Remove Encryption Remove Healthcare Remove Malware
article thumbnail

NailaoLocker ransomware targets EU healthcare-related entities

Security Affairs

NailaoLocker ransomware is a new threat that targeted European healthcare organizations from June to October 2024. This launches the malware routine.” NailaoLocker ransomware is written in C++,the researchers said that the malware is not sophisticated and is poorly designed. ” continues the report.

article thumbnail

A glimmer of good news on the ransomware front, as encryption rates plummet

Graham Cluley

And boy do we need some good news - amid reports that 389 US-based healthcare institutions were hit by ransomware last year - more than one every single day. No-one would be bold enough to say that the ransomware problem is receding, but a newly-published report by Microsoft does deliver a slither of encouraging news amongst the gloom.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Bitdefender released a decryptor for the ShrinkLocker ransomware

Security Affairs

Bitdefender released a decryptor for the ShrinkLocker ransomware, which modifies BitLocker configurations to encrypt a system’s drives. Unlike modern ransomware it doesn’t rely on sophisticated encryption algorithms and modifies BitLocker configurations to encrypt a system’s drives.

article thumbnail

RansomHouse gang claims the hack of the Loretto Hospital in Chicago

Security Affairs

They provide healthcare services including: primary care, geriatric medicine, vision care, behavioral health services, pediatrics, womens health, pediatric medicine, family planning and dental services. Unlike other extortion group, the gang doesnt encrypt data, but focuses on data theft to speed up its activity.

Hacking 118
article thumbnail

Qilin ransomware gang now offers a “Call Lawyer” feature to pressure victims

Security Affairs

The Qilin ransomware group has been active since at least August 2022 but gained attention in June 2024 for attacking Synnovis , a UK governmental service provider for healthcare. The group typically employs “double extortion,” stealing and encrypting victims’ data, then threatening to expose it unless a ransom is paid.

article thumbnail

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

Ptitsyn reportedly sold the ransomware on darknet forums under aliases like “derxan” and “zimmermanx,” enabling other criminals to encrypt data and demand ransom. Ptitsyn and his conspirators used a ransomware-as-a-service (RaaS) model to distribute their malware to a network of affiliates.

article thumbnail

North Korea-linked APT Moonstone used Qilin ransomware in limited attacks

Security Affairs

Moonstone Sleet threat actors target financial and cyberespionage victims using trojanized software, custom malware, malicious games, and fake companies like StarGlow Ventures and C.C. The APT group has also spread malware via a fraudulent tank game (DeTankWar) and engaged in ransomware attacks using FakePenny.