What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-09-06 10:19:03 | Lilocked Ransomware Actively Targeting Servers and Web Sites (lien direct) | A relatively new ransomware named Lilocked by researchers and Lilu by the developers is actively targeting servers and encrypting the data located on them. All of the known infected servers are web sites, which is causing the encrypted files to show up in Google search results. [...] | Ransomware | ★★ | |
|
2019-09-05 13:13:05 | Students Rejoice: School District Closed by Ransomware Attack (lien direct) | The summer school holiday has not ended for students in Flagstaff, Arizona, as a ransomware attack hitting the School District computers forces the decision to cancel classes for today. The schedule for tomorrow is uncertain. [...] | Ransomware | ||
|
2019-09-05 06:30:03 | Ransomware Adopts DoppelPaymer Name Given by Researchers (lien direct) | Whether it be malware devs contacting us about our stories or commenting in our forums, we all know that the ransomware developers monitor researchers and technology sites for information about their programs. Nothing shows this better, than a ransomware that recently decided to adopt the name given to it by researchers. [...] | Ransomware Malware | ||
|
2019-09-05 03:33:03 | Hackers Ask for $5.3 Million Ransom, Turn Down $400k, Get Nothing (lien direct) | Hackers infecting the computer systems of the city of New Bedford, Massachusetts, with ransomware wouldn't settle for anything less that than $5.3 million to decrypt the data. The ransom was too high and they got a big fat nothing in return. [...] | Ransomware | ||
|
2019-09-03 04:48:05 | Nemty Ransomware Gets Distribution from RIG Exploit Kit (lien direct) | The operators of Nemty ransomware appear to have struck a distribution deal to target systems with outdated technology that can still be infected by exploit kits. [...] | Ransomware | ||
|
2019-09-02 11:27:03 | Sodinokibi Ransomware Spreads via Fake Forums on Hacked Sites (lien direct) | A distributor for the Sodinokibi Ransomware is hacking into WordPress sites and injecting JavaScript that displays a fake Q & A forum post over the content of the original site. This fake post contains an "answer" from the site's "admin" that contains a link to the ransomware installer. [...] | Ransomware | ||
|
2019-08-30 09:22:05 | A Look Inside the Highly Profitable Sodinokibi Ransomware Business (lien direct) | Sodinokibi operators started looking for affiliates soon after the GandCrab ransomware-as-a-service (RaaS) shutdown. High-profile members in the underground community have already joined the private program. [...] | Ransomware | ||
|
2019-08-29 17:53:05 | Sodinokibi Ransomware Encrypts Records of Hundreds of Dental Practices (lien direct) | A ransomware attack hit a remote data backup service and encrypted files from dental practices in the U.S. Hundreds of customers relying on the backup solution had their data locked by the Sodinokibi file-encrypting malware. [...] | Ransomware | ||
|
2019-08-26 03:29:02 | New Nemty Ransomware May Spread via Compromised RDP Connections (lien direct) | A new ransomware has been spotted over the weekend, carrying references to the Russian president and antivirus software. The researchers call is Nemty. [...] | Ransomware | ||
|
2019-08-21 10:36:01 | Hackers Want $2.5 Million Ransom for Texas Ransomware Attacks (lien direct) | The threat actor that hit multiple Texas local governments with file-encrypting malwarelast week may have done it by compromising a managed service provider. The attacker demanded a collective ransom of $2.5 million, the mayor of a municipality says. [...] | Ransomware Threat | ||
|
2019-08-18 08:10:01 | \'Coordinated Ransomware Attack\' in Texas Hits 23 Local Governments (lien direct) | Texas is currently fighting an unprecedented wave of ransomware attacks that has targeted local government entities in the state, with at least 23 impacted by the attacks. [...] | Ransomware | ||
|
2019-08-16 18:43:02 | The Week in Ransomware - August 16th 2019 - Fairly Slow (lien direct) | Been a pretty slow week with mostly new variants of existing ransomware being released. The most interesting story was researchers at Check Point being able to install ransomware on a Canon DSLR camera. [...] | Ransomware | ||
|
2019-08-11 14:00:00 | Canon DSLR Camera Infected with Ransomware Over the Air (lien direct) | Vulnerabilities in the image transfer protocol used in digital cameras enabled a security researcher to infect with ransomware a Canon EOS 80D DSLR over a Wifi connection. [...] | Ransomware | ||
|
2019-08-09 18:14:04 | The Week in Ransomware - August 9th 2019 - Summer Doldrums (lien direct) | As we creep towards the end of the summer, things have started to thankfully slow down a bit. The biggest news was a wiper called GermanWiper targeting Germany and pretending to be a ransomware. Otherwise, for this week we mostly saw new variants of existing ransomware being released. [...] | Ransomware | ||
|
2019-08-08 10:01:04 | US Accounts for More than Half of World\'s Ransomware Attacks (lien direct) | The threat of ransomware is more prevalent in the U.S., with more than half of the global detections originating from this country, a new report informs. [...] | Ransomware Threat | ||
|
2019-08-06 03:34:03 | New Lord Exploit Kit Pushes njRAT and ERIS Ransomware (lien direct) | A new kit for web-based attacks calling itself Lord EK has been spotted at the beginning of the month as part of a malvertising chain that uses the PopCash ad network. [...] | Ransomware | ||
|
2019-08-05 17:15:05 | ECh0raix Ransomware Decryptor Restores QNAP Files For Free (lien direct) | A decryptor for the eCh0raix Ransomware, or QNAPCrypt, has been released that allows victims to recover encrypted files on their QNAP NAS devices. [...] | Ransomware | ||
|
2019-08-04 20:03:05 | GermanWiper Ransomware Erases Data, Still Asks for Ransom (lien direct) | Multiple companies were off to a rough start last week when a phishing campaign pushing a data-wiping malware targeted them and asked for a ransom. Researchers call it GermanWiper. [...] | Ransomware Malware | ||
|
2019-08-03 11:30:00 | The Week in Ransomware - August 2nd 2019 - More of the Same (lien direct) | This week the biggest news was attackers breaking into Iomega NAS devices, wiping the drives, and then leaving ransom notes. It is not known if any users were able to recover their files after paying the ransom. [...] | Ransomware | ||
|
2019-08-02 08:01:00 | Malware Attack Delays Alabama District\'s School Year Twice (lien direct) | For the second time in a week, Houston County Schools in Alabama had to delay their school year's opening due to a malware attack and the ongoing recovery. It has not been disclosed what type of malware attack they were hit with, but sounds like a ransomware attack based upon the details given. [...] | Ransomware Malware | ||
|
2019-07-30 13:33:01 | US Govt, NGOs Ask Cyber Community to Boost Ransomware Defenses (lien direct) | A joint statement published by CISA, the MS-ISAC, the NGA, and the NASCIO urges government partners and the cyber community at large to reinforce their ransomware defenses. [...] | Ransomware | ||
|
2019-07-29 14:47:01 | New Android Ransomware Uses SMS Spam to Infect Its Victims (lien direct) | A new ransomware family targeting Android devices spreads to other victims by sending text messages containing malicious links to the entire contact list found on already infected targets. [...] | Ransomware Spam | ||
|
2019-07-26 16:23:02 | The Week in Ransomware - July 26th 2019 - State of Emergency (lien direct) | Now that ransomware developers know that they can earn monstrous payouts from local cities and insurance policies, we see a new government agency, school district, or large company getting hit with a ransomware attack every day. [...] | Ransomware | ||
|
2019-07-26 11:39:05 | No More Ransom Success Story: Saves $108+ Million in Ransomware Payments (lien direct) | Today marks the third anniversary of No More Ransom and through its partners from the public and private sectors, law enforcement, academia, and researchers, the project has been able to help hundreds of thousands, if not millions, of victims get their encrypted files back for free. [...] | Ransomware | ||
|
2019-07-25 16:52:04 | Ransomware Attacks Prompt Louisiana to Declare State of Emergency (lien direct) | Louisiana Governor John Edwards has declared a state of emergency after a wave of ransomware attacks targeted school districts this month. This Emergency Declaration will allow Louisiana state resources and cybersecurity experts to assist local governments in securing their networks. [...] | Ransomware | ||
|
2019-07-25 12:00:05 | Ransomware Attack Cripples Power Company\'s Entire Network (lien direct) | A ransomware attack that hit the South African electric utility City Power from Johannesburg this morning encrypted all its systems, including databases and applications. [...] | Ransomware | ||
|
2019-07-24 13:55:00 | Sodinokibi Ransomware Distributed by Hackers Posing as German BSI (lien direct) | BSI, the German national cybersecurity authority, has issued a warning about a malspam campaign that distributes the Sodinokibi ransomware via emails designed to look like official BSI messages. [...] | Ransomware | ||
|
2019-07-22 17:50:02 | (Déjà vu) LooCipher Ransomware Decryptor Gets Your Files Back for Free (lien direct) | A decryptor for the LooCipher Ransomware has been released by Emsisoft that allows victims to decrypt their files for free. If you were infected with LooCipher, do not pay the ransom and instead follow the instructions below. [...] | Ransomware | ★★★★ | |
|
2019-07-19 18:59:02 | The Week in Ransomware - July 19th 2019 - Targeted Attacks (lien direct) | What a week. Every day we see a new city, police station, college, government agency, or company being affected by a ransomware attack. To make matters worse, they are getting hit with targeted ransomware that asks for a hefty price to get a decryptor. [...] | Ransomware | ||
|
2019-07-19 16:46:01 | iNSYNQ Cloud Hosting Provider Hit by Ransomware Attack (lien direct) | Cloud computing provider iNSYNQ experienced a ransomware attack which forced the company to shut down some of its servers to contain the malware infection from spreading and affecting more customer data. [...] | Ransomware Malware | ||
|
2019-07-19 07:34:03 | Ransomware Attacks Grow Rampant, Paying Still Not a Good Option (lien direct) | A flurry of ransomware attacks has been reported this week affecting entities in US states of Georgia, New York, Tennessee, and Florida. [...] | Ransomware | ||
|
2019-07-19 03:00:05 | Elusive MegaCortex Ransomware Found - Here is What We Know (lien direct) | A sample of the ransomware called MegaCortex that is known to target the enterprise in targeted attacks has been found and analyzed. In this article, we will provide a brief look at the MegaCortex Ransomware and how it encrypts a computer. [...] | Ransomware | ||
|
2019-07-16 12:49:00 | Ryuk, Sodinokibi Ransomware Responsible for Higher Average Ransoms (lien direct) | The average payment demand following a ransomware attack has almost doubled in the second quarter of the year and victims have Ryuk and Sodinokiby to blame. [...] | Ransomware | ||
|
2019-07-16 06:35:00 | FBI Releases Master Decryption Keys for GandCrab Ransomware (lien direct) | In an FBI Flash Alert, the FBI has released the master decryption keys for the Gandcrab Ransomware versions 4, 5, 5.0.4, 5.1, and 5.2. Using these keys, any individual or organization can create and release their very own GandCrab decryptor. [...] | Ransomware | ||
|
2019-07-15 13:36:01 | New DoppelPaymer Ransomware Emerges from BitPaymer\'s Code (lien direct) | Malware researchers have discovered a new file-encrypting malware they dubbed DoppelPaymer that has been making victims since at least mid-June, asking hundreds of thousands of US dollars in ransom. [...] | Ransomware Malware | ||
|
2019-07-14 14:05:01 | La Porte County Pays $130,000 Ransom To Ryuk Ransomware (lien direct) | Another public administration in the U.S. surrenders cybercriminal demands as La Porte County, Indiana, pays $130,000 to recover data on computer systems impacted by ransomware. [...] | Ransomware | ||
|
2019-07-12 17:00:00 | The Week in Ransomware - July 12th 2019 - Under Siege (lien direct) | If you read the news, it's hard not to see that ransomware is far from dead and may be worse then ever. Emboldened by large government payouts, ransomware developers are increasingly targeting cities, the enterprise, and charities where they can create large scale damage and thus potentially large-scale ransom payments. [...] | Ransomware | ||
|
2019-07-12 07:45:03 | Monroe College Hit With Ransomware, $2 Million Demanded (lien direct) | A ransomware attack at New York City's Monroe College has shutdown the college's computer systems at campuses located in Manhattan, New Rochelle and St. Lucia. [...] | Ransomware | ||
|
2019-07-10 10:00:03 | New eCh0raix Ransomware Brute-Forces QNAP NAS Devices (lien direct) | A new ransomware strain written in Go and dubbed eCh0raix by the Anomali Threat Research Team is being used in the wild to infect and encrypt documents on consumer and enterprise QNAP Network Attached Storage (NAS) devices used for backups and file storage. [...] | Ransomware Threat | ||
|
2019-07-09 13:11:02 | Rig Exploit Kit Pushing Eris Ransomware in Drive-by Downloads (lien direct) | The RIG exploit kit has been spotted distributing the new ERIS Ransomware as its payload. Using the RIG exploit kit, vulnerable victims will find that the ransomware is installed on their computer without their knowledge simply by visiting a web site. [...] | Ransomware | ||
|
2019-07-05 15:00:05 | The Week in Ransomware - July 5th 2019 - Shadiness in the Sunshine State (lien direct) | This week is a double edition covering the ransomware news between June 22nd and July 5th. The biggest news is Florida getting beat up by ransomware, the increasing usage of exploit kits, and a strong push by Sodinokibi. [...] | Ransomware | ||
|
2019-07-04 03:04:00 | Sodinokibi Ransomware Exploits Windows Bug to Elevate Privileges (lien direct) | Sodinokibi ransomware is looking to increase its privileges on a victim machine by exploiting a vulnerability in the Win32k component present on Windows 7 through 10 and Server editions. [...] | Ransomware Vulnerability | ||
|
2019-06-26 11:52:03 | Attackers Earn Over $1 Million in Florida Ransomware Attacks (lien direct) | Hackers launching ransomware attacks against municipalities in Florida locked earnings in excess of $1 million this month as administrators of two cities found no other way to recover files on affected systems. [...] | Ransomware | ||
|
2019-06-24 15:15:00 | Sodinokibi Ransomware Now Pushed by Exploit Kits and Malvertising (lien direct) | The Sodinokibi Ransomware has been spotted being distributed through malvertising that redirects to the RIG exploit kit. With the use of exploit kits, Sodinokibi is now using a wide stream of vectors to infect victims with the ransomware. [...] | Ransomware | ||
|
2019-06-21 17:14:04 | The Week in Ransomware - June 21st 2019 - Backup, Backup, Backup! (lien direct) | This week's ransomware news was dominated by the release of the GandCrab 5.2 decryptor, the Sodinokibi Ransomware taking off, and a new ransomware called LooCipher spreading via spam. [...] | Ransomware | ||
|
2019-06-21 14:11:03 | New LooCipher Ransomware Spreads Its Evil Through Spam (lien direct) | A new ransomware called LooCipher has been discovered that is actively being used in the wild to infect users. While it is not known exactly how this ransomware is being distributed, based on some of the files that were found, we believe it is through a spam campaign. [...] | Ransomware Spam | ||
|
2019-06-21 10:31:00 | Sodinokibi Ransomware Spreads Wide via Hacked MSPs, Sites, and Spam (lien direct) | With the GandCrab Ransomware having been shut down, other actors are looking to fill the hole left behind with their own ransomware. Such is the case with the Sodinokibi Ransomware, whose affiliates are using a wide range of tactics to distribute the ransomware and earn in a commission. [...] | Ransomware Spam | ||
|
2019-06-20 13:31:01 | DanaBot Banking Trojan Upgraded with \'Non Ransomware\' Module (lien direct) | A new malicious campaign is distributing an upgraded variant of DanaBot that comes with a new ransomware module used to target potential victims from Italy and Poland via phishing emails which deliver malware droppers. [...] | Ransomware Malware | ||
|
2019-06-19 03:30:00 | Ryuk Ransomware Adds IP and Computer Name Blacklisting (lien direct) | A new variant of the Ryuk Ransomware has been discovered that adds IP address and computer blacklisting so that matching computers will not be encrypted. [...] | Ransomware | ||
|
2019-06-17 09:43:02 | Release of GandCrab 5.2 Decryptor Ends a Bad Ransomware Story (lien direct) | In collaboration with law enforcement agencies around the world, Bitdefender has released an updated decryptor for the GandCrab Ransomware that can decrypt files encrypted by versions 1, 4, and 5 through 5.2. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
