What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-07-02 13:06:02 | LooCipher: The New Infernal Ransomware (lien direct) | A new Ransomware appeared in the threat landscape, the malware began to threats the digital world. This time using a nice but scary name: LooCipher. Introduction A new Ransomware began to threats the digital world. This time using a nice but scary name: LooCipher. The name is at the same time an allusion to its capabilities (thank […] | Ransomware Malware Threat | ||
|
2019-06-26 13:37:05 | Lake City agreed to pay $500,000 in ransom, is the second case in Florida in a week (lien direct) | A few days ago, Riviera Beach City agreed to pay $600,000 in ransom, now a Lake City, another city in Florida, agreed to do the same after a ransomware attack. A few days ago, Riviera Beach City agreed to pay $600,000 in ransom, now less than a week later, another city in Florida opted to […] | Ransomware | ||
|
2019-06-20 13:49:02 | The Riviera Beach City pays $600,000 in ransom (lien direct) | The Riviera Beach City, Florida, agreed to pay $600,000 in ransom to decrypt its data after a ransomware-based attack hit its computer system. The Riviera Beach City Council voted unanimously to pay $600,000 in ransom to decrypt its records after a ransomware attack hit its systems. The council has previously agreed to spend $941,000 to […] | Ransomware | ||
|
2019-06-17 20:58:04 | (Déjà vu) A free Decryptor tool for GandCrab Ransomware released (lien direct) | Good news for the victims of the latest variants of the GandCrab ransomware, NoMoreRansomware released a free decryption tool. Victims of the latest variants of the GandCrab ransomware can now decrypt their files for free using a free decryptor tool released on the the NoMoreRansom website. The tool works with versions 5 to 5.2 of the ransomware, […] | Ransomware Tool | ||
|
2019-06-14 12:58:01 | French authorities released the PyLocky decryptor for versions 1 and 2 (lien direct) | Good news for the victims of the pyLocky Ransomware versions 1 and 2, French authorities have released the pyLocky decryptor to decrypt the files for free. French authorities have released a decryptor for pyLocky Ransomware versions 1 and 2. The decryptor allows victims to decrypt their files for free. It was developed in collaboration between […] | Ransomware | ||
|
2019-06-13 10:55:02 | Ransomware paralyzed production for at least a week at ASCO factories (lien direct) | Malware infections could be devastating for production environments, a ransomware infection halts production operations for days at airplane parts manufacturer ASCO. ASCO, is of the world’s largest manufacturers of aerospace components The company has offices and production plants in Belgium, Canada, Germany the US, Brasil, and France. ASCO provides components to Airbus, Boeing, Bombardier Aerospace, […] | Ransomware | ||
|
2019-05-28 12:37:03 | Shade Ransomware is very active outside of Russia and targets more English-speaking victims (lien direct) | Experts at PaloAlto Networks spotted a new Shade ransomware campaigns targeting news countries, including in the U.S. and Japan. Researchers observed a new wave of Shade ransomware attacks against targets in several countries, including the US and Japan. Shade is considered one of the most dangerous threats in the cyber crime scenario, it has been active […] | Ransomware | ||
|
2019-05-25 17:16:05 | Hackers target MySQL databases to deliver the GandCrab ransomware (lien direct) | Security experts at Sophos have detected a wave of attacks targeting Windows servers that are running MySQL databases with the intent of delivering the GandCrab ransomware Sophos researchers have observed a wave of attacks targeting Windows servers that are running MySQL databases, threat actors aim at delivering the GandCrab ransomware. This is the first time […] | Ransomware Threat | ||
|
2019-05-22 22:10:02 | Emsisoft released a free Decrypter for the GetCrypt ransomware (lien direct) | For the second time in a few days, experts at Emsisoft released a free decrypter, this time to help victims of the GetCrypt ransomware. Security experts at Emsisoft released a new decrypted in a few days, it could be used for free by victims of the GetCrypt ransomware to decrypt their files encrypted by the malware. The […] | Ransomware | ||
|
2019-05-22 06:36:02 | The Satan Ransomware adds new exploits to its arsenal (lien direct) | A variant of the Satan ransomware recently observed includes exploits to its arsenal and targets machines leveraging additional flaws. Experts at FortiGuard Labs have discovered a new variant of the Satan ransomware that includes new exploits to its portfolio and leverages additional vulnerabilities to infect as many machines as possible. The Satan ransomware first appeared […] | Ransomware | ||
|
2019-05-21 21:10:02 | Emsisoft released a free Decrypter for JSWorm 2.0 (lien direct) | Good news for the victims of the JSWorm 2.0 ransomware, thanks to experts at Emsisoft they can decrypt their file for free. Experts at Emsisoft malware research team released a decrypter for a recently discovered ransomware tracked as JSWorm 2.0. JSWorm 2.0 is written in C++ and implements Blowfish encryption. The first version of the […] | Ransomware Malware | ||
|
2019-05-09 13:37:00 | Information Services Giant Wolters Kluwer hit by ransomware attack (lien direct) | Global information services company Wolters Kluwer took offline has taken offline many of its applications and platforms in response to a ransomware attack. Another ransomware attack made hit a big company, this time the victim is the Global information services giant Wolters Kluwer that took offline some of the affected systems after the incident. Wolters […] | Ransomware | ||
|
2019-05-08 10:39:03 | Most of the servers at City of Baltimore shut down after ransomware attack (lien direct) | For the second time in a year, systems of the city of Baltimore has been hit by a ransomware attack, forcing officials to shut down a majority of them. The city of Baltimore shut down most of its servers in response to a ransomware attack that hit its network. Baltimore Mayor Bernard C. Jack Young […] | Ransomware | ||
|
2019-05-07 08:44:05 | New MegaCortex Ransomware targets enterprise networks (lien direct) | Experts at security firm Sophos discovered a new strain of ransomware dubbed MegaCortex that is targeting corporate networks. Security experts at Sophos discovered a new piece of ransomware dubbed MegaCortex that is targeting corporate networks. MegaCortex attacks were already reported in the United States, Italy, Canada, France, the Netherlands, and Ireland. “A new ransomware that […] | Ransomware | ||
|
2019-05-04 13:57:02 | Mysterious attacks wipe Git repositories and ask a ransom to rescue code (lien direct) | Extortion practice hit programmers’ Git repositories, experts observed a new piece of ransomware that wipes them and replaces the code with a ransom note. Hackers are using a new piece of ransomware to target GitHub, GitLab, and Bitbucket repositories, wiping code and commiting, and leaving a ransom note. The hackers wipe out all commit history […] | Ransomware | ||
|
2019-04-28 09:12:04 | Security Affairs newsletter Round 211 – News of the week (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy Once again thank you! 60 Million records of LinkedIn users exposed online INPIVX hidden service, a new way to organize ransomware attacks Ride-Hailing Company operating in Iran exposes data of Iranian Drivers A […] | Ransomware | ||
|
2019-04-19 09:41:00 | Ransomware attack knocks Weather Channel off the Air (lien direct) | A ransomware attack knocked the Weather Channel off the air for at least 90 minutes Thursday morning, federal law enforcement are investigating the incident.A ranomware attack knocked the Weather Channel off the air for at least 90 minutes Thursday morning, federal law enforcement are investigating the incident. A cyber attack hit the Weather Channel and […] | Ransomware | ||
|
2019-04-12 11:59:04 | Emsisoft released a free decryptor for CryptoPokemon ransomware (lien direct) | Good news for the victims of the CryptoPokemon ransomware, security experts at Emsisoft just released a free decrypter tool. Victims of the CryptoPokemon ransomware have a good reason to smile, security experts at Emsisoft have released a free decrypter tool. The ransomware was first discovered by experts at IntezerLabs, the CryptoPokemon ransomware is a new […] | Ransomware | ||
|
2019-03-27 10:11:05 | (Déjà vu) Norsk Hydro estimates losses between $35M – $41M in the first week after cyberattack (lien direct) | Norwegian aluminum giant Norsk Hydro estimates more than $40 million losses in the first week following the ransomware attack that disrupted its operations. Last week Norwegian Norsk Hydro, one of the biggest Aluminum producer, suffered an extensive cyber attack that impacted operations in several of the company's business areas across Europe and the U.S. The news […] | Ransomware | ||
|
2019-03-26 08:44:02 | How to get back files encrypted by the Hacked Ransomware for free (lien direct) | Good news for the victims of the Hacked Ransomware, the security firm Emsisoft has released a free decryptor to decrypt the data of infected computers. Security experts at Emsisoft released a free decryptor for the Hacked Ransomware. The Hacked Ransomware was first spotted in 2017, it appends .hacked extension to the encrypted files and includes […] | Ransomware | ||
|
2019-03-25 09:49:05 | PewDiePie ransomware oblige users subscribe to PewDiePie YouTube channel (lien direct) | It is a battle with no holds barred between T-Series and PewDiePie, their fans are spreading the PewDiePie ransomware to force users to subscribe to PewDiePie Youtube channel. The story I’m going to tell you is another chapter of the battle between the most followed Youtuber T-Series and PewDiePie. T-Series is an Indian music company, […] | Ransomware | Uber | |
|
2019-03-21 07:36:02 | [SI-LAB] LockerGoga is the most active ransomware that focuses on targeting companies (lien direct) | LockerGoga is the most active ransomware, experts warns it focuses on targeting companies and bypass AV signature-based detection. LockerGoga ransomware is a crypto-malware that loads the malicious file on the system from an infected email attachment. This threat is very critical these days, and it is the most active ransomware that focuses on targeting companies. Altran and Norsk Hydro are two companies severely […] | Ransomware Threat | ||
|
2019-03-19 14:57:04 | New JNEC.a Ransomware delivered through WinRAR exploit (lien direct) | A new strain of ransomware tracked as JNEC.a is spreading through an exploit that triggers the recently discovered vulnerability in WinRAR. The ransomware was involved in the attacks observed by the Qihoo 360 Threat Intelligence Center in the wild, threat actors used an archive named “vk_4221345.rar” that delivers JNEC.a when its contents are extracted with […] | Ransomware Vulnerability Threat | ||
|
2019-03-11 12:48:05 | STOP ransomware encrypts files and steals victim\'s data (lien direct) | Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. The STOP ransomware made the headlines because it is installing password-stealing Trojans on the victims’ machines. Experts observed the ransomware also installing the dreaded Azorult password-stealing Trojan on victim’s machine to steal account credentials, cryptocurrency wallets, documents […] | Ransomware | ||
|
2019-03-10 10:58:04 | Jackson County paid $400,000 to crooks after ransomare attack (lien direct) | Ransomware threat makes the headlines again, this time an attack hit the computers of Jackson County, Georgia, paralyzing the government activity. Computers of Jackson County, Georgia, were infected with ransomware that paralyzed the government activity until officials decided to pay a $400,000 ransom to decrypt the files. “The Jackson County government paid online criminals about […] | Ransomware Threat | ||
|
2019-03-06 08:26:00 | [SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users (lien direct) | Over the last few days, a new ransomware campaign infected several users around the world as part of the #OpJerusalem campaign. SI-LAB analyzed this malware and noticed that it does not use sophisticated techniques. Criminals used UPX packer to protect malware code written in Go and a RSA public certificate is hardcoded inside malware to […] | Ransomware Malware | ||
|
2019-02-25 08:44:01 | B0r0nt0K ransomware demands $75,000 ransom to the victims (lien direct) | The recently discovered B0r0nt0K ransomware infects both Linux and Windows servers and demands $75,000 ransom to the victims. A new piece of ransomware called B0r0nt0K appeared in the threat landscape, it is targeting web sites and demanding a 20 bitcoin ransom to the victims (roughly $75,000). This B0r0nt0K ransomware infects both Linux and Windows servers. […] | Ransomware Threat | ||
|
2019-02-23 11:33:03 | Cr1ptT0r Ransomware targets D-Link NAS Devices and embedded systems (lien direct) | A new piece of ransomware called Cr1ptT0r infects embedded systems and network attached storage (NAS) devices exposed online. A new piece of ransomware called Cr1ptT0r was discovered by experts, it infects embedded systems and network attached storage (NAS) devices exposed online. The discovery of the Cr1ptT0r ransomware was first reported on a discussion in the […] | Ransomware | ||
|
2019-02-19 14:45:04 | The Long Run of Shade Ransomware (lien direct) | Since the beginning of the year, security firms observed a new intense ransomware campaign spreading the Shade ransomware. Between January and February, a new, intense, ransomware campaign has been observed by many security firms. It spreads Shade/Treshold variants, one of the most dangerous threats in the cyber crime scenario, known since its massive infection into […] | Ransomware | ||
|
2019-02-09 14:29:03 | GandCrab ransomware campaign targets Italy using steganography (lien direct) | A newly discovered malware campaign leverages steganography to hide GandCrab ransomware in an apparently innocent Mario image. Security experts at Bromium have discovered a malware campaign using steganography to hide the GandCrab ransomware in a Mario graphic package. According to Matthew Rowan, a researcher at Bromium, threat actors use steganography to hide the malicious code and […] | Ransomware Malware Threat | ||
|
2019-01-26 15:05:01 | Anatova ransomware – Expert believe it will be a dangerous threat (lien direct) | Security experts at McAfee have discovered a new malware, dubbed Anatova ransomware, that has been spotted infecting computers worldwide The name Anatova is based on a name in the ransom note that is dropped on the infected systems. The Anatova ransomware outstands for its obfuscation capabilities and ability to infect network shares, it has a […] | Ransomware Threat | ||
|
2019-01-25 15:22:04 | Two distinct campaigns are spread GandCrab ransomware and Ursnif Trojan via weaponized docs (lien direct) | Security experts observed two distinct campaigns distributing the Ursnif malware, one of them also delivered the GandCrab ransomware. Experts pointed out that the cybercrime gangs behind the two campaigns are different, but they discovered many similarities in them. Attackers spread phishing messages using weaponized Microsoft Word document and leverages Powershell to deliver fileless malware. Ursnif is a banking […] | Ransomware | ||
|
2019-01-21 07:32:01 | Iranian developer advertised BlackRouter RaaS (lien direct) | An Iranian developer is promoting on a Telegram hacking channel the BlackRouter ransomware through a Ransomware-as-a-Service model. An Iranian developer is advertising on Telegram a Ransomware-as-a-Service called BlackRouter. The same expert advertises other malware and is believed to the author of another ransomware called Blackheart. promotes other infections such as a RAT. BlackRouter was first […] | Ransomware Malware | ||
|
2019-01-14 10:03:01 | Zurich refuses to pay Mondelez for NotPetya damages because it\'s \'an act of war\' (lien direct) | Zurich American Insurance Company is refusing to refund its client because consider the attack as “an act of war” that is not covered by its policy. The US food giant Mondelez is suing Zurich for $100 Million after the insurance company rejected its claim to restore normal operations following the massive NotPetya ransomware attack. On […] | Ransomware | NotPetya | |
|
2019-01-14 08:37:02 | Computers at the City Hall of Del Rio were infected by ransomware (lien direct) | The City Hall of Del Rio, a city in and the county seat of Val Verde County, Texas, was hit by a ransomware attack, operations were suspended. Last week, the City Hall of Del Rio, a city in and the county seat of Val Verde County, Texas, was hit by a ransomware attack. On Thursday, tens of computers at […] | Ransomware | ||
|
2019-01-14 05:43:03 | Which is the link between Ryuk ransomware and TrickBot? (lien direct) | FireEye and CrowdStrike discovered that threat actors behind the Ryuk ransomware are working with another cybercrime gang to gain access to target networks. In August 2018, security experts from Check Point uncovered a ransomware-based campaign aimed at organizations around the world conducted by North Korea-linked threat actor. This is the first time that a security firm […] | Ransomware Threat | ||
|
2019-01-11 14:59:03 | Victims of Pylocky ransomware can decrypt their files for free (lien direct) | Victims of the PyLocky Ransomware can use a tool released by security researcher Mike Bautista at Cisco Talos group to decrypt their files for free. I have good and bad news for the victims of the PyLocky Ransomware. The good news is that security researcher Mike Bautista at Cisco Talos group released a decryption tool […] | Ransomware Tool | ||
|
2019-01-05 15:16:04 | Did Aurora Ransomware infect you? You can decrypt file for free (lien direct) | Victims of the Aurora Ransomware could use a decryptor tool developed by the popular malware researcher Michael Gillespie to decrypt their data for free. Good news for the victims of the Aurora Ransomware, there are many variants of this Windows malware but most of the victims have been infected by the version that appends the […] | Ransomware Malware Tool | ||
|
2019-01-02 19:44:05 | Cloud Hosting Provider DataResolution.net hit by the Ryuk ransomware (lien direct) | The Cloud hosting provider Dataresolution.net was hit by a ransomware-based attack on Christmas Eve that took down its systems. Data Resolution LLC provides software hosting, business continuity systems, cloud computing, and data center services to more serves than 30,000 businesses worldwide, The news was first reported by the popular investigator Brian Krebs on KrebsOnSecurity, the company believe […] | Ransomware | ||
|
2018-12-27 08:45:01 | (Déjà vu) Hackers infect Linux servers with JungleSec Ransomware via IPMI Remote console (lien direct) | Since November, a new ransomware called JungleSec has been infecting servers through unsecured IPMI (Intelligent Platform Management Interface) cards. Security experts at BleepingComputer wrote about a new ransomware called JungleSec that is infecting victims through unsecured IPMI (Intelligent Platform Management Interface) cards. The ransomware was first observed early November. The IPMI is a set of computer interface […] | Ransomware | ||
|
2018-12-17 18:17:05 | Decrypting HiddenTear Ransomware for free with HT Brute Forcer (lien direct) | Good news for the victims of the dreaded HiddenTear Ransomware, the popular cybersecurity expert Michael Gillespie has devised a tool dubbed HT Brute Forcer that could allow decrypting files for free. In 2015, the Turkish security researchers Utku Sen published the HiddenTear ransomware, the first open source ransomware, for educational purposes. The original code was decryptable, for this reason, […] | Ransomware Tool | ||
|
2018-12-06 08:32:04 | DHS and FBI published a joint alert on SamSam Ransomware (lien direct) | The US Department of Homeland Security (DHS) and the FBI issued a joint alert on SamSam attacks targeting critical infrastructure. The US Department of Homeland Security (DHS) and the FBI published a joint alert on the activity associated with the infamous SamSam ransomware. The SamSam hackers extorted over 200 organizations, including public institutions, municipalities, and hospitals, they […] | Ransomware | ||
|
2018-12-05 07:58:00 | New strain of Ransomware infected over 100,000 PCs in China (lien direct) | Security experts reported a new strain of malware spreading in China, the malicious code rapidly infected over 100,000 PCs in just four days. Unfortunately, the number of infections is rapidly increasing because hackers compromised a supply chain. It is interesting to note that this ransomware requests victims to pay 110 yuan (nearly Euro 14) in ransom […] | Ransomware Malware | ||
|
2018-12-02 23:45:03 | Moscow\'s New Cable Car closed due to a ransomware infection (lien direct) | Two days after Moscow opened a new cable car system hackers infected its computer systems with ransomware. The cable car system is long over 700 meters and spans across the Moscow river linking the Luzhniki Olympic Complex to the observation platform on Sparrow Hills. Two days after Moscow cable car was opened, the servers of the Moscow […] | Ransomware | ||
|
2018-11-29 14:59:04 | U.S. DoJ charges Iranian duo over SamSam Ransomware activity (lien direct) | The U.S. DoJ charges two Iranian men over their alleged role in creating and spreading the infamous SamSam ransomware. Two Iranian men, Faramarz Shahi Savandi (34) and Mohammad Mehdi Shah Mansouri (27) have been charged by DoJ for their role in creating and distributing the dreaded SamSam ransomware. The duo faces six hacking and extortion-related charges, including conspiracy […] | Ransomware | ||
|
2018-11-26 21:41:00 | Ransomware attack disrupted emergency rooms at Ohio Hospital System (lien direct) | Ransomware attacks continue to threaten the healthcare industry, the last incident in order of time impacted the Ohio Hospital System. The ransomware attack infected computer systems at the East Ohio Regional Hospital and Ohio Valley Medical Center reportedly caused the disruption of the hospitals’ emergency rooms. The malware hit the Ohio Hospital System on Friday, Nov. 23, evening, […] | Ransomware Malware | ||
|
2018-11-04 10:32:04 | Kraken ransomware 2.0 is available through the RaaS model (lien direct) | The author of the infamous Kraken ransomware has released a new version of the malicious code and launched a RaaS distribution program on the Dark Web. Researchers from Recorded Future's Insikt Group and McAfee's Advanced Threat Research team have discovered a new version of the malware that is offered through a RaaS distribution program on the Dark Web. […] | Ransomware Malware Threat | ||
|
2018-11-03 09:20:01 | SamSam ransomware continues to make damages. Call it targeted Ransomware (lien direct) | According to the Symantec experts, the group behind the SamSam ransomware has continued to launch attacks against organizations during 2018. Security experts from Symantec published an interesting post on the evolution of the SamSam ransomware that in the last month was involved in targeted attacks against several organizations including the Colorado Department of Transportation (DOT) and the City […] | Ransomware | ||
|
2018-10-25 23:28:00 | Experts released a free Decryption Tool for GandCrab ransomware (lien direct) | Good news for the victims of the infamous GandCrab ransomware, security experts have created a decryption tool that allows them to decrypts files without paying the ransom. Bitdefender security firm along with Europol, the FBI, Romanian Police, and other law enforcement agencies has developed a free ransomware decryption tool. “The good news is that now […] | Ransomware Tool | ||
|
2018-10-20 18:54:03 | Syrian victims of the GandCrab ransomware can decrypt their files for free (lien direct) | The developers of the GandCrab ransomware have released the decryption keys for all Syrian victims in an underground cybercrime forum. The authors of the infamous GandCrab ransomware have released the decryption keys for all Syrian victims in an underground cybercrime forum. The crooks decided to release the decryption keys after a Syrian Twitter user published a harrowing message asking […] | Ransomware |
To see everything:
Our RSS (filtrered)
