Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-08-26 16:44:27 |
Ransomware Attacks are on the Rise (lien direct) |
Lockbit is by far this summer's most prolific ransomware group, trailed by two offshoots of the Conti group. |
Ransomware
|
|
|
|
2022-08-16 14:30:01 |
U.K. Water Supplier Hit with Clop Ransomware Attack (lien direct) |
The incident disrupted corporate IT systems at one company while attackers misidentified the victim in a post on its website that leaked stolen data. |
Ransomware
|
|
|
|
2022-08-12 18:20:38 |
Feds: Zeppelin Ransomware Resurfaces with New Compromise, Encryption Tactics (lien direct) |
The CISA has seen a resurgence of the malware targeting a range of verticals and critical infrastructure organizations by exploiting RDP, firewall vulnerabilities. |
Ransomware
Malware
|
|
|
|
2022-07-20 12:35:02 |
Conti\'s Reign of Chaos: Costa Rica in the Crosshairs (lien direct) |
Aamir Lakhani, with FortiGuard Labs, answers the question; Why is the Conti ransomware gang targeting people and businesses in Costa Rica? |
Ransomware
|
|
|
|
2022-07-15 16:26:53 |
Emerging H0lyGh0st Ransomware Tied to North Korea (lien direct) |
Microsoft has linked a threat that emerged in June 2021 and targets small-to-mid-sized businesses to state-sponsored actors tracked as DEV-0530. |
Threat
Ransomware
|
|
|
|
2022-07-08 10:46:55 |
U.S. Healthcare Orgs Targeted with Maui Ransomware (lien direct) |
State-sponsored actors are deploying the unique malware--which targets specific files and leaves no ransomware note--in ongoing attacks. |
Ransomware
|
|
|
|
2022-06-30 11:59:34 |
A Guide to Surviving a Ransomware Attack (lien direct) |
Oliver Tavakoli, CTO at Vectra AI, gives us hope that surviving a ransomware attack is possible, so long as we apply preparation and intentionality to our defense posture. |
Ransomware
|
|
|
|
2022-06-28 13:05:00 |
Top Six Security Bad Habits, and How to Break Them (lien direct) |
Shrav Mehta, CEO, Secureframe, outlines the top six bad habits security teams need to break to prevent costly breaches, ransomware attacks and prevent phishing-based endpoint attacks. |
Ransomware
|
|
|
|
2022-06-28 12:42:34 |
Mitel VoIP Bug Exploited in Ransomware Attacks (lien direct) |
Researchers warn threat actors are using a novel remote code execution exploit to gain initial access to victim's environments. |
Threat
Ransomware
|
|
|
|
2022-06-21 12:34:43 |
Office 365 Config Loophole Opens OneDrive, SharePoint Data to Ransomware Attack (lien direct) |
A reported a "potentially dangerous piece of functionality" allows an attacker to launch an attack on cloud infrastructure and ransom files stored in SharePoint and OneDrive. |
Ransomware
|
|
|
|
2022-06-16 11:24:26 |
Ransomware Risk in Healthcare Endangers Patients (lien direct) |
Ryan Witt, Proofpoint's Healthcare Cybersecurity Leader, examines the impact of ransomware on patient care. |
Ransomware
Guideline
|
|
|
|
2022-06-08 13:05:39 |
Paying Ransomware Paints Bigger Bullseye on Target\'s Back (lien direct) |
Ransomware attackers often strike targets twice, regardless of whether the ransom was paid. |
Ransomware
|
|
|
|
2022-06-08 11:17:40 |
Black Basta Ransomware Teams Up with Malware Stalwart Qbot (lien direct) |
The novel cybercriminal group tapped the ever-evolving info-stealing trojan to move laterally on a network in a recent attack, researchers have found. |
Ransomware
Malware
|
|
|
|
2022-06-02 13:08:55 |
Cybercriminals Expand Attack Radius and Ransomware Pain Points (lien direct) |
Melissa Bischoping, security researcher with Tanium and Infosec Insiders columnist, urges firms to consider the upstream and downstream impact of "triple extortion" ransomware attacks. |
Ransomware
|
|
|
|
2022-05-26 10:30:11 |
Cybergang Claims REvil is Back, Executes DDoS Attacks (lien direct) |
Actors claiming to be the defunct ransomware group are targeting one of Akami's customers with a Layer 7 attack, demanding an extortion payment in Bitcoin. |
Ransomware
|
|
|
|
2022-05-25 13:18:17 |
Link Found Connecting Chaos, Onyx and Yashma Ransomware (lien direct) |
A slip-up by a malware author has allowed researchers to taxonomize three ransomware variations going by different names. |
Ransomware
Malware
|
|
|
|
2022-05-13 12:06:33 |
Threat Actors Use Telegram to Spread \'Eternity\' Malware-as-a-Service (lien direct) |
An account promoting the project-which offers a range of threat activity from info-stealing to crypto-mining to ransomware as individual modules-has more than 500 subscribers. |
Threat
Ransomware
|
|
|
|
2022-05-11 11:02:21 |
Ransomware Deals Deathblow to 157-year-old College (lien direct) |
Why a private college that stayed in business for 157 years had to close after the combo of COVID-19 and ransomware proved too much. |
Ransomware
|
|
★★★★
|
|
2022-05-10 11:54:03 |
Conti Ransomware Attack Spurs State of Emergency in Costa Rica (lien direct) |
The threat group has leaked data that it claims was stolen in the breach and is promising more government-targeted attacks. |
Threat
Ransomware
|
|
★★★★
|
|
2022-05-05 12:20:10 |
VHD Ransomware Linked to North Korea\'s Lazarus Group (lien direct) |
Source code and Bitcoin transactions point to the malware, which emerged in March 2020, being the work of APT38, researchers at Trellix said. |
Ransomware
Medical
|
APT 38
APT 28
|
|
|
2022-04-15 17:34:48 |
Karakurt Ensnares Conti, Diavol Ransomware Groups in Its Web (lien direct) |
Connections that show the cybercriminal teams are working together signal shifts in their respective tactics and an expansion of opportunities to target victims. |
Ransomware
|
|
|
|
2022-04-12 17:22:38 |
Menswear Brand Zegna Reveals Ransomware Attack (lien direct) |
Accounting materials from the Italy-based luxury fashion house were leaked online by RansomExx because the company refused to pay. |
Ransomware
|
|
|
|
2022-03-23 15:43:49 |
DeadBolt Ransomware Resurfaces to Hit QNAP Again (lien direct) |
A new steady stream of attacks against network-attached storage devices from the Taiwan-based vendor is similar to a wave that occurred in January. |
Ransomware
|
|
|
|
2022-03-21 17:48:51 |
Conti Ransomware V. 3, Including Decryptor, Leaked (lien direct) |
The latest is a fresher version of the ransomware pro-Ukraine researcher ContiLeaks already released, but it's reportedly clunkier code.
|
Ransomware
|
|
|
|
2022-03-21 14:22:53 |
Bridgestone Hit as Ransomware Torches Toyota Supply Chain (lien direct) |
A ransomware attack struck Bridgestone Americas, weeks after another Toyota supplier experienced the same and a third reported some kind of cyber hit.
|
Ransomware
|
|
|
|
2022-03-18 14:49:01 |
Google Blows Lid Off Conti, Diavol Ransomware Access-Broker Ops (lien direct) |
Researchers have exposed the work of Exotic Lily, a full-time cybercriminal initial-access group that uses phishing to infiltrate organizations' networks for further malicious activity. |
Ransomware
|
|
|
|
2022-03-15 12:58:59 |
Pandora Ransomware Hits Giant Automotive Supplier Denso (lien direct) |
Denso confirmed that cybercriminals leaked stolen, classified information from the Japan-based car-components manufacturer after an attack on one of its offices in Germany.
|
Ransomware
|
|
|
|
2022-03-14 21:50:45 |
Staff Think Conti Group Is a Legit Employer – Podcast (lien direct) |
The ransomware group's benefits – bonuses, employee of the month, performance reviews & top-notch training – might be better than yours, says BreachQuest's Marco Figueroa.
|
Ransomware
|
|
|
|
2022-03-14 13:52:37 |
Cybercrooks\' Political In-Fighting Threatens the West (lien direct) |
They're choosing sides in the Russia-Ukraine war, beckoning previously shunned ransomware groups and thereby reinvigorating those groups' once-diminished power.
|
Ransomware
|
|
|
|
2022-03-10 14:10:04 |
Russia May Use Ransomware Payouts to Avoid Sanctions (lien direct) |
FinCEN warns financial institutions to beware of unusual cryptocurrency payments or illegal transactions Russia may use to evade restrictions imposed due to its invasion of Ukraine.
|
Ransomware
|
|
|
|
2022-03-07 19:28:36 |
Samsung Confirms Lapsus$ Ransomware Hit, Source Code Leak (lien direct) |
The move comes just a week after GPU-maker NVIDIA was hit by Lapsus$ and every employee credential was leaked. |
Ransomware
|
|
|
|
2022-03-04 22:46:59 |
Massive Meris Botnet Embeds Ransomware Notes from REvil (lien direct) |
Notes threatening to tank targeted companies' stock price were embedded into the DDoS ransomware attacks as a string_of_text directed to CEOs and webops_geeks in the URL. |
Ransomware
|
|
|
|
2022-03-04 16:56:27 |
Free HermeticRansom Ransomware Decryptor Released (lien direct) |
Cruddy cryptography means victims whose files have been encrypted by the Ukraine-tormenting ransomware can break the chains without paying extortionists.
|
Ransomware
|
|
|
|
2022-03-03 16:31:36 |
Russia Leaks Data From a Thousand Cuts–Podcast (lien direct) |
It's not just Ukraine: There's a flood of intel on Russian military, nukes and crooks, says dark-web intel expert Vinny Troia, even with the Conti ransomware gang shuttering its leaking Jabber chat server.
|
Ransomware
|
|
|
|
2022-03-02 18:14:49 |
Conti Ransomware Decryptor, TrickBot Source Code Leaked (lien direct) |
The decryptor spilled by ContiLeaks won't work with recent victims. Conti couldn't care less: It's still operating just fine. Still, the dump is a bouquet's worth of intel. |
Ransomware
|
|
|
|
2022-02-28 21:00:32 |
Ukraine-Russia Cyber Warzone Splits Cyber Underground (lien direct) |
A pro-Ukraine Conti member spilled 13 months of the ransomware group's chats, while cyber actors are rushing to align with both sides. |
Ransomware
|
|
|
|
2022-02-25 19:46:57 |
Microsoft Exchange Bugs Exploited by \'Cuba\' Ransomware Gang (lien direct) |
The ransomware gang known as Cuba is increasingly shifting to exploiting Exchange bugs – including crooks' favorites, ProxyShell and ProxyLogon – as initial infection vectors. |
Ransomware
|
|
|
|
2022-02-24 21:11:33 |
(Déjà vu) The Harsh Truths of Cybersecurity in 2022, Part II (lien direct) |
Sonya Duffin, ransomware and data-protection expert at Veritas Technologies, shares three steps organizations can take today to reduce cyberattack fallout. |
Ransomware
|
|
|
|
2022-02-23 14:00:22 |
Creaky Old WannaCry, GandCrab Top the Ransomware Scene (lien direct) |
Nothing like zombie campaigns: WannaCry's old as dirt, and GandCrab threw in the towel years ago. They're on auto-pilot at this point, researchers say. |
Ransomware
|
Wannacry
|
|
|
2022-02-15 02:04:36 |
BlackByte Tackles the SF 49ers & US Critical Infrastructure (lien direct) |
Hours before the Superbowl and two days after the FBI warned about the ransomware gang, BlackByte leaked what are purportedly the NFL team's files.
|
Ransomware
|
|
|
|
2022-02-10 23:16:44 |
Decryptor Keys Published for Maze, Egregor, Sekhmet Ransomwares (lien direct) |
The Maze gang are purportedly never going back to ransomware and have destroyed all of their ransomware source code, said somebody claiming to be the developer. |
Ransomware
|
|
|
|
2022-02-09 21:06:38 |
3 Tips for Facing the Harsh Truths of Cybersecurity in 2022, Part I (lien direct) |
Sonya Duffin, ransomware and data-protection expert at Veritas Technologies, shares three steps organizations can take today to reduce cyberattack fallout. |
Ransomware
|
|
|
|
2022-02-07 22:09:27 |
LockBit, BlackCat, Swissport, Oh My! Ransomware Activity Stays Strong (lien direct) |
However, groups are rebranding and recalibrating their profiles and tactics to respond to law enforcement and the security community's focus on stopping ransomware attacks. |
Ransomware
|
|
|
|
2022-02-03 23:08:49 |
Kronos Still Dragging Itself Back From Ransomware Hell (lien direct) |
And customers including Tesla, PepsiCo and NYC transit workers are filing lawsuits over the “real pain in the rear end” of manual inputting, inaccurate wages & more. |
Ransomware
|
|
|
|
2022-02-02 22:25:35 |
KP Snacks Left with Crumbs After Ransomware Attack (lien direct) |
The Conti gang strikes again, disrupting the nom-merchant's supply chain and threatening empty supermarket shelves lasting for weeks. |
Ransomware
|
|
|
|
2022-01-20 14:27:48 |
SEC Filing Reveals Fortune 500 Firm Targeted in Ransomware Attack (lien direct) |
R.R. Donnelly, the integrated services company, confirmed a 'systems intrusion' that occurred in late December and is still under investigation. |
Ransomware
|
|
|
|
2022-01-19 20:55:28 |
Destructive Wiper Targeting Ukraine Aimed at Eroding Trust, Experts Say (lien direct) |
Disruptive malware attacks on Ukrainian organizations (posing as ransomware attacks) are very likely part of Russia's wider effort to undermine Ukraine's sovereignty, according to analysts. |
Ransomware
Malware
|
|
|
|
2022-01-18 17:23:12 |
\'White Rabbit\' Ransomware May Be FIN8 Tool (lien direct) |
It's a double-extortion play that uses the command-line password 'KissMe' to hide its nasty acts and adorns its ransom note with cutesy ASCII bunny art.
|
Ransomware
Tool
|
|
|
|
2022-01-14 14:45:35 |
Russian Security Takes Down REvil Ransomware Gang (lien direct) |
The country's FSB said that it raided gang hideouts; seized currency, cars and personnel; and neutralized REvil's infrastructure. |
Ransomware
|
|
|
|
2022-01-11 17:06:11 |
FIN7 Mailing Malicious USB Sticks to Drop Ransomware (lien direct) |
The FBI warned that attackers are impersonating Health & Human Services and/or Amazon to mail BadUSB-poisoned USB devices to targets in transportation, insurance & defense.
|
Ransomware
|
|
|