Adam Levin

JUNE 4, 2021

You would think that ExaGrid, a backup appliance and anti-ransomware service might know how to avoid ransomware, but it was hit. . million after it was hit with Conti ransomware. . The FBI announced last month that Conti ransomware had been used against the Irish healthcare system and at least sixteen U.S.

Ransomware 289

Ransomware Backups Insurance Healthcare 289

Security Affairs

MARCH 20, 2025

A data breach at the Pennsylvania State Education Association exposed the personal information of over 500,000 individuals. The Pennsylvania State Education Association (PSEA) suffered a data breach that impacted 517,487 individuals. PSEA is affiliated with the National Education Association (NEA).

Education 67

Education Data breaches Identity Theft Insurance 67

Tech Republic Security

AUGUST 24, 2022

Analyzing over 100 prominent ransomware incidents, Barracuda found the top targeted sectors to be education, municipalities, healthcare, infrastructure and financial. The post How ransomware attacks target specific industries appeared first on TechRepublic.

Ransomware 207

Ransomware Healthcare Education Network Security 207

Security Boulevard

JANUARY 10, 2025

Giant education software provider PowerSchool reported that hackers using compromised credentials access a database and stole student and teacher data in an attack that the company said was not ransomware, though a ransom apparently was paid. Affected K-12 school districts are scrambling to alert parents and staffs.

Education 115

Education Ransomware Software Data privacy 115

The Last Watchdog

OCTOBER 23, 2024

INE Security , a leading provider of cybersecurity training and certifications, today shared its cybersecurity training for cyber hygiene practices for small businesses, underscoring the critical role of continuous education in safeguarding digital assets. INE Security emphasizes the importance of regular training forall employees.

Small Business 162

Small Business Data breaches Backups Passwords 162

Security Boulevard

APRIL 25, 2025

From ransomware attacks disrupting school systems to phishing scams targeting student credentials, educational institutions are prime targets for cybercriminals. Cybersecurity education is critical to protecting individual students and the vast, complex systems that support their learning.

Cybersecurity 102

Cybersecurity Education Scams Phishing 102

Security Affairs

JULY 7, 2024

Alabama’s education superintendent disclosed a data breach following a hacking attempt on the Alabama State Department of Education. The Alabama State Department of Education announced it had thwarted a ransomware attack on June 17, however, threat actors accessed some data and disrupted services before the attack was stopped.

Education 141

Education Data breaches Hacking Banking 141

eSecurity Planet

MARCH 17, 2025

The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Federal Bureau of Investigation (FBI) and the Multi-State Information Sharing and Analysis Center (MS-ISAC), has released a joint cybersecurity advisory warning organizations about the escalating threat posed by the Medusa ransomware.

Ransomware 73

Ransomware Backups Firmware Insurance 73

Centraleyes

MAY 21, 2025

Most people think of running a college or university as a purely educational pursuit. And while that remains at the heart of higher education, the reality today is much broader. These risks threaten an institutions ability to educate, innovate, and serve its community. Thats a 69% increase compared to the same time last year.

Education 52

Education Risk Cyber Insurance Insurance 52

Malwarebytes

MARCH 17, 2025

The FBI warned specifically about that malware leading to ransomware attacks, but we’ve also seen similar sites that install browser hijackers, adware, and potentially unwanted programs (PUPs). The FBI Denver Field Office has warned of an increasing number of scammy websites offering free online file converter services.

Malware 140

Malware Adware Education Phishing 140

Malwarebytes

JANUARY 6, 2025

A US chain of dental offices known as Westend Dental LLC denied a 2020 ransomware attack and its associated data breach, instead telling their customers that data was lost due to an accidentally formatted hard drive. In October 2020, Westend Dental was attacked by the Medusa Locker ransomware group.

Data breaches 145

Data breaches Ransomware Passwords Insurance 145

Security Affairs

OCTOBER 13, 2024

GorillaBot: The New King of DDoS Attacks Hidden cryptocurrency mining and theft campaign affected over 28,000 users The Mongolian Skimmer: different clothes, equally dangerous Akira and Fog ransomware now exploit critical Veeam RCE flaw Ransomware Report: Unveiling Trends in Attack Payouts and Negotiations Careful About What App Promotion Ads Recommend! (..)

Malware 126

Malware DDOS Cryptocurrency Education 126

The Last Watchdog

MAY 5, 2022

Ransomware? Well, the stats are even scarier with over 50% increase in ransomware attacks in 2021, compared to 2020. The media paid close attention to ransomware attacks last year, as they had a significant impact on Colonial Pipeline, the nation’s largest fuel distributor, and JBS, the nation’s largest meat distributor.

Ransomware 247

Ransomware Risk Internet Internet 247

Security Affairs

MARCH 13, 2025

The Medusa ransomware operation hit over 300 organizations in critical infrastructure sectors in the United States until February 2025. The FBI, CISA, and MS-ISAC have issued a joint advisory detailing Medusa ransomware tactics, techniques, and indicators of compromise (IOCs) based on FBI investigations as recent as February 2025.

Ransomware 73

Ransomware Encryption Cryptocurrency Insurance 73

Krebs on Security

AUGUST 5, 2024

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. ThreatLabz found Dark Angels has conducted some of the largest ransomware attacks to date, and yet little is known about the group.

Ransomware 286

Ransomware Insurance Healthcare Cybercrime 286

Security Affairs

APRIL 5, 2025

Port of Seattle is notifying 90,000 people of a data breach after personal data was stolen in a ransomware attack in August 2024. In September 2024, Port of Seattle confirmed that the Rhysida ransomware group was behind the cyberattack. The Rhysida ransomware group has been active since May 2023.

Data breaches 99

Data breaches Ransomware Cyber Attacks Manufacturing 99

Krebs on Security

DECEMBER 8, 2022

Ransomware groups are constantly devising new methods for infecting victims and convincing them to pay up, but a couple of strategies tested recently seem especially devious. Department of Health and Human Services (HHS) warned that Venus ransomware attacks were targeting a number of U.S. “ Cl0p ” a.k.a.

Healthcare 331

Healthcare Backups Ransomware Insurance 331

SecureWorld News

NOVEMBER 13, 2024

MOVEit, a file transfer software developed by Progress Software, was exploited by the Cl0p ransomware group, which used a Zero-Day vulnerability to steal sensitive data from organizations using the software. Notable organizations hit include major financial firms, government agencies, and educational institutions worldwide.

Data breaches 117

Data breaches Identity Theft Education Software 117

The Last Watchdog

MARCH 24, 2025

Protection via training, education Defending against these evolving threats requires more than just technology it demands well-trained personnel at all levels. Warn Healthcare leaders are urged to treat ongoing cyber education as mandatory continuing education, akin to medical training, to ingrain a culture of security mindfulness.

Healthcare 113

Healthcare Penetration Testing Education Cyber threats 113

SecureWorld News

FEBRUARY 5, 2025

Ransomware and state-sponsored attacks continue to escalate Canada's critical sectorsincluding healthcare, energy, education, and retailhave become prime targets for cybercriminals. Ransomware is no longer an "if" but a "when," making proactive defense strategies essential. Key findings: the cyber threat landscape in 2025 1.

InfoSec 76

InfoSec Cybersecurity Energy and Utilities Education 76

Security Affairs

SEPTEMBER 20, 2024

Microsoft warns that financially motivated threat actor Vanilla Tempest is using INC ransomware in attacks aimed at the healthcare sector in the U.S. Microsoft observed the financially motivated threat actor tracked as Vanilla Tempest using INC ransomware for the first time to target the healthcare sector in the United States.

Healthcare 134

Healthcare Ransomware Cybercrime Manufacturing 134

The Last Watchdog

APRIL 16, 2025

Key discoveries from YOBB include Polymorphic Extensions, Browser Ransomware and Browser Syncjacking, all of which have been covered by major publications such as Forbes, Bleeping Computer and Mashable. She is also a published author of The Browser Security Field Manual.

Architecture 147

Architecture Ransomware Data breaches Education 147

Security Affairs

AUGUST 7, 2024

The Rhysida Ransomware group claims to have breached Bayhealth Hospital in Delaware and offers alleged stolen data for 25 BTC. The Rhysida Ransomware group claims to have breached Bayhealth Hospital and added the hospital to the list of victims on its Tor leak site. Bayhealth Hospital in Dover, Delaware breached by Rhysida Ransomware.

Ransomware 139

Ransomware Healthcare Hacking Manufacturing 139

Krebs on Security

DECEMBER 3, 2021

Rarely do cybercriminal gangs that deploy ransomware gain the initial access to the target themselves. In this post we’ll look at the clues left behind by “ Babam ,” the handle chosen by a cybercriminal who has sold such access to ransomware groups on many occasions over the past few years. Image: Flashpoint.

Ransomware 354

Ransomware Passwords Accountability Cybercrime 354

Security Affairs

APRIL 21, 2024

Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments. Like other ransomware gangs, the group has developed a Linux encryptor to target VMware ESXi servers. It was this first time that the operators adopted this tactic.

Ransomware 142

Ransomware Encryption Antivirus Architecture 142

Security Affairs

NOVEMBER 17, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware 117

Malware Antivirus Encryption Education 117

Jane Frankland

MAY 18, 2025

This has given rise to Cybercrime-as-a-Service (CaaS) and Hacking-as-a-Service (HaaS)turnkey offerings that provide everything from ransomware kits to AI-generated malware and phishing campaigns. But when a cyberattack occursespecially one involving ransomware, data corruption, or advanced persistent threatsthat assumption breaks down.

Cybersecurity 130

Cybersecurity Backups Ransomware Firewall 130

The Last Watchdog

NOVEMBER 19, 2023

That’s largely because the splashy headlines and online buzz created by bringing down the pair of casinos will only motivate more mid-level cybercriminals to follow Scattered Spiders’ model, putting wide-reaching businesses at risk of ransomware attacks due to the rise of ransomware-as-a-service models.

Social Engineering 310

Social Engineering Passwords Authentication Marketing 310

Security Affairs

SEPTEMBER 30, 2024

Community Clinic of Maui experienced a data breach impacting over 120,000 people following a LockBit ransomware attack. In June, the Lockbit ransomware gang took credit for the attack. ’ The Community Clinic of Maui now discloses a data breach impacting 123882 people following the LockBit ransomware attack.

Data breaches 137

Data breaches Ransomware Healthcare Cyber Attacks 137

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches 119

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 119

Security Affairs

SEPTEMBER 15, 2024

Port of Seattle confirmed on Friday that the Rhysida ransomware group was behind the cyberattack that hit the agency in August. Port of Seattle confirmed on Friday that the Rhysida ransomware group was behind the cyberattack. The Rhysida ransomware group has been active since May 2023.

Ransomware 132

Ransomware Cyber Attacks Internet Internet 132

Digital Shadows

JANUARY 14, 2025

Key Findings The last quarter of 2024 proved to be a pivotal period for ransomware activity, marked by emerging threats and unexpected shifts among established groups. Ransomware Activity Hits All-Time High in December Ransomware attacks have been climbing steadily over the past few years, despite some temporary dips along the way.

Ransomware 126

Ransomware Social Engineering Phishing Manufacturing 126

Security Boulevard

MAY 27, 2025

From predictive grading tools to personalized learning platforms, artificial intelligence (AI) is quickly making its mark in K-12 education. With rising threats like phishing and ransomware putting schools at risk, AI-powered K-12 cybersecurity solutions are being. Heres how cybersecurity AI actually helps defend your district.

Artificial Intelligence 64

Artificial Intelligence Cybersecurity Education Phishing 64

The Last Watchdog

APRIL 13, 2022

Cybercrime is big business as global losses to ransomware are projected to reach $42 billion within the next two years.The economic sanctions that many nations have put in place to influence Russia will most likely trigger an increase in the illicit business of cybercrime to help offset losses to what was legitimate trade.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Adam Levin

MARCH 17, 2022

Phishing emails are the most common vector for attacks on corporate networks, especially in ransomware and business email compromise (BEC) campaigns; anything that involves large groups of employees to continuously send updated file attachments or links to a reply-all list or an individual, creates cybersecurity issues.

Cyber threats 229

Cyber threats Phishing Passwords Malware 229

SecureList

NOVEMBER 29, 2024

Interestingly, Twelve shares infrastructure, utilities and TTPs (Tactics, Techniques and Procedures) with the DARKSTAR ransomware group (formerly known as Shadow or COMET). This includes the use of the ngrok utility for tunneling, Radmin, AnyDesk and PuTTY for remote access, the Shamoon wiper and a leaked version of the LockBit ransomware.

Energy and Utilities 104

Energy and Utilities Ransomware Malware Government 104

Anton on Security

JULY 7, 2022

My favorite quotes from the report follow below: “Another common tactic that continues to be observed is when bad actors actively impersonate legitimate sounding organizations (especially in journalism or education) with the objective of interacting with the target in a trusted manner before launching an attack. ” [A.C.?—?to not malware?

Cybersecurity 246

Cybersecurity Cryptocurrency Ransomware Education 246