What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-05-22 15:59:49 | The Week in Ransomware - May 22nd 2020 - Constantly Innovating (lien direct) | Ransomware operators continue to leak data for their victims and develop new ways to infect victims without being detected by security software. [...] | Ransomware | ||
|
2020-05-22 11:51:22 | Ransomware encrypts from virtual machines to evade antivirus (lien direct) | Ragnar Locker is deploying Windows XP virtual machines to encrypt victim's files while evading detecting from security software installed on the host. [...] | Ransomware | ||
|
2020-05-21 14:32:10 | Hackers tried to use Sophos Firewall zero-day to deploy Ransomware (lien direct) | Hackers tried to exploit a zero-day in the Sophos XG firewall to distribute ransomware to Windows machines but were blocked by a hotfix issued by Sophos. [...] | Ransomware | ||
|
2020-05-20 17:06:32 | Vigilante hackers target \'scammers\' with ransomware, DDoS attacks (lien direct) | A hacker has been taking justice into their own hands by targeting "scam" companies with ransomware and denial of service attacks. [...] | Ransomware | ||
|
2020-05-20 14:36:55 | Snake ransomware leaks patient data from Fresenius Medical Care (lien direct) | Medical data and personally identifiable information belonging to patients at a Fresenius Medical Care unit are currently available online on a paste website. [...] | Ransomware | ||
|
2020-05-19 11:27:39 | NetWalker adjusts ransomware operation to only target enterprise (lien direct) | NetWalker ransomware group is moving away from phishing for malware distribution and has adopted a network-intrusion model focusing on huge businesses only. [...] | Ransomware Malware | ||
|
2020-05-18 19:51:59 | REvil Ransomware found buyer for Trump data, now targeting Madonna (lien direct) | REvil ransomware group claims to have buyers ready for documents containing damaging information about US President Donald Trump and is preparing to auction data on international celebrity Madonna. [...] | Ransomware | ||
|
2020-05-18 09:32:20 | Ransomware attack impacts Texas Department of Transportation (lien direct) | A new ransomware attack is affecting the Texas government. This time, hackers got into the network of the state's Department of Transportation (TxDOT). [...] | Ransomware | ||
|
2020-05-18 03:36:00 | FBI warns of ProLock ransomware decryptor not working properly (lien direct) | Multiple actors in the ransomware business saw the new coronavirus pandemic as the perfect opportunity to focus on an already overburdened healthcare sector. ProLock is yet another threat to the list. [...] | Ransomware Threat | ||
|
2020-05-16 14:13:38 | The Week in Ransomware - May 15th 2020 - REvil targets Trump (lien direct) | This week, we saw some interesting news about ransomware features being added and continued attackers against high profile victims. [...] | Ransomware | ||
|
2020-05-15 12:45:28 | Wannabe ransomware operators arrested before hospital attacks (lien direct) | Law enforcement in Romania today arrested a group of individuals that were planning ransomware attacks against healthcare institutions in the country. [...] | Ransomware | ||
|
2020-05-15 07:15:00 | Ransomware recruits affiliates with huge payouts, automated leaks (lien direct) | The Netwalker ransomware operation is recruiting potential affiliates with the possibility of million-dollar payouts and an auto-publishing data leak blog to help drive successful ransom payments. [...] | Ransomware | ||
|
2020-05-14 12:02:44 | ProLock Ransomware teams up with QakBot trojan for network access (lien direct) | ProLock is a relatively new malware on the ransomware scene but has quickly attracted attention by targeting businesses and local governments and demanding huge ransoms for file decryption. [...] | Ransomware Malware | ||
|
2020-05-13 10:51:36 | Ransomware now demands extra payment to delete stolen files (lien direct) | A ransomware family has begun a new tactic of not only demanding a ransom for a decryptor but also demanding a second ransom not to publish files stolen in an attack. [...] | Ransomware | ||
|
2020-05-12 18:01:57 | Healthcare giant Magellan Health hit by ransomware attack (lien direct) | Fortune 500 company Magellan Health Inc announced today that it was the victim of a ransomware attack on April 11, 2020, which led to the theft of personal information from one of its corporate servers. [...] | Ransomware | ||
|
2020-05-11 15:28:15 | Texas Courts hit by ransomware, network disabled to limit spread (lien direct) | The Texas court system was hit by ransomware on Friday night, May 8th, which led to the branch network including websites and servers being disabled to block the malware from spreading to other systems. [...] | Ransomware Malware | ||
|
2020-05-11 12:41:46 | Maze ransomware fails to encrypt Pitney Bowes, steals files (lien direct) | Global business services company Pitney Bowes recently stopped an attack from Maze ransomware operators before the encryption routine could be deployed but the actor still managed to steal some data. [...] | Ransomware | ||
|
2020-05-10 10:18:32 | Sodinokibi ransomware can now encrypt open and locked files (lien direct) | The Sodinokibi (REvil) ransomware has added a new feature that makes it easier to encrypt all files, even those that are opened and locked by another process. [...] | Ransomware | ||
|
2020-05-08 18:43:14 | The Week in Ransomware - May 8th 2020 - Attacks Continue (lien direct) | Ransomware operators continue their worldwide attacks against healthcare organizations and businesses, while leaking the data of victims who do not pay a ransom. [...] | Ransomware | ||
|
2020-05-08 11:33:50 | REvil ransomware threatens to leak A-list celebrities\' legal docs (lien direct) | The Sodinokibi ransomware group threatens to release hundreds of gigabytes of legal documents from a prominent entertainment and law firm that counts dozens of international stars as their clients. [...] | Ransomware | ||
|
2020-05-06 15:20:14 | Large scale Snake Ransomware campaign targets healthcare, more (lien direct) | The operators of the Snake Ransomware have launched a worldwide campaign of cyberattacks that have infected numerous businesses and at least one health care organization over the last few days. [...] | Ransomware | ||
|
2020-05-05 14:35:44 | Toll Group hit by ransomware a second time, deliveries affected (lien direct) | The Toll Group has suffered its second ransomware cyberattack in three months, with the latest one conducted by the operators of the Nefilim Ransomware. [...] | Ransomware | ||
|
2020-05-04 17:09:11 | LockBit ransomware self-spreads to quickly encrypt 225 systems (lien direct) | A feature of the LockBit ransomware allows threat actors to breach a corporate network and deploy their ransomware to encrypt hundreds of devices in just a few hours. [...] | Ransomware Threat | ||
|
2020-05-04 15:18:12 | New VCrypt Ransomware locks files in password-protected 7ZIPs (lien direct) | A new ransomware called VCrypt is targeting French victims by utilizing the legitimate 7zip command-line program to create password-protected archives of data folders. [...] | Ransomware | ||
|
2020-05-02 11:30:00 | Sodinokibi, Ryuk ransomware drive up average ransom to $111,000 (lien direct) | The first quarter of the year recorded an increase of the average amount ransomware operators demand from their victims. Compared to the previous quarter, a 33% swell was noted, driven by the Sodinokibi and Ryuk ransomware operators. [...] | Ransomware | ||
|
2020-05-01 18:19:52 | The Week in Ransomware - May 1st 2020 - Banishing the Shade (lien direct) | For the victims of the Shade Ransomware, otherwise known as Troldesh, this was an excellent week as the threat actors released over 750,000 decryption keys for their victims. [...] | Ransomware Threat | ||
|
2020-05-01 13:00:25 | New phishing campaign packs an info-stealer, ransomware punch (lien direct) | A new phishing campaign is distributing a double-punch of a LokiBot information-stealing malware along with a second payload in the form of the Jigsaw Ransomware. [...] | Ransomware Malware | ||
|
2020-04-30 15:21:25 | Shade Ransomware Decryptor can now decrypt over 750K victims (lien direct) | Kaspersky has released an updated decryptor for the Shade Ransomware (Troldesh) that allows all victims who have their files encrypted to recover them for free. [...] | Ransomware | ||
|
2020-04-30 11:00:12 | Clop ransomware leaks ExecuPharm\'s files after failed ransom (lien direct) | Clop ransomware leaked files stolen from U.S pharmaceutical company ExecuPharm after ransom negotiations allegedly failed. [...] | Ransomware | ||
|
2020-04-28 14:04:30 | Microsoft releases guidance on blocking ransomware attacks (lien direct) | Microsoft warned today of ongoing human-operated ransomware campaigns targeting healthcare organizations and critical services, and shared tips on how to block new breaches by patching vulnerable internet-facing systems. [...] | Ransomware Patching | ||
|
2020-04-28 07:24:28 | Lucy malware for Android adds file-encryption for ransomware ops (lien direct) | A threat actor focusing on Android systems has expanded their malware-as-a-service (MaaS) business with file-encrypting capabilities for ransomware operations. [...] | Ransomware Malware Threat | ||
|
2020-04-27 11:47:31 | Shade Ransomware shuts down, releases 750K decryption keys (lien direct) | The operators behind the Shade Ransomware (Troldesh) have shut down their operations, released over 750,000 decryption keys, and apologized for the harm they caused their victims. [...] | Ransomware | ||
|
2020-04-24 19:09:31 | The Week in Ransomware - April 24th 2020 - High Profile Attacks (lien direct) | There was not a lot of new variants released this week, but we did have some news such as the ransomware attack on Cognizant, the leaking of data for a California city, and the continued attacks on hospitals. [...] | Ransomware | ||
|
2020-04-23 17:32:22 | SeaChange video platform allegedly hit by Sodinokibi ransomware (lien direct) | A video delivery platform company is the latest victim of the Sodinokibi Ransomware, who has posted images of data they claim to have stolen from the company during a cyberattack. [...] | Ransomware | ||
|
2020-04-21 16:34:25 | DoppelPaymer Ransomware hits Los Angeles County city, leaks files (lien direct) | The City of Torrance of the Los Angeles metropolitan area, California, has allegedly been attacked by the DoppelPaymer Ransomware, having unencrypted data stolen and devices encrypted. [...] | Ransomware | ||
|
2020-04-18 13:45:29 | IT services giant Cognizant suffers Maze Ransomware cyber attack (lien direct) | Information technologies services giant Cognizant suffered a cyber attack Friday night allegedly by the operators of the Maze Ransomware, BleepingComputer has learned. [...] | Ransomware | ||
|
2020-04-18 10:00:00 | US govt: Hacker used stolen AD credentials to ransom hospitals (lien direct) | Hackers have deployed ransomware on the systems of U.S. hospitals and government entities using Active Directory credentials stolen months after exploiting a known remote code execution (RCE) vulnerability in their Pulse Secure VPN servers. [...] | Ransomware Vulnerability | ||
|
2020-04-17 18:35:45 | The Week in Ransomware - April 17th 2020 - Changing Tactics (lien direct) | There was not a lot of new ransomware variants released this week, but some pretty interesting news about operations changing their tactics to remain more profitable and to evade law enforcement. [...] | Ransomware | ||
|
2020-04-15 19:07:57 | Nemty Ransomware shuts down public RaaS operation, goes private (lien direct) | The Nemty Ransomware is shutting down its public Ransomware-as-a-Service (RaaS) operation and switching to an exclusive private operation where affiliates are hand-selected for their expertise. [...] | Ransomware | ||
|
2020-04-14 13:35:00 | RagnarLocker ransomware hits EDP energy giant, asks for €10M (lien direct) | Attackers using the Ragnar Locker ransomware have encrypted the systems of Portuguese multinational energy giant Energias de Portugal (EDP) and are now asking for a 1580 BTC ransom ($10.9M or €9.9M). [...] | Ransomware | ||
|
2020-04-11 16:23:11 | Sodinokibi Ransomware to stop taking Bitcoin to hide money trail (lien direct) | The Sodinokibi Ransomware has started to accept the Monero cryptocurrency to make it harder for law enforcement to track ransom payments and plans to stop allowing bitcoin payments in the future. [...] | Ransomware | ||
|
2020-04-10 17:20:06 | The Week in Ransomware - April 3rd 2020 - No Sign of Letting Up (lien direct) | Over the past two week, we have seen an increase in warnings from law enforcement agencies stating that healthcare organizations need to be on high alert for attacks by ransomware operators and other attackers who are looking to capitalize on the Coronavirus pandemic. [...] | Ransomware | ||
|
2020-04-07 15:47:37 | Drug testing firm sends data breach alerts after ransomware attack (lien direct) | Hammersmith Medicines Research LTD (HMR), a research company on standby to perform live trials of Coronavirus vaccines, has started emailing data breach notifications after having their data stolen and published in a ransomware attack. [...] | Ransomware Data Breach | ||
|
2020-04-06 11:39:13 | Interpol: Ransomware attacks on hospitals are increasing (lien direct) | The INTERPOL (short for International Criminal Police Organisation) warns that cybercriminals are increasingly attempting to lockout hospitals out of critical systems by attempting to deploy ransomware on their networks despite the currently ongoing COVID-19 pandemic. [...] | Ransomware | ||
|
2020-04-01 12:03:52 | Microsoft is Alerting Hospitals Vulnerable to Ransomware Attacks (lien direct) | Microsoft has started to send targeted notifications to dozens of hospitals about vulnerable public-facing VPN devices and gateways located on their network. [...] | Ransomware | ||
|
2020-03-27 17:35:22 | The Week in Ransomware - March 27th 2020 - Don\'t Attack Hospitals! (lien direct) | This two-week edition covers a lot of new ransomware variants, including attackers utilizing Coronavirus-themes for their phishing scams and ransomware variants. [...] | Ransomware | ||
|
2020-03-26 18:08:25 | Ryuk Ransomware Keeps Targeting Hospitals During the Pandemic (lien direct) | The Ryuk Ransomware operators to continue to target hospitals even as these organizations are overwhelmed during the Coronavirus pandemic. [...] | Ransomware | ||
|
2020-03-26 13:40:34 | Chubb Cyber Insurer Allegedly Hit By Maze Ransomware Attack (lien direct) | Cyber insurer giant Chubb is allegedly the latest ransomware victim according to the operators of the Maze Ransomware who claim to have encrypted the company in March 2020. [...] | Ransomware | ||
|
2020-03-24 19:23:47 | Three More Ransomware Families Create Sites to Leak Stolen Data (lien direct) | Three more ransomware families have created sites that are being used to leak the stolen data of non-paying victims and further illustrates why all ransomware attacks must be considered data breaches. [...] | Ransomware | ||
|
2020-03-21 12:06:42 | Netwalker Ransomware Infecting Users via Coronavirus Phishing (lien direct) | As if people did not have enough to worry about, attackers are now targeting them with Coronavirus (COVID-19) phishing emails that install ransomware. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
