure

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Ukrainian police arrested Ransomware gang behind attacks on 50 companies

Clop Ransomware gang now contacts victims’ customers to force victims into pay a ransom

Darkside Ransomware gang aims at influencing the stock price of their victims

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Law enforcement shutdown a long-standing DDoS-for-hire service

Chinese AI platform DeepSeek faced a “large-scale” cyberattack

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

NCSC warns of a surge in ransomware attacks on education institutions

Evolution and rise of the Avaddon Ransomware-as-a-Service

REvil ransomware gang recommends that Apple buy back its data stolen in Quanta hack

A large-scale phishing campaign targets WordPress WooCommerce users

Ransomware world in 2021: who, how and why

FBI’s investigation accidentally revealed the HelloKitty ransomware gang operates out of Ukraine

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 36

Underestimating the FONIX – Ransomware as a Service could be an error

BlackCat ransomware targets another healthcare facility

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Kaspersky releases a free decryptor for Yanluowang ransomware

ENISA: Ransomware became a prominent threat against the transport sector in 2022

New Yanluowang ransomware used in highly targeted attacks on large orgs

Security Affairs newsletter Round 270

Suspected exploitation of Apache ActiveMQ flaw CVE-2023-46604 to install HelloKitty ransomware

Eternity Project: You can pay $260 for a stealer and $490 for a ransomware

Security Affairs newsletter Round 445 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 514 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Roundup October 2024

Data wiper attacks on Ukraine were planned at least in November and used ransomware as decoy

Security Affairs newsletter Round 522 by Pierluigi Paganini – INTERNATIONAL EDITION

Stay Connected