Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-09-22 14:10:57 |
Feds Sanctions SUEX Cryptocurrency Exchange for Laundering Ransomware Payouts (lien direct) |
The action is the first of its kind in the U.S., as the government increases efforts to get a handle on cybercrime. |
Ransomware
|
|
|
|
2021-09-21 13:14:02 |
BlackMatter Strikes Iowa Farmers Cooperative, Demands $5.9M Ransom (lien direct) |
Critical infrastructure appears to be targeted in latest ransomware attack, diminishing the hopes of governments to curb such attacks. |
Ransomware
|
|
|
|
2021-09-17 12:07:59 |
Microsoft MSHTML Flaw Exploited by Ryuk Ransomware Gang (lien direct) |
Microsoft and RiskIQ researchers have identified several campaigns using the recently patched zero-day, reiterating a call for organizations to update affected systems. |
Ransomware
|
|
|
|
2021-09-16 13:00:37 |
REvil/Sodinokibi Ransomware Universal Decryptor Key Is Out (lien direct) |
Bitdefender worked with law enforcement to create a key to unlock victims encrypted in ransomware attacks before REvil's servers went belly-up on July 13. |
Ransomware
|
|
|
|
2021-09-14 11:24:06 |
BlackMatter Ransomware Hits Japanese Tech Giant Olympus (lien direct) |
The incident that occurred Sept. 8 and affected its EMEA IT systems seems to signal a return to business as usual for ransomware groups. |
Ransomware
|
|
|
|
2021-09-13 18:59:22 |
REvil\'s Back; Coder Fat-Fingered Away Its Decryptor Key? (lien direct) |
How did Kaseya get a universal decryptor after a mind-bogglingly big ransomware attack? A REvil coder misclicked, generated & issued it, and “That's how we sh*t ourselves.” |
Ransomware
|
|
★★
|
|
2021-09-13 18:17:37 |
Honing Cybersecurity Strategy When Everyone\'s a Target for Ransomware (lien direct) |
Aamir Lakhani, researcher at FortiGuard Labs, explains why organizations must extend cyber-awareness training across the entire enterprise, from Luddites to the C-suite. |
Ransomware
|
|
|
|
2021-09-10 19:37:45 |
Top Steps for Ransomware Recovery and Preparation (lien direct) |
Alex Restrepo, Virtual Data Center Solutions at Veritas Technologies, discusses post-attack restoration options, and how to prepare for another one in the future. |
Ransomware
|
|
|
|
2021-09-09 22:49:27 |
Thousands of Fortinet VPN Account Credentials Leaked (lien direct) |
They were posted for free by former Babuk gang members who've bickered, squabbled and huffed off to start their own darn ransomware businesses, dagnabbit.
|
Ransomware
|
|
|
|
2021-09-08 21:14:06 |
What Ragnar Locker Got Wrong About Ransomware Negotiators – Podcast (lien direct) |
There are a lot of "tells" that the ransomware group doesn't understand how negotiators work, despite threatening to dox data if victims call for help. |
Ransomware
|
|
|
|
2021-09-08 19:00:26 |
Tooling Network Detection & Response for Ransomware (lien direct) |
Justin Jett, director of audit and compliance at Plixer, discusses how to effectively use network flow data in the fight against ransomware. |
Ransomware
|
|
|
|
2021-09-07 22:41:45 |
Ragnar Locker Gang Warns Victims Not to Call the FBI (lien direct) |
Investigators/the FBI/ransomware negotiators just screw everything up, the ransomware gang said, threatening to publish files if victims look for help. |
Ransomware
|
|
|
|
2021-09-01 15:55:23 |
LockBit Jumps Its Own Countdown, Publishes Bangkok Air Files (lien direct) |
The ransomware gang claims to have pulled off successful attacks against two airlines and one airport with help from its Accenture attack. |
Ransomware
|
|
|
|
2021-09-01 12:17:17 |
Feds Warn of Ransomware Attacks Ahead of Labor Day (lien direct) |
Threat actors recently have used long holiday weekends -- when many staff are taking time off -- as a prime opportunity to ambush organizations. |
Threat
Ransomware
|
|
|
|
2021-08-31 10:42:18 |
LockFile Ransomware Uses Never-Before Seen Encryption to Avoid Detection (lien direct) |
Researchers from Sophos discovered the emerging threat in July, which exploits the ProxyShell vulnerabilities in Microsoft Exchange servers to attack systems. |
Threat
Ransomware
|
|
|
|
2021-08-30 15:14:21 |
LockBit Gang to Publish 103GB of Bangkok Air Customer Data (lien direct) |
The airline announced the breach on Thursday, and the ransomware gang started a countdown clock the next day. |
Ransomware
|
|
|
|
2021-08-27 13:50:44 |
Ragnarok Ransomware Gang Bites the Dust, Releases Decryptor (lien direct) |
The cybercriminal group, active since late 2019, has closed its doors and released the key to unlocking victims' files on its dark web portal. |
Ransomware
|
|
|
|
2021-08-26 13:00:11 |
Podcast: Ransomware Up x10: Disrupting Cybercrime Suppy Chains an Opportunity (lien direct) |
Derek Manky, Chief, Security Insights & Global Threat Alliances at Fortinet's FortiGuard Labs, discusses the top threats and lessons learned from the first half of 2021.
|
Threat
Ransomware
|
|
|
|
2021-08-20 14:09:50 |
Nigerian Threat Actors Solicit Employees to Deploy Ransomware for Cut of Profits (lien direct) |
Campaign emails company insiders and initially offers 1 million in Bitcoin if they install DemonWare on an organization's network. |
Threat
Ransomware
|
|
|
|
2021-08-19 21:13:24 |
How Ready Are You for a Ransomware Attack? (lien direct) |
Oliver Tavakoli, CTO at Vectra, lays out the different layers of ransomware defense all companies should implement. |
Ransomware
|
|
|
|
2021-08-17 16:44:58 |
LockBit 2.0 Ransomware Proliferates Globally (lien direct) |
Fresh attacks target companies' employees, promising millions of dollars in exchange for valid account credentials for initial access. |
Ransomware
|
|
|
|
2021-08-17 04:00:43 |
Phishing Costs Nearly Quadrupled Over 6 Years (lien direct) |
Lost productivity & mopping up after the costly attacks that follow phishing – BEC & ransomware in particular – eat up most costs, not payouts to crooks. |
Ransomware
|
|
|
|
2021-08-11 21:56:00 |
Accenture Confirms LockBit Ransomware Attack (lien direct) |
LockBit offered Accenture's purported databases and made a requisite jab at its purportedly sad security. Accenture says it recovered just fine from backups. |
Ransomware
|
|
|
|
2021-08-11 15:34:13 |
Kaseya\'s \'Master Key\' to REvil Attack Leaked Online (lien direct) |
The decryptor is of little use to other companies hit in the spate of attacks unleashed before the notorious ransomware group went dark, researchers said.
|
Ransomware
|
|
|
|
2021-08-10 17:22:28 |
eCh0raix Ransomware Variant Targets QNAP, Synology NAS Devices (lien direct) |
Some bad actors are honing tools to go after small fry: This variant was refined to target not one, but two vendors' devices that are common in SOHO setups. |
Ransomware
|
|
|
|
2021-08-10 15:33:46 |
Chaos Malware Walks Line Between Ransomware and Wiper (lien direct) |
The dangerous malware has been rapidly developed since June and could be released into the wild soon. |
Ransomware
Malware
|
|
|
|
2021-08-06 14:44:16 |
Angry Affiliate Leaks Conti Ransomware Gang Playbook (lien direct) |
The data includes IP addresses for Cobalt Strike C2 servers as well as an archive including numerous tools and training materials for the group, revealing how it performs attacks. |
Ransomware
|
|
|
|
2021-08-03 20:00:31 |
Ransomware Volumes Hit Record Highs as 2021 Wears On (lien direct) |
The second quarter of the year saw the highest volumes of ransomware attacks ever, with Ryuk leading the way. |
Ransomware
Guideline
|
|
|
|
2021-07-28 18:33:02 |
BlackMatter & Haron: Evil Ransomware Newborns or Rebirths (lien direct) |
They're either new or old REvil & DarkSide wine in new bottles. Both have a taste for deep-pocketed targets and DarkSide-esque virtue-signaling. |
Ransomware
|
|
|
|
2021-07-27 21:10:11 |
No More Ransom Saves Victims Nearly €1 Over 5 Years (lien direct) |
No More Ransom is collecting decryptors so ransomware victims don't have to pay to get their data back and attackers don't get rich.
|
Ransomware
|
|
|
|
2021-07-26 21:08:27 |
Babuk Ransomware Gang Ransomed, New Forum Stuffed With Porn (lien direct) |
A comment spammer flooded Babuk's new ransomware forum with gay orgy porn GIFs and demanded $5K in bitcoin. |
Ransomware
|
|
|
|
2021-07-26 13:00:30 |
The True Impact of Ransomware Attacks (lien direct) |
Keeper's research reveals that in addition to knocking systems offline, ransomware attacks degrade productivity, cause organizations to incur significant indirect costs, and mar their reputations. |
Ransomware
|
|
|
|
2021-07-23 18:52:32 |
5 Steps to Improving Ransomware Resiliency (lien direct) |
Alex Restrepo, cybersecurity researcher at Veritas, lays out the key concepts that organizations should be paying attention to now and implementing today. |
Ransomware
|
|
|
|
2021-07-23 16:24:47 |
FIN7\'s Liquor Lure Compromises Law Firm with Backdoor (lien direct) |
Using a lure relating to a lawsuit against the owner of Jack Daniels whiskey, the cybergang launched a campaign that may be bent on ransomware deployment. |
Ransomware
|
|
|
|
2021-07-23 12:21:24 |
Kaseya Obtains Universal Decryptor for REvil Ransomware (lien direct) |
The vendor will work with customers affected by the early July spate of ransomware attacks to unlock files; it's unclear if the ransom was paid. |
Ransomware
|
|
|
|
2021-07-21 13:00:12 |
Tracking Malware and Ransomware Domains in 2021 (lien direct) |
Ransomware is the threat of 2021. It's impacting everything from large enterprises, hospitals, to other aspects of our critical infrastructure. Here, we'll take a look at actual malware domain traffic and how it correlates to ransomware attacks in the news. |
Threat
Ransomware
Malware
|
|
|
|
2021-07-20 17:00:49 |
Law Firm to the Fortune 500 Breached with Ransomware (lien direct) |
Deep-pocketed clients' customers & suppliers could be in the attacker's net, with potential PII exposure from an A-list clientele such as Apple, Boeing and IBM. |
Ransomware
|
|
|
|
2021-07-19 23:12:27 |
What\'s Next for REvil\'s Victims? (lien direct) |
Podcast: Nothing, says a ransomware negotiator who has tips on staying out of the sad subset of victims left in the lurch, mid-negotiation, after REvil's servers went up in smoke. |
Ransomware
|
|
|
|
2021-07-16 21:10:20 |
Linux Variant of HelloKitty Ransomware Targets VMware ESXi Servers (lien direct) |
HelloKitty joins the growing list of ransomware bigwigs going after the juicy target of VMware ESXi, where one hit gets scads of VMs. |
Ransomware
|
|
|
|
2021-07-13 20:51:53 |
Ransomware Giant REvil\'s Sites Disappear (lien direct) |
Just days after President Biden demanded that Russian President Putin shut down ransomware groups, the servers of one of the biggest groups mysteriously went dark. |
Ransomware
|
|
|
|
2021-07-13 20:10:32 |
Guess Fashion Brand Deals With Data Loss After Ransomware Attack (lien direct) |
An attack on Guess compromised the personal and banking data of 1,300 victims. |
Ransomware
|
|
|
|
2021-07-13 14:36:47 |
New CISA Director Confirmed, White House Gains Cyber-Director (lien direct) |
Jen Easterly, former NSA official and Morgan Stanley vet, will take up the lead at CISA as the ransomware scourge rages on. |
Ransomware
Guideline
|
|
|
|
2021-07-12 15:53:42 |
(Déjà vu) Kaseya Patches Zero-Days Used in REvil Attacks (lien direct) |
The security update addresses three VSA vulnerabilities used by the ransomware gang to launch a worldwide supply-chain attack on MSPs and their customers.
|
Ransomware
|
|
|
|
2021-07-06 15:42:42 |
Kaseya Patches Imminent After Zero-Day Exploits, 1,500 Impacted (lien direct) |
REvil ransomware gang lowers price for universal decryptor after massive worldwide ransomware push against Kaseya security vulnerability CVE-2021-30116. |
Ransomware
Vulnerability
|
|
|
|
2021-07-05 20:12:26 |
Kaseya Attack Fallout: CISA, FBI Offer Guidance (lien direct) |
Following a brazen ransomware attack by the REvil cybergang, CISA and FBI offer guidance to victims. |
Ransomware
|
|
|
|
2021-07-02 16:17:02 |
TrickBot Spruces Up Its Banking Trojan Module (lien direct) |
After focusing almost exclusively on delivering ransomware for the past year, the code changes could indicate that TrickBot is getting back into the bank-fraud game. |
Ransomware
|
|
|
|
2021-07-02 16:07:17 |
Why Healthcare Keeps Falling Prey to Ransomware and Other Cyberattacks (lien direct) |
Nate Warfield, CTO of Prevailion and former Microsoft security researcher, discusses the many security challenges and failings plaguing this industry. |
Ransomware
|
|
|
|
2021-07-01 20:56:15 |
Linux Variant of REvil Ransomware Targets VMware\'s ESXi, NAS Devices (lien direct) |
Criminals behind the potent REvil ransomware have ported the malware to Linux for targeted attacks. |
Ransomware
Malware
|
|
|
|
2021-07-01 14:11:42 |
Babuk Ransomware Builder Mysteriously Appears in VirusTotal (lien direct) |
The gang's source code is now available to rivals and security researchers alike - and a decryptor likely is not far behind. |
Ransomware
|
|
|
|
2021-06-24 19:52:35 |
Oh FCUK! Fashion Label, Medical Diagnostics Firm Latest REvil Victims (lien direct) |
The infamous ransomware group hit two big-name companies within hours of each other. |
Ransomware
|
|
|