Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-03-12 21:05:14 |
REvil Group Claims Slew of Ransomware Attacks (lien direct) |
The threat group behind the Sodinokibi ransomware claimed to have recently compromised nine organizations. |
Threat
Ransomware
|
|
|
|
2021-03-12 16:26:07 |
(Déjà vu) Microsoft Exchange Exploits Pave a Ransomware Path (lien direct) |
As attacks double every hour, hackers are exploiting vulnerable Microsoft Exchange servers and installing a new family of ransomware called DearCry. |
Ransomware
|
|
|
|
2021-03-10 21:44:55 |
Fake Ad Blocker Delivers Hybrid Cryptominer/Ransomware Infection (lien direct) |
A hybrid Monero cryptominer and ransomware bug has hit 20,000 machines in 60 days. |
Ransomware
|
|
|
|
2021-03-03 19:18:21 |
RTM Cybergang Adds New Quoter Ransomware to Crime Spree (lien direct) |
The Russian-speaking RTM threat group is targeting organizations in an ongoing campaign that leverages a well-known banking trojan, brand new ransomware strain and extortion tactics. |
Threat
Ransomware
|
|
|
|
2021-02-26 13:36:48 |
Podcast: Ransomware Attacks Exploded in Q4 2020 (lien direct) |
Researchers said they saw a seven-times increase in ransomware activity in the fourth quarter of 2020, across various families – from Ryuk to Egregor. |
Ransomware
|
|
|
|
2021-02-23 16:51:24 |
Finnish IT Giant Hit with Ransomware Cyberattack (lien direct) |
A major Finnish IT provider has been hit with a ransomware attack that has forced the company to turn off some services and infrastructure in a disruption to customers, while it takes recovery measures. Norwegian business journal E24 reported the attack on Espoo, Finland-based TietoEVRY on Tuesday, claiming to have spoken with Geir Remman, a […] |
Ransomware
|
|
|
|
2021-02-22 17:51:20 |
Accellion FTA Zero-Day Attacks Show Ties to Clop Ransomware, FIN11 (lien direct) |
The threat actors stole data and used Clop's leaks site to demand money in an extortion scheme, though no ransomware was deployed. |
Threat
Ransomware
|
|
|
|
2021-02-18 20:05:12 |
Kia Motors Hit With $20M Ransomware Attack – Report (lien direct) |
So far, Kia Motors America has publicly acknowledged an “extended system outage,” but ransomware gang DoppelPaymer claimed it has locked down the company’s files in a cyberattack that includes a $20 million ransom demand. That $20 million will gain Kia a decryptor and a guarantee to not to publish sensitive data bits on the gang’s […] |
Ransomware
|
|
|
|
2021-02-10 21:20:19 |
Hacker Sets Alleged Auction for Witcher 3 Source Code (lien direct) |
The ransomware gang behind the hack of CD Projekt Red may be asking for $1 million opening bids for the company's valuable data. |
Ransomware
Hack
|
|
|
|
2021-02-09 15:33:11 |
Cyberpunk 2077 Publisher Hit with Hack, Threats and Ransomware (lien direct) |
CD Projekt Red was hit with a cyberattack, and the attackers are threatening to release source code for Witcher 3, corporate documents and more. |
Ransomware
|
|
|
|
2021-02-08 16:39:52 |
WestRock Ransomware Attack Hinders Packaging Production (lien direct) |
The ransomware attack, affecting OT systems, resulted in some of WestRock's facilities lagging in production levels. |
Ransomware
|
|
|
|
2021-01-27 21:08:48 |
NetWalker Ransomware Suspect Charged: Tor Site Seized (lien direct) |
The suspect allegedly has extorted $27.6 million from ransomware victims, mostly in the healthcare sector. |
Ransomware
|
|
|
|
2021-01-26 17:15:33 |
Nefilim Ransomware Gang Hits Jackpot with Ghost Account (lien direct) |
An unmonitored account belonging to a deceased employee allowed Nefilim to exfiltrate data and infiltrate systems for a month, without being noticed. |
Ransomware
|
|
|
|
2021-01-22 17:30:52 |
Ransomware Attackers Publish 4K Private Scottish Gov Agency Files (lien direct) |
Up to 4,000 stolen files have been released by hackers who launched a ransomware attack against the Scottish Environmental Protection Agency on Christmas Eve. |
Ransomware
|
|
|
|
2021-01-08 20:44:59 |
A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets (lien direct) |
Threatpost editors discuss the SolarWinds hack, healthcare ransomware attacks and other threats that will plague enterprises in 2021. |
Ransomware
|
|
|
|
2021-01-07 18:34:40 |
Threatpost Poll: Weigh in on Ransomware Security (lien direct) |
Provide your views on ransomware and how to deal with it in our anonymous Threatpost poll. |
Ransomware
|
|
|
|
2021-01-07 18:08:14 |
New Year, New Ransomware: Babuk Locker Targets Large Corporations (lien direct) |
Despite being a mostly run-of-the-mill ransomware strain, Babuk Locker's encryption mechanisms and abuse of Windows Restart Manager sets it apart. |
Ransomware
|
|
|
|
2021-01-05 21:33:22 |
Cyberattacks on Healthcare Spike 45% Since November (lien direct) |
The relentless rise in COVID-19 cases is battering already frayed healthcare systems - and ransomware criminals are using the opportunity to strike. |
Ransomware
|
|
|
|
2021-01-05 15:26:12 |
Major Gaming Companies Hit with Ransomware Linked to APT27 (lien direct) |
Researchers say a recent attack targeting videogaming developers has 'strong links' to the infamous APT27 threat group. |
Threat
Ransomware
|
APT 27
APT 27
|
|
|
2020-12-31 14:00:22 |
What\'s Next for Ransomware in 2021? (lien direct) |
Ransomware response demands a whole-of-business plan before the next attack, according to our roundtable of experts. |
Ransomware
|
|
|
|
2020-12-28 14:00:54 |
Ransomware in 2020: A Banner Year for Extortion (lien direct) |
From attacks on the UVM Health Network that delayed chemotherapy appointments, to ones on public schools that delayed students going back to the classroom, ransomware gangs disrupted organizations to inordinate levels in 2020. |
Ransomware
|
|
|
|
2020-12-16 18:37:18 |
Ryuk, Egregor Ransomware Attacks Leverage SystemBC Backdoor (lien direct) |
In the past few months researchers have detected hundreds of attempted SystemBC deployments globally, as part of recent Ryuk and Egregor ransomware attacks. |
Ransomware
|
|
|
|
2020-12-10 16:26:14 |
PLEASE_READ_ME Ransomware Attacks 85K MySQL Servers (lien direct) |
Ransomware actors behind the attack have breached at least 85,000 MySQL servers, and are currently selling at least compromised 250,000 databases. |
Ransomware
|
|
|
|
2020-12-10 12:44:36 |
Misery of Ransomware Hits Hospitals the Hardest (lien direct) |
Ransomware attacks targeting hospitals have exacted a human cost as well as financial. |
Ransomware
|
|
|
|
2020-12-07 14:18:43 |
RansomExx Ransomware Gang Dumps Stolen Embraer Data: Report (lien direct) |
The group published files stolen from the Brazilian aircraft manufacturer in a ransomware attack last month. |
Ransomware
|
|
|
|
2020-12-04 14:25:55 |
Vancouver Metro Disrupted by Egregor Ransomware (lien direct) |
The attack, which prevented Translink users from using their metro cards or buying tickets at kiosks, is the second from the prolific threat group just this week. |
Threat
Ransomware
|
|
|
|
2020-12-03 22:04:33 |
Kmart Latest Victim of Egregor Ransomware – Report (lien direct) |
The struggling retailer's back-end services have been impacted, according to a report, just in time for the holidays. |
Ransomware
|
|
★★★★★
|
|
2020-12-03 14:27:32 |
Clop Gang Makes Off with 2M Credit Cards from E-Land (lien direct) |
The ransomware group pilfered payment-card data and credentials for over a year, before ending with an attack last month that shut down many of the South Korean retailer's stores. |
Ransomware
|
|
|
|
2020-11-30 21:19:50 |
Conti Gang Hits IoT Chipmaker Advantech with $14M Ransom Demand (lien direct) |
The ransomware group has leaked stolen data to add pressure on the company to pay up. |
Ransomware
|
|
|
|
2020-11-30 17:46:24 |
Pandemic, A Driving Force in 2021 Financial Crime (lien direct) |
Ransomware gangs with zero-days and more players overall will characterize financially motivated cyberattacks next year. |
Ransomware
|
|
|
|
2020-11-19 16:56:24 |
Food-Supply Giant Americold Admits Cyberattack (lien direct) |
A reported ransomware attack took down operations at the company, which in talks for COVID-19 vaccine-distribution contracts. |
Ransomware
|
|
|
|
2020-11-11 18:42:49 |
Ragnar Locker Ransomware Gang Takes Out Facebook Ads in Key New Tactic (lien direct) |
Following a Nov. 3 ransomware attack against Campari, Ragnar Locker group took out public Facebook ads threatening to release stolen data. |
Ransomware
|
|
|
|
2019-05-17 17:06:00 |
Ransomware \'Remediation\' Firm Exposed: Researchers Weigh in on Paying (lien direct) |
The decision to pay a ransom in the case of a ransomware attack can be a complex one for businesses. |
Ransomware
|
|
|
|
2019-03-27 12:48:01 |
Ransomware Behind Norsk Hydro Attack Takes On Wiper-Like Capabilities (lien direct) |
Researchers are still looking for answers when it comes to LockerGoga's initial infection method - and what the attackers behind the ransomware really want. |
Ransomware
|
|
|
|
2019-03-19 19:40:03 |
Podcast: The High-Risk Threats Behind the Norsk Hydro Cyberattack (lien direct) |
Threatpost talks to Phil Neray with CyberX about Tuesday's ransomware attack on aluminum producer Norsk Hydro, and how it compares to past manufacturing attacks like Triton, WannaCry and more. |
Ransomware
|
Wannacry
|
|
|
2019-03-19 14:53:02 |
Norsk Hydro Calls Ransomware Attack \'Severe\' (lien direct) |
When asked if the company plans to pay the ransom, its CFO said its main strategy is to use the backup data stored in the system. |
Ransomware
|
|
|
|
2019-03-11 17:44:02 |
Forrester: Ransomware Set to Resurge As Firms Pay Off Attacks (lien direct) |
In this video, Josh Zelonis, senior analyst at Forrester Research, discusses the next great security threats to enterprises. |
Ransomware
|
|
|
|
2019-02-19 19:00:01 |
New GandCrab Decryptor Unlocks Files of Updated Ransomware (lien direct) |
This is the third update to the prolific GandCrab malware within the past year. |
Ransomware
Malware
|
|
|
|
2019-01-25 18:43:01 |
Phishing Campaign Delivers Nasty Ransomware, Credential-Theft Two-Punch (lien direct) |
A spate of phishing emails with Word attachments deliver both the Gandcrab ransomware and Ursnif executable. |
Ransomware
|
|
|
|
2019-01-08 18:44:00 |
Malvertising Campaign Delivers Double Whammy of Ransomware and Info-Stealing (lien direct) |
The whole attack takes place in under a minute. |
Ransomware
|
|
|
|
2018-10-31 15:38:02 |
Kraken Ransomware Upgrades Distribution with RaaS Model (lien direct) |
The Kraken ransomware author has released a second version of the malicious code, along with a unique affiliate program on the Dark Web. According to research into Kraken v.2 the new version is being promoted in a ransomware-as-a-service (RaaS) model to underground forum customers, via a video demoing its capabilities. Those interested can complete a […] |
Ransomware
|
|
|
|
2018-10-23 20:54:01 |
City Pays $2K in Ransomware, Stirs \'Never Pay\' Debate (lien direct) |
Many municipalities hit with ransomware don't have much of a choice when it comes to paying up, experts say. |
Ransomware
|
|
|
|
2018-10-17 16:06:02 |
Podcast: A Utility Ransomware Attack, Post-Hurricane (lien direct) |
A “critical water utility” was hit by a recent ransomware attack, significantly impeding the service in the week after Hurricane Florence hit the East Coast of the U.S. The Onslow Water and Sewer Authority (ONWASA) said in a Monday release that a “sophisticated ransomware attack… has left the utility with limited computer capabilities.” While customer data […] |
Ransomware
|
|
|
|
2018-10-16 17:00:03 |
In County Crippled by Hurricane, Water Utility Targeted in Ransomware Attack (lien direct) |
The Emotet Trojan is behind a crippling ransomware attack that hit the Onslow Water and Sewer Authority. |
Ransomware
|
|
|
|
2018-09-19 13:30:05 |
XBash Malware Packs Double Punch: Destroys Data and Mines for Crypto Coins (lien direct) |
A newly discovered malware has different capabilities for Windows and Linux systems, including ransomware and cryptomining. |
Ransomware
Malware
|
|
|
|
2018-06-25 20:02:05 |
WannaCry Extortion Fraud Reemerges (lien direct) |
The emails claim that all of the victim's devices have been hacked and infected with the infamous ransomware -- and then ask for Bitcoin to "fix" it. |
Ransomware
|
Wannacry
|
|