What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-03-20 17:01:45 | PwndLocker Fixes Crypto Bug, Rebrands as ProLock Ransomware (lien direct) | PwndLocker has rebranded as the ProLock Ransomware after fixing a crypto bug that allowed a free decryptor to be created. [...] | Ransomware | ||
|
2020-03-19 17:36:40 | Sodinokibi Ransomware Data Leaks Now Sold on Hacker Forums (lien direct) | Ransomware victims who do not pay a ransom and have their stolen files leaked are now facing a bigger nightmare as other hackers and criminals sell and distribute the released files on hacker forums. [...] | Ransomware | ||
|
2020-03-18 19:18:53 | Most Ransomware Gets Executed Three Days After Initial Breach (lien direct) | Ransomware gets deployed three days after an organization's network gets infiltrated in the vast majority of attacks, with post-compromise deployment taking as long as 299 days in some of the dozens of attacks researchers at cybersecurity firm FireEye examined between 2017 and 2019. [...] | Ransomware | ||
|
2020-03-18 18:36:31 | Ransomware Gangs to Stop Attacking Health Orgs During Pandemic (lien direct) | Some Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic. [...] | Ransomware | ||
|
2020-03-18 10:26:34 | Emsisoft, Coveware Offer Free Ransomware Help During Coronavirus Outbreak (lien direct) | Emsisoft and Coveware have announced that they will be offering their ransomware decryption and negotiation services for free to healthcare providers during the Coronavirus outbreak. [...] | Ransomware | ||
|
2020-03-17 12:28:34 | New Nefilim Ransomware Threatens to Release Victims\' Data (lien direct) | A new ransomware called Nefilim that shares much of the same code as Nemty has started to become active in the wild and threatens to release stolen data. [...] | Ransomware | ||
|
2020-03-14 18:01:00 | (Déjà vu) The Week in Ransomware - March 13th 2020 - Stay Safe (lien direct) | This has been a slow week in terms of new variants, but we continue to see enterprise-targeting ransomware operators threatening to release data for non-paying victims. [...] | Ransomware | ||
|
2020-03-14 18:01:00 | The Week in Ransomware - March 20th 2020 - Stay Safe (lien direct) | This has been a slow week in terms of new variants, but we continue to see enterprise-targeting ransomware operators threatening to release data for non-paying victims. [...] | Ransomware | ||
|
2020-03-12 13:39:12 | New CoronaVirus Ransomware Acts as Cover for Kpot Infostealer (lien direct) | A new ransomware called CoronaVirus is has been distributed through a fake web site pretending to promote the system optimization software and utilities from WiseCleaner. [...] | Ransomware | ||
|
2020-03-10 13:15:01 | Paradise Ransomware Distributed via Uncommon Spam Attachment (lien direct) | Attackers have started to send Excel Web Query attachments in phishing campaigns to download and install the Paradise Ransomware on unsuspecting victims. [...] | Ransomware Spam | ||
|
2020-03-08 13:45:29 | Ryuk Ransomware Behind Durham, North Carolina Cyberattack (lien direct) | The City of Durham, North Carolina has shut down its network after suffering a cyberattack by the Ryuk Ransomware this weekend. [...] | Ransomware | ||
|
2020-03-07 10:15:00 | Ransomware Threatens to Reveal Company\'s \'Dirty\' Secrets (lien direct) | The operators of the Sodinokibi Ransomware are threatening to publicly share a company's "dirty" financial secrets because they refused to pay the demanded ransom. [...] | Ransomware | ||
|
2020-03-06 16:13:45 | The Week in Ransomware - March 6th 2020 - Breaches Everywhere (lien direct) | Ransomware continues to target the enterprise and local government in the hopes of a big windfall of bitcoins. In addition new variants of STOP, Dharma, and other families continue to be released. [...] | Ransomware | ||
|
2020-03-05 15:36:08 | Microsoft Shares Tactics Used in Human-Operated Ransomware Attacks (lien direct) | Microsoft today shared tips on how to defend against human-operated ransomware attacks known to be behind hundreds of millions of dollars in losses following campaigns targeting enterprises and government entities. [...] | Ransomware | ||
|
2020-03-05 12:02:00 | PwndLocker Ransomware Gets Pwned: Decryption Now Available (lien direct) | Emsisoft has discovered a way to decrypt files encrypted by the new PwndLocker Ransomware so that victims can recover their files without paying a ransom. [...] | Ransomware | ||
|
2020-03-04 17:28:39 | Ryuk Ransomware Attacked Epiq Global Via TrickBot Infection (lien direct) | Legal services and e-discovery giant Epiq Global took their systems offline on Saturday after the Ryuk Ransomware was deployed and began encrypting devices on their network. [...] | Ransomware | ||
|
2020-03-04 12:09:37 | Windows Explorer Used by Mailto Ransomware to Evade Detection (lien direct) | A newly discovered Mailto (NetWalker) ransomware strain can inject malicious code into the Windows Explorer process so that the malware can evade detection. [...] | Ransomware Malware | ||
|
2020-03-03 16:36:05 | Ransomware Attackers Use Your Cloud Backups Against You (lien direct) | Backups are one the most, if not the most, important defense against ransomware, but if not configured properly, attackers will use it against you. [...] | Ransomware | ||
|
2020-03-03 13:48:04 | German BSI Tells Local Govt Authorities Not to Pay Ransoms (lien direct) | BSI, Germany's federal cybersecurity agency, recommends local governments and municipal institutions not to pay the ransoms asked by attackers after they get affected by ransomware attacks. [...] | Ransomware | ||
|
2020-03-02 19:10:10 | Nemty Ransomware Punishes Victims by Posting Their Stolen Data (lien direct) | The Nemty Ransomware is the latest cybercrime operation to create a data leak site to punish victims who refuse to pay ransoms. [...] | Ransomware | ||
|
2020-03-02 15:08:07 | New PwndLocker Ransomware Targeting U.S. Cities, Enterprises (lien direct) | Driven by the temptation of big ransom payments, a new ransomware called PwndLocker has started targeting the networks of businesses and local governments with ransom demands over $650,000. [...] | Ransomware | ||
|
2020-02-28 18:47:19 | The Week in Ransomware - February 28th 2020 - Data Leaks Everywhere (lien direct) | Over the past two weeks, we continue to see small towns, fire departments, hospitals, and companies being attacked by ransomware. [...] | Ransomware | ||
|
2020-02-28 18:07:35 | US Railroad Contractor Reports Data Breach After Ransomware Attack (lien direct) | RailWorks Corporation, one of North America's leading railroad track and transit system providers, disclosed a ransomware attack that led to the exposure of personally identifiable information of current and former employees, their beneficiaries and dependents, as well as that of independent contractors. [...] | Ransomware Data Breach Guideline | ||
|
2020-02-28 12:25:11 | Sodinokibi Ransomware Posts Alleged Data of Kenneth Cole Fashion Giant (lien direct) | The operators behind Sodinokibi Ransomware published download links to files containing what they claim is financial and work documents, as well as customers' personal data stolen from giant U.S. fashion house Kenneth Cole Productions. [...] | Ransomware | ||
|
2020-02-27 14:16:53 | Nemty Ransomware Actively Distributed via \'Love Letter\' Spam (lien direct) | Security researchers have spotted an ongoing malspam campaign using emails disguised as messages from secret lovers to deliver Nemty Ransomware payloads on the computers of potential victims. [...] | Ransomware Spam | ||
|
2020-02-27 10:48:02 | FBI Says $140+ Million Paid to Ransomware, Offers Defense Tips (lien direct) | Through the analysis of collected ransomware bitcoin wallets and ransom notes, the FBI states that victims have paid over $140 million to ransomware operators over the past six years. [...] | Ransomware | ||
|
2020-02-26 19:43:01 | Sodinokibi Ransomware May Tip NASDAQ on Attacks to Hurt Stock Prices (lien direct) | The operators of the Sodinokibi Ransomware (REvil) have started urging affiliates to copy their victim's data before encrypting computers so it can be used as leverage on a new data leak site that is being launched soon. [...] | Ransomware | ||
|
2020-02-25 00:01:00 | DoppelPaymer Ransomware Launches Site to Post Victim\'s Data (lien direct) | The operators of the DoppelPaymer Ransomware have launched a site that they will use to shame victims who do not pay a ransom and to publish any files that were stolen before computers were encrypted. [...] | Ransomware | ||
|
2020-02-18 18:43:37 | Dharma Ransomware Attacks Italy in New Spam Campaign (lien direct) | Threat actors are distributing the Dharma Ransomware in a new spam campaign targeting Windows users in Italy. [...] | Ransomware Spam Threat | ||
|
2020-02-18 14:57:23 | US Govt Warns of Ransomware Attacks on Pipeline Operations (lien direct) | The Cybersecurity and Infrastructure Security Agency (CISA) today alerted organizations across all critical U.S. infrastructure sectors about a recent ransomware attack that affected a natural gas compression facility. [...] | Ransomware | ||
|
2020-02-14 16:31:01 | The Week in Ransomware - February 14th 2020 - Targeting MSPs (lien direct) | This week was your standard ransomware week with new ransomware variants released and various organizations being attacked. [...] | Ransomware | ||
|
2020-02-10 13:45:54 | Ragnar Locker Ransomware Targets MSP Enterprise Support Tools (lien direct) | A ransomware called Ragnar Locker is specifically targeting software commonly used by managed service providers to prevent their attack from being detected and stopped. [...] | Ransomware | ||
|
2020-02-08 00:56:23 | The Week in Ransomware - February 7th 2020 - Exploiting Drivers (lien direct) | This week we did not see too many new variants released, but we did have some interesting ransomware news. [...] | Ransomware | ||
|
2020-02-07 16:45:00 | TA505 Hackers Behind Maastricht University Ransomware Attack (lien direct) | Maastricht University (UM) disclosed that it paid the 30 bitcoin ransom requested by the attackers who encrypted some of its critical systems following a cyberattack that took place on December 23, 2019. [...] | Ransomware | ||
|
2020-02-06 12:37:37 | Ransomware Exploits GIGABYTE Driver to Kill AV Processes (lien direct) | The attackers behind the RobbinHood Ransomware are exploiting a vulnerable GIGABYTE driver to install a malicious and unsigned driver into Windows that is used to terminate antivirus and security software. [...] | Ransomware | ||
|
2020-02-05 16:08:26 | Mailto (NetWalker) Ransomware Targets Enterprise Networks (lien direct) | With the high ransom prices and big payouts of enterprise-targeting ransomware, we now have another ransomware known as Mailto or Netwalker that is compromising enterprise networks and encrypting all of the Windows devices connected to it. [...] | Ransomware | ||
|
2020-02-05 11:27:22 | New Ransomware Strain Halts Toll Group Deliveries (lien direct) | Australian transportation and logistics company Toll Group confirmed today that systems across multiple sites and business units were encrypted by a new variant of the Mailto ransomware. [...] | Ransomware | ||
|
2020-02-03 12:40:43 | Bouygues Construction Shuts Down Network to Thwart Maze Ransomware (lien direct) | French construction giant Bouygues Construction shut down their computer network to avoid having all of their data encrypted by the Maze Ransomware. [...] | Ransomware | ||
|
2020-02-03 11:21:45 | DoppelPaymer Ransomware Sells Victims\' Data on Darknet if Not Paid (lien direct) | The DoppelPaymer Ransomware is the latest family threatening to sell or publish a victim's stolen files if they do not pay a ransom demand. [...] | Ransomware | ||
|
2020-01-31 18:52:44 | The Week in Ransomware - January 31st 2020 - Taking it to The Courts (lien direct) | This week we saw victim's continuing to use the legal system to target ransomware operator's assets and services as well as a new ransomware targeting vulnerabilities. [...] | Ransomware | ||
|
2020-01-28 13:41:05 | Ransomware Bitcoin Wallet Frozen by UK Court to Recover Ransom (lien direct) | A victim's insurance company convinced the UK courts to freeze a bitcoin wallet containing over $800K worth of a ransomware payment. [...] | Ransomware | ||
|
2020-01-24 18:13:22 | The Week in Ransomware - January 24th 2020 - Duck for Cover! (lien direct) | Ransomware continues its onslaught against cities, the enterprise, and even houses of worship as threat actors attempt to encrypt as much as they can to earn big payouts. [...] | Ransomware Threat | ||
|
2020-01-24 15:07:38 | Citrix Releases Final Patch as Ransomware Attacks Ramp Up (lien direct) | Citrix released the final permanent fix for the actively exploited CVE-2019-19781 vulnerability, needed to secure all vulnerable Citrix Application Delivery Controller (ADC), Citrix Gateway, and Citrix SD-WAN WANOP appliances. [...] | Ransomware | ||
|
2020-01-23 02:00:00 | Sodinokibi Ransomware Threatens to Publish Data of Automotive Group (lien direct) | The attackers behind the Sodinokibi Ransomware are now threatening to publish data stolen from another victim after they failed to get in touch and pay the ransom to have the data decrypted. [...] | Ransomware | ||
|
2020-01-23 00:01:00 | Maze Ransomware Not Getting Paid, Leaks Data Left and Right (lien direct) | Maze ransomware operators have infected computers from Medical Diagnostic Laboratories (MDLab) and are releasing close to 9.5GB of data stolen from infected machines. [...] | Ransomware | ||
|
2020-01-21 06:45:41 | Windows EFS Feature May Help Ransomware Attackers (lien direct) | Security researchers have created concept ransomware that takes advantage of a feature in Windows that encrypts files and folders to protect them from unauthorized physical access to the computer. [...] | Ransomware | ||
|
2020-01-21 04:04:04 | BitPyLock Ransomware Now Threatens to Publish Stolen Data (lien direct) | A new ransomware called BitPyLock has quickly gone from targeting individual workstations to trying to compromise networks and stealing files before encrypting devices. [...] | Ransomware | ||
|
2020-01-20 16:36:23 | FTCode Ransomware Now Steals Saved Login Credentials (lien direct) | FTCode ransomware victims now have one more thing to worry about with the malware having been upgraded to also steal saved user credentials from email clients and web browsers. [...] | Ransomware Malware | ||
|
2020-01-18 11:54:14 | New Jersey Synagogue Suffers Sodinokibi Ransomware Attack (lien direct) | Temple Har Shalom in Warren, New Jersey had their network breached by the actors behind the Sodinokibi Ransomware who encrypted numerous computers on the network. [...] | Ransomware | ||
|
2020-01-17 17:49:34 | The Week in Ransomware - January 17th 2020 - Never Ends (lien direct) | Data exfiltration is still the big thing this week, with the Sodinokibi Ransomware publishing stolen files of one of their victims for the first time and Nemty planning on leaking stolen files as well. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
