Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2023-01-05 17:58:30 |
Rackspace: Customer email data accessed in ransomware attack (lien direct) |
Rackspace revealed on Thursday that attackers behind last month's incident accessed some of its customers' Personal Storage Table (PST) files which can contain a wide range of information, including emails, calendar data, contacts, and tasks. [...] |
Ransomware
|
|
★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2023-01-03 15:13:35 |
Rail giant Wabtec discloses data breach after Lockbit ransomware attack (lien direct) |
U.S. rail and locomotive company Wabtec Corporation has disclosed a data breach that exposed personal and sensitive information. [...] |
Ransomware
Data Breach
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2023-01-03 11:40:00 |
Royal ransomware claims attack on Queensland University of Technology (lien direct) |
The Royal ransomware gang has claimed responsibility for a recent cyberattack on the Queensland University of Technology and begun to leak data allegedly stolen during the security breach. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2023-01-01 15:54:56 |
Ransomware gang cloned victim\'s website to leak stolen data (lien direct) |
The ALPHV ransomware operators have gotten creative with their extortion tactic and, in at least one case, created a replica of the victim's site to publish stolen data on it. [...] |
Ransomware
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-30 11:44:55 |
LockBit ransomware claims attack on Port of Lisbon in Portugal (lien direct) |
A cyberattack hitting the Port of Lisbon Administration (APL), the third-largest port in Portugal, on Christmas day has been claimed by the LockBit ransomware gang. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-30 11:09:56 |
Canadian mining firm shuts down mill after ransomware attack (lien direct) |
The Copper Mountain Mining Corporation (CMMC), a Canadian copper mining company in British Columbia, has announced it has become the target of a ransomware attack that impacted its operations. [...] |
Ransomware
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-28 13:40:37 |
Royal ransomware claims attack on Intrado telecom provider (lien direct) |
The Royal Ransomware gang claimed responsibility for a cyber attack against telecommunications company Intrado on Tuesday. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-28 08:54:26 |
Ransomware attack at Louisiana hospital impacts 270,000 patients (lien direct) |
The Lake Charles Memorial Health System (LCMHS) is sending out notices of a data breach affecting thousands of people who have received care at one of its medical centers. [...] |
Ransomware
Data Breach
Medical
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-22 08:00:00 |
FIN7 hackers create auto-attack platform to breach Exchange servers (lien direct) |
The notorious FIN7 hacking group uses an auto-attack system that exploits Microsoft Exchange and SQL injection vulnerabilities to breach corporate networks, steal data, and select targets for ransomware attacks based on financial size. [...] |
Ransomware
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-20 17:33:13 |
Ransomware gang uses new Microsoft Exchange exploit to breach servers (lien direct) |
Play ransomware threat actors are using a new exploit chain that bypasses ProxyNotShell URL rewrite mitigations to gain remote code execution (RCE) on vulnerable servers through Outlook Web Access (OWA). [...] |
Ransomware
Threat
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-19 16:40:52 |
Play ransomware claims attack on German hotel chain H-Hotels (lien direct) |
The Play ransomware gang has claimed responsibility for a cyber attack on H-Hotels (h-hotels.com) that has resulted in communication outages for the company. [...] |
Ransomware
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-16 13:47:12 |
Colombian energy supplier EPM hit by BlackCat ransomware attack (lien direct) |
Colombian energy company Empresas Públicas de Medellín (EPM) suffered a BlackCat/ALPHV ransomware attack on Monday, disrupting the company's operations and taking down online services. [...] |
Ransomware
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-14 13:24:00 |
Microsoft patches Windows zero-day used to drop ransomware (lien direct) |
Microsoft has fixed a security vulnerability used by threat actors to circumvent the Windows SmartScreen security feature and deliver Magniber ransomware and Qbot malware payloads. [...] |
Ransomware
Malware
Vulnerability
Threat
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-13 16:24:20 |
LockBit claims attack on California\'s Department of Finance (lien direct) |
The Department of Finance in California has been the target of a cyberattack now claimed by the LockBit ransomware gang. [...] |
Ransomware
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-12 18:34:25 |
Play ransomware claims attack on Belgium city of Antwerp (lien direct) |
The Play ransomware operation has claimed responsibility for a recent cyberattack on the Belgium city of Antwerp. [...] |
Ransomware
|
|
★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-11 11:22:33 |
(Déjà vu) Clop ransomware uses TrueBot malware for access to networks (lien direct) |
Security researchers have noticed a spike in devices infected with the TrueBot malware downloader created by a Russian-speaking hacking group known as Silence. [...] |
Ransomware
Malware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-11 11:22:33 |
Clop ransomware partners with TrueBot malware for access to networks (lien direct) |
Security researchers have noticed a spike in devices infected with the TrueBot malware downloader created by a Russian-speaking hacking group known as Silence. [...] |
Ransomware
Malware
|
|
★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-09 14:51:48 |
Rackspace warns of phishing risks following ransomware attack (lien direct) |
Cloud computing provider Rackspace warned customers on Thursday of increased risks of phishing attacks following a ransomware attack affecting its hosted Microsoft Exchange environment. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-08 15:27:11 |
CommonSpirit Health ransomware attack exposed data of 623,000 patients (lien direct) |
CommonSpirit Health has confirmed that threat actors accessed the personal data for 623,774 patients during an October ransomware attack. [...] |
Ransomware
Threat
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-06 10:31:18 |
Rackspace confirms outage was caused by ransomware attack (lien direct) |
Texas-based cloud computing provider Rackspace has confirmed today that a ransomware attack is behind its ongoing Hosted Exchange outage. [...] |
Ransomware
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-05 15:41:11 |
Ransomware attack forces French hospital to transfer patients (lien direct) |
The André-Mignot teaching hospital in the suburbs of Paris had to shut down its phone and computer systems because of a ransomware attack that hit on Saturday evening. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-12-02 17:51:35 |
The Week in Ransomware - December 2nd 2022 - Disrupting Health Care (lien direct) |
This week's big news was the Colombia health system being severely disrupted by a ransomware attack on Keralty, one of the country's largest healthcare providers. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-30 18:25:53 |
Keralty ransomware attack impacts Colombia\'s health care system (lien direct) |
The Keralty multinational healthcare organization suffered a RansomHouse ransomware attack on Sunday, disrupting the websites and operations of the company and its subsidiaries. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-29 17:57:18 |
Trigona ransomware spotted in increasing attacks worldwide (lien direct) |
A previously unnamed ransomware has rebranded under the name 'Trigona,' launching a new Tor negotiation site where they accept Monero as ransom payments. [...] |
Ransomware
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-25 12:18:23 |
Vice Society ransomware claims attack on Cincinnati State college (lien direct) |
The Vice Society ransomware operation has claimed responsibility for a cyberattack on Cincinnati State Technical and Community College, with the threat actors now leaking data allegedly stolen during the attack. [...] |
Ransomware
Threat
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-20 10:07:14 |
(Déjà vu) New ransomware encrypts files, then steals your Discord account (lien direct) |
The new 'AXLocker' ransomware family is not only encrypting victims' files and demanding a ransom payment but also stealing the Discord accounts of infected users. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-20 10:07:14 |
New AxLocker ransomware encrypts files, then steals your Discord account (lien direct) |
The new 'AXLocker' ransomware family is not only encrypting victims' files and demanding a ransom payment but also stealing the Discord accounts of infected users. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-17 15:07:02 |
Previously unidentified ARCrypter ransomware expands worldwide (lien direct) |
A previously unknown 'ARCrypter' ransomware that compromised key organizations in Latin America is now expanding its attacks worldwide. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-09 11:43:27 |
Medibank warns customers their data was leaked by ransomware gang (lien direct) |
Australian health insurance giant Medibank has warned customers that the ransomware group behind last month's breach has started to leak data stolen from its systems. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-08 17:56:13 |
LockBit affiliate uses Amadey Bot malware to deploy ransomware (lien direct) |
A LockBit 3.0 ransomware affiliate is using phishing emails that install the Amadey Bot to take control of a device and encrypt devices. [...] |
Ransomware
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-07 12:50:26 |
Ransomware gang threatens to release stolen Medibank data (lien direct) |
A ransomware gang that some believe is a relaunch of REvil and others track as BlogXX has claimed responsibility for last month's ransomware attack against Australian health insurance provider Medibank Private Limited. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-11-03 14:25:59 |
LockBit ransomware claims attack on Continental automotive giant (lien direct) |
The LockBit ransomware gang has claimed responsibility for a cyberattack against the German multinational automotive group Continental. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-28 16:08:28 |
The Week in Ransomware - October 28th 2022 - Healthcare leaks (lien direct) |
This week, we learned of healthcare data leaks out of Australia, information about existing attacks, and reports on how ransomware gangs operate and partner with malware developers for initial access. [...] |
Ransomware
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-27 14:05:38 |
Australian Clinical Labs says patient data stolen in ransomware attack (lien direct) |
Australian Clinical Labs (ACL) has disclosed a February 2022 data breach that impacted its Medlab Pathology business, exposing the medical records and other sensitive information of 223,000 people. [...] |
Ransomware
Data Breach
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-25 04:49:21 |
Hive claims ransomware attack on Tata Power, begins leaking data (lien direct) |
Hive ransomware group has claimed responsibility for a cyber attack disclosed by Tata Power this month. In data leak screenshots seen by BleepingComputer, Hive operators are seen leaking data it claims to have stolen from Tata Power, indicating the ransom negotiations failed. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-24 10:51:38 |
Pendragon car dealer refuses $60 million LockBit ransomware demand (lien direct) |
Pendragon Group, with more than 200 car dealerships in the U.K., was breached in a cyberattack from the LockBit ransomware gang, who allegedly demanded $60 million to decrypt files and not leak them. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-21 06:00:00 |
BlackByte ransomware uses new data theft tool for double-extortion (lien direct) |
A BlackByte ransomware affiliate is using a new custom data stealing tool called 'ExByte' to steal data from compromised Windows devices quickly. [...] |
Ransomware
Tool
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-20 11:03:41 |
OldGremlin hackers use Linux ransomware to attack Russian orgs (lien direct) |
OldGremlin, one of the few ransomware groups attacking Russian corporate networks, has expanded its toolkit with file-encrypting malware for Linux machines. [...] |
Ransomware
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-18 17:49:08 |
Ransom Cartel linked to notorious REvil ransomware operation (lien direct) |
Threat analysts have connected the pieces that link the Ransom Cartel RaaS (ransomware-as-a-service) to the REvil gang, one of the most notorious and prolific ransomware groups in recent years. [...] |
Ransomware
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-17 13:56:16 |
Australian insurance firm Medibank confirms ransomware attack (lien direct) |
Health insurance provider Medibank has confirmed that a ransomware attack is responsible for last week's cyberattack and disruption of online services. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-17 10:33:00 |
Ransomware attack halts circulation of some German newspapers (lien direct) |
German newspaper 'Heilbronn Stimme' published today's 28-page issue in e-paper form after a Friday ransomware attack crippled its printing systems. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-14 17:27:17 |
Police tricks DeadBolt ransomware out of 155 decryption keys (lien direct) |
The Dutch National Police, in collaboration with cybersecurity firm Responders.NU, obtained 155 decryption keys from the DeadBolt ransomware gang by faking ransom payments. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-10-11 12:59:44 |
Microsoft Exchange servers hacked to deploy LockBit ransomware (lien direct) |
Microsoft is investigating reports of a new zero-day bug abused to hack Exchange servers which were later used to launch Lockbit ransomware attacks. [...] |
Ransomware
Hack
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-09-29 10:32:16 |
New Royal Ransomware emerges in multi-million dollar attacks (lien direct) |
A new ransomware operation named Royal is quickly ramping up, targeting corporations with ransom demands ranging from $250,000 to over $2 million. [...] |
Ransomware
|
|
★★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-09-25 11:14:27 |
Ransomware data theft tool may show a shift in extortion tactics (lien direct) |
Data exfiltration malware known as Exmatter and previously linked with the BlackMatter ransomware group is now being upgraded with data corruption functionality that may indicate a new tactic that ransomware affiliates might switch to in the future. [...] |
Ransomware
Malware
Tool
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-09-23 17:25:58 |
The Week in Ransomware - September 23rd 2022 - LockBit leak (lien direct) |
This week we saw some embarrassment for the LockBit ransomware operation when their programmer leaked a ransomware builder for the LockBit 3.0 encryptor. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-09-20 16:33:51 |
Hive ransomware claims attack on New York Racing Association (lien direct) |
The Hive ransomware operation claimed responsibility for an attack on the New York Racing Association (NYRA), which previously disclosed that a cyber attack on June 30, 2022, impacted IT operations and website availability and compromised member data. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-09-19 12:07:36 |
VMware, Microsoft warn of widespread Chromeloader malware attacks (lien direct) |
The operators of the Chromeloader adware are evolving their attack methods and gradually transforming the low-risk tool into a dangerous malware loader, seen dropping ransomware in some cases. [...] |
Ransomware
Malware
Tool
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-09-17 11:17:23 |
Emotet botnet now pushes Quantum and BlackCat ransomware (lien direct) |
While monitoring the Emotet botnet's current activity, security researchers found that the malware is now being used by the Quantum and BlackCat ransomware gang to deploy their payloads. [...] |
Ransomware
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2022-09-17 10:12:14 |
New York ambulance service discloses data breach after ransomware attack (lien direct) |
Empress EMS (Emergency Medical Services), a New York-based emergency response and ambulance service provider, has disclosed a data breach that exposed customer information. [...] |
Ransomware
Data Breach
|
|
|