What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-10-07 13:15:52 | RobbinHood Ransomware Using Street Cred to Make Victims Pay (lien direct) | The operators behind the RobbinHood ransomware have changed their language in the ransom note in an effort to take from victims all hope of decrypting the files for free and to make them pay for the recovery. [...] | Ransomware | ||
|
2019-10-07 11:55:01 | Muhstik Ransomware Victim Hacks Back, Releases Decryption Keys (lien direct) | A victim of the Muhstik Ransomware has hacked back against his attackers and released close to 3,000 decryption keys for victims along with a free decryptor to get their files back. [...] | Ransomware | ||
|
2019-10-07 04:01:12 | DCH Hospital Pays Ryuk Ransomware for Decryption Key (lien direct) | DCH hospitals in Alabama have decided to the pay ransom for the Ryuk Ransomware in order to receive a decryptor and get their computer systems back up and running. [...] | Ransomware | ||
|
2019-10-05 16:47:56 | HildaCrypt Ransomware Developer Releases Decryption Keys (lien direct) | The developer behind the HildaCrypt Ransomware has decided to release the ransomware's private decryption keys. With these keys a decryptor can be made that would allow any potential victims to recover their files for free. [...] | Ransomware | ||
|
2019-10-04 16:45:16 | The Week in Ransomware - October 4th 2019 - That\'s all Folks (lien direct) | This has been quite a busy week with lots of new variants, new ransomware attacks, including those targeting hospitals, and new information coming out about the REvil/Sodinokibi Ransomware. [...] | Ransomware | ||
|
2019-10-03 02:05:31 | FTCode PowerShell Ransomware Resurfaces in Spam Campaign (lien direct) | An old PowerShell ransomware has resurfaced with a vengeance in a spam distribution aimed at Italian recipients. This ransomware is called FTCode and is completely PowerShell based, which means it can encrypt the computer without downloading any additional components. [...] | Ransomware Spam | ||
|
2019-10-02 17:39:27 | FBI Warns U.S. Organizations About High Impact Ransomware (lien direct) | The U.S. Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) issued a public service announcement today regarding the increasing number of high-impact ransomware attacks against public and private U.S. organizations. [...] | Ransomware | ||
|
2019-10-02 12:24:15 | Sodinokibi Ransomware Builds An All-Star Team of Affiliates (lien direct) | The Sodinokibi Ransomware (REvil) has been making news lately as they target the enterprise, MSPs, and government entities through their hand-picked team of all-star affiliates. These affiliates appear to have had a prior history with the GandCrab RaaS and use similar distribution methods. [...] | Ransomware | ||
|
2019-10-01 12:39:11 | U.S. and Australian Hospitals Targeted by New Ransomware Attacks (lien direct) | Several hospitals and health service providers from the U.S. and Australia were forced to completely close down or shut down some of their systems after being hit by ransomware attacks that affected and disrupted their IT systems. [...] | Ransomware | ||
|
2019-09-30 17:25:23 | Free Ouroboros Ransomware (Zeropadypt NextGen) Decryption Available (lien direct) | Victims of the Ouroboros Ransomware, otherwise known as Zeropadypt NextGen, can get their files decrypted for free with the help of a security researcher and a decryptor that has been made for different variants. [...] | Ransomware | ||
|
2019-09-27 17:47:11 | The Week in Ransomware - September 27th 2019 - Quiet Before the Storm? (lien direct) | It is another week of small variants and minor ransomware being released, with no major ransomware attacks being publicized or new large scale ransomware attacks. [...] | Ransomware | ||
|
2019-09-26 12:39:33 | REvil (Sodinokibi) Ransomware Targets Chinese Users with DHL Spam (lien direct) | A new spam campaign is underway that is targeting Chinese recipients to trick them into installing the REvil (Sodinokibi) Ransomware. [...] | Ransomware Spam | ||
|
2019-09-25 15:05:01 | Ransomware Decryptors Released for Yatron, WannaCryFake, & FortuneCrypt (lien direct) | Security vendors released decryptors for three ransomware infections today that allow victims to recover their files for free. These decryptors are for the WannaCryFake, Yatron, and FortuneCrypt Ransomware infections. [...] | Ransomware | Wannacry | |
|
2019-09-24 14:55:15 | Shared Code Links Sodinokibi to GandCrab, Minus the Fun & Games (lien direct) | Hints of a connection between the defunct GandCrab and the Sodinokibi ransomware get stronger as researchers find code-level similarities and artifacts suggesting continued operations. [...] | Ransomware | ||
|
2019-09-20 18:41:58 | The Week in Ransomware - September 20th 2019 - Fairly Quiet (lien direct) | This has been a fairly quiet week with no real big news other than further updates from Nemty, the introduction of TFlower, and another Ordinypt campaign targeting Germany. [...] | Ransomware | ||
|
2019-09-20 15:03:00 | Meet Stop Ransomware: The Most Active Ransomware Nobody Talks About (lien direct) | Have you ever heard of the STOP Ransomware? Probably not, as few write about it, most researchers don't cover it, and for the most part it targets consumers through cracked software, adware bundles, and shady sites. [...] | Ransomware | ||
|
2019-09-17 13:18:17 | TFlower Ransomware - The Latest Attack Targeting Businesses (lien direct) | The latest ransomware targeting corporate environments is called TFlower and is being installed on networks after attackers hack into exposed Remote Desktop services. [...] | Ransomware Hack | ||
|
2019-09-16 03:35:07 | How to Enable Ransomware Protection in Windows 10 (lien direct) | Windows Defender includes a security feature called "Ransomware Protection" that allows you to enable various protections against ransomware infections. This feature is disabled by default in Windows 10, but with ransomware running rampant, it is important to enable this feature in order to get the most protection on your computer. [...] | Ransomware | ||
|
2019-09-14 15:11:58 | Nemty Ransomware Update Lets It Kill Processes and Services (lien direct) | Nemty ransomware is under active development, although its version number may not show it. Its authors are clearly making efforts to make it a more efficient and sophisticated malware and it begins wider distribution. [...] | Ransomware Malware | ||
|
2019-09-13 20:40:25 | The Week in Ransomware - September 13th 2019 - Exploit Kits (lien direct) | This week was your standard mix of new variants of existing ransomware and new ransomware families being released. [...] | Ransomware | ||
|
2019-09-13 05:56:05 | Giant Entercom Radio Network Deals with Ransomware-Like Incident (lien direct) | Entercom Communications, one of the largest radio station owners in the U.S. has been dealing with a cyberattack that looks very much like a ransomware incident. The issue occurred over the past weekend and affects all offices the company has across the country. [...] | Ransomware | ||
|
2019-09-11 15:44:01 | Ryuk Related Malware Steals Confidential Military, Financial Files (lien direct) | A new malware with strange associations to the Ryuk Ransomware has been discovered to look for and steal confidential financial, military, and law enforcement files. [...] | Ransomware Malware | ||
|
2019-09-09 16:49:00 | Exploit Kits Target Windows Users with Ransomware and Trojans (lien direct) | Over the weekend and into today, four different malvertising campaigns have been redirecting users to exploit kits that install password stealing Trojans, ransomware, and clipboard hijackers. [...] | Ransomware | ||
|
2019-09-08 11:01:01 | Fake PayPal Site Spreads Nemty Ransomware (lien direct) | A web page pretending to offer an official application from PayPal is currently spreading Nemty ransomware to unsuspecting users. [...] | Ransomware | ||
|
2019-09-06 16:56:00 | The Week in Ransomware - September 6th 2019 - Three Week Roundup (lien direct) | Over the past three weeks, we have seen a lot of attacks on schools, local government entities, and MSPs by the REvil and Ryuk crews. These targets tend to pay large ransoms through insurance and thus are prime targets for the ransomware affiliates and developers. [...] | Ransomware | ||
|
2019-09-06 10:19:03 | Lilocked Ransomware Actively Targeting Servers and Web Sites (lien direct) | A relatively new ransomware named Lilocked by researchers and Lilu by the developers is actively targeting servers and encrypting the data located on them. All of the known infected servers are web sites, which is causing the encrypted files to show up in Google search results. [...] | Ransomware | ★★ | |
|
2019-09-05 13:13:05 | Students Rejoice: School District Closed by Ransomware Attack (lien direct) | The summer school holiday has not ended for students in Flagstaff, Arizona, as a ransomware attack hitting the School District computers forces the decision to cancel classes for today. The schedule for tomorrow is uncertain. [...] | Ransomware | ||
|
2019-09-05 06:30:03 | Ransomware Adopts DoppelPaymer Name Given by Researchers (lien direct) | Whether it be malware devs contacting us about our stories or commenting in our forums, we all know that the ransomware developers monitor researchers and technology sites for information about their programs. Nothing shows this better, than a ransomware that recently decided to adopt the name given to it by researchers. [...] | Ransomware Malware | ||
|
2019-09-05 03:33:03 | Hackers Ask for $5.3 Million Ransom, Turn Down $400k, Get Nothing (lien direct) | Hackers infecting the computer systems of the city of New Bedford, Massachusetts, with ransomware wouldn't settle for anything less that than $5.3 million to decrypt the data. The ransom was too high and they got a big fat nothing in return. [...] | Ransomware | ||
|
2019-09-03 04:48:05 | Nemty Ransomware Gets Distribution from RIG Exploit Kit (lien direct) | The operators of Nemty ransomware appear to have struck a distribution deal to target systems with outdated technology that can still be infected by exploit kits. [...] | Ransomware | ||
|
2019-09-02 11:27:03 | Sodinokibi Ransomware Spreads via Fake Forums on Hacked Sites (lien direct) | A distributor for the Sodinokibi Ransomware is hacking into WordPress sites and injecting JavaScript that displays a fake Q & A forum post over the content of the original site. This fake post contains an "answer" from the site's "admin" that contains a link to the ransomware installer. [...] | Ransomware | ||
|
2019-08-30 09:22:05 | A Look Inside the Highly Profitable Sodinokibi Ransomware Business (lien direct) | Sodinokibi operators started looking for affiliates soon after the GandCrab ransomware-as-a-service (RaaS) shutdown. High-profile members in the underground community have already joined the private program. [...] | Ransomware | ||
|
2019-08-29 17:53:05 | Sodinokibi Ransomware Encrypts Records of Hundreds of Dental Practices (lien direct) | A ransomware attack hit a remote data backup service and encrypted files from dental practices in the U.S. Hundreds of customers relying on the backup solution had their data locked by the Sodinokibi file-encrypting malware. [...] | Ransomware | ||
|
2019-08-26 03:29:02 | New Nemty Ransomware May Spread via Compromised RDP Connections (lien direct) | A new ransomware has been spotted over the weekend, carrying references to the Russian president and antivirus software. The researchers call is Nemty. [...] | Ransomware | ||
|
2019-08-21 10:36:01 | Hackers Want $2.5 Million Ransom for Texas Ransomware Attacks (lien direct) | The threat actor that hit multiple Texas local governments with file-encrypting malwarelast week may have done it by compromising a managed service provider. The attacker demanded a collective ransom of $2.5 million, the mayor of a municipality says. [...] | Ransomware Threat | ||
|
2019-08-18 08:10:01 | \'Coordinated Ransomware Attack\' in Texas Hits 23 Local Governments (lien direct) | Texas is currently fighting an unprecedented wave of ransomware attacks that has targeted local government entities in the state, with at least 23 impacted by the attacks. [...] | Ransomware | ||
|
2019-08-16 18:43:02 | The Week in Ransomware - August 16th 2019 - Fairly Slow (lien direct) | Been a pretty slow week with mostly new variants of existing ransomware being released. The most interesting story was researchers at Check Point being able to install ransomware on a Canon DSLR camera. [...] | Ransomware | ||
|
2019-08-11 14:00:00 | Canon DSLR Camera Infected with Ransomware Over the Air (lien direct) | Vulnerabilities in the image transfer protocol used in digital cameras enabled a security researcher to infect with ransomware a Canon EOS 80D DSLR over a Wifi connection. [...] | Ransomware | ||
|
2019-08-09 18:14:04 | The Week in Ransomware - August 9th 2019 - Summer Doldrums (lien direct) | As we creep towards the end of the summer, things have started to thankfully slow down a bit. The biggest news was a wiper called GermanWiper targeting Germany and pretending to be a ransomware. Otherwise, for this week we mostly saw new variants of existing ransomware being released. [...] | Ransomware | ||
|
2019-08-08 10:01:04 | US Accounts for More than Half of World\'s Ransomware Attacks (lien direct) | The threat of ransomware is more prevalent in the U.S., with more than half of the global detections originating from this country, a new report informs. [...] | Ransomware Threat | ||
|
2019-08-06 03:34:03 | New Lord Exploit Kit Pushes njRAT and ERIS Ransomware (lien direct) | A new kit for web-based attacks calling itself Lord EK has been spotted at the beginning of the month as part of a malvertising chain that uses the PopCash ad network. [...] | Ransomware | ||
|
2019-08-05 17:15:05 | ECh0raix Ransomware Decryptor Restores QNAP Files For Free (lien direct) | A decryptor for the eCh0raix Ransomware, or QNAPCrypt, has been released that allows victims to recover encrypted files on their QNAP NAS devices. [...] | Ransomware | ||
|
2019-08-04 20:03:05 | GermanWiper Ransomware Erases Data, Still Asks for Ransom (lien direct) | Multiple companies were off to a rough start last week when a phishing campaign pushing a data-wiping malware targeted them and asked for a ransom. Researchers call it GermanWiper. [...] | Ransomware Malware | ||
|
2019-08-03 11:30:00 | The Week in Ransomware - August 2nd 2019 - More of the Same (lien direct) | This week the biggest news was attackers breaking into Iomega NAS devices, wiping the drives, and then leaving ransom notes. It is not known if any users were able to recover their files after paying the ransom. [...] | Ransomware | ||
|
2019-08-02 08:01:00 | Malware Attack Delays Alabama District\'s School Year Twice (lien direct) | For the second time in a week, Houston County Schools in Alabama had to delay their school year's opening due to a malware attack and the ongoing recovery. It has not been disclosed what type of malware attack they were hit with, but sounds like a ransomware attack based upon the details given. [...] | Ransomware Malware | ||
|
2019-07-30 13:33:01 | US Govt, NGOs Ask Cyber Community to Boost Ransomware Defenses (lien direct) | A joint statement published by CISA, the MS-ISAC, the NGA, and the NASCIO urges government partners and the cyber community at large to reinforce their ransomware defenses. [...] | Ransomware | ||
|
2019-07-29 14:47:01 | New Android Ransomware Uses SMS Spam to Infect Its Victims (lien direct) | A new ransomware family targeting Android devices spreads to other victims by sending text messages containing malicious links to the entire contact list found on already infected targets. [...] | Ransomware Spam | ||
|
2019-07-26 16:23:02 | The Week in Ransomware - July 26th 2019 - State of Emergency (lien direct) | Now that ransomware developers know that they can earn monstrous payouts from local cities and insurance policies, we see a new government agency, school district, or large company getting hit with a ransomware attack every day. [...] | Ransomware | ||
|
2019-07-26 11:39:05 | No More Ransom Success Story: Saves $108+ Million in Ransomware Payments (lien direct) | Today marks the third anniversary of No More Ransom and through its partners from the public and private sectors, law enforcement, academia, and researchers, the project has been able to help hundreds of thousands, if not millions, of victims get their encrypted files back for free. [...] | Ransomware | ||
|
2019-07-25 16:52:04 | Ransomware Attacks Prompt Louisiana to Declare State of Emergency (lien direct) | Louisiana Governor John Edwards has declared a state of emergency after a wave of ransomware attacks targeted school districts this month. This Emergency Declaration will allow Louisiana state resources and cybersecurity experts to assist local governments in securing their networks. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
