What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-10-27 16:37:26 | NRA: No comment on Russian ransomware gang attack claims (lien direct) | The Grief ransomware gang claims to have attacked the National Rifle Association (NRA) and released allegedly stolen data as proof of the attack. [...] | Ransomware | ||
|
2021-10-27 14:35:13 | Free decryptor released for Atom Silo and LockFile ransomware (lien direct) | Avast has just released a decryption tool that will help AtomSilo and LockFile ransomware victims recover some of their files for free, without having to pay a ransom. [...] | Ransomware Tool | ||
|
2021-10-27 11:52:12 | Babuk ransomware decryptor released to recover files for free (lien direct) | Czech cybersecurity software firm Avast has created and released a decryption tool to help Babuk ransomware victims recover their files for free. [...] | Ransomware Tool | ★★★★ | |
|
2021-10-27 11:00:00 | (Déjà vu) Malicious NPM libraries install ransomware, password stealer (lien direct) | Malicious NPM packages pretending to be Roblox libraries are delivering ransomware and password-stealing trojans on unsuspecting users. [...] | Ransomware | ||
|
2021-10-27 11:00:00 | Malicious Roblox NPMs drop ransomware and password stealers (lien direct) | Malicious NPM packages pretending to be Roblox libraries are delivering ransomware and password-stealing trojans on unsuspecting users. [...] | Ransomware | ||
|
2021-10-26 09:59:00 | FBI: Ranzy Locker ransomware hit at least 30 US companies this year (lien direct) | The FBI said on Monday that Ranzy Locker ransomware operators had compromised at least 30 US companies this year from various industry sectors. [...] | Ransomware | ||
|
2021-10-25 10:31:42 | Hackers used billing software zero-day to deploy ransomware (lien direct) | An unknown ransomware group is exploiting a critical SQL injection bug found in the BillQuick Web Suite time and billing solution to deploy ransomware on their targets' networks in ongoing attacks. [...] | Ransomware | ||
|
2021-10-24 11:27:06 | BlackMatter ransomware victims quietly helped using secret decryptor (lien direct) | Cybersecurity firm Emsisoft has been secretly decrypting BlackMatter ransomware victims since this summer, saving victims millions of dollars. [...] | Ransomware | ||
|
2021-10-22 17:47:32 | The Week in Ransomware - October 22nd 2021 - Striking back (lien direct) | Between law enforcement operations, REvil's second shut down, and ransomware gangs' response to the hacking of their servers, it has been quite the week. [...] | Ransomware | ||
|
2021-10-22 14:02:21 | DarkSide ransomware rushes to cash out $7 million in Bitcoin (lien direct) | Almost $7 million worth of Bitcoin in a wallet controlled by DarkSide ransomware operators has been moved in what looks like a money laundering rollercoaster. [...] | Ransomware | ||
|
2021-10-22 11:48:53 | Groove ransomware calls on all extortion gangs to attack US interests (lien direct) | The Groove ransomware gang is calling on other extortion groups to attack US interests after law enforcement took down REvil's infrastructure last week. [...] | Ransomware | ||
|
2021-10-22 10:06:38 | Italian celebs\' data exposed in ransomware attack on SIAE (lien direct) | The Italian data protection authority Garante per la Protezione dei Dati Personali (GPDP) has announced an investigation into a data breach of the country's copyright protection agency. [...] | Ransomware Data Breach | ||
|
2021-10-21 15:07:54 | Evil Corp demands $40 million in new Macaw ransomware attacks (lien direct) | Evil Corp has launched a new ransomware called Macaw Locker to evade US sanctions that prevent victims from making ransom payments. [...] | Ransomware | ||
|
2021-10-21 12:24:13 | (Déjà vu) Hacking gang creates fake firm to hire pentesters for ransomware attacks (lien direct) | The FIN7 hacking group is attempting to join the highly profitable ransomware space by creating fake cybersecurity companies that conduct network attacks under the guise of pentesting. [...] | Ransomware | ||
|
2021-10-21 12:24:13 | FIN7 tries to trick pentesters into launching ransomware attacks (lien direct) | The FIN7 hacking group is attempting to join the highly profitable ransomware space by creating fake cybersecurity companies that conduct network attacks under the guise of pentesting. [...] | Ransomware | ||
|
2021-10-19 10:51:19 | (Déjà vu) BlackByte ransomware decryptor released to recover files for free (lien direct) | A free decryptor for the BlackByte ransomware has been released, allowing past victims to recover their files for free. [...] | Ransomware | ||
|
2021-10-19 08:00:00 | New Karma ransomware group likely a Nemty rebrand (lien direct) | Threat analysts at Sentinel Labs have found evidence of the Karma ransomware being just another evolutionary step in the strain that started as JSWorm, became Nemty, then Nefilim, Fusion, Milihpen, and most recently, Gangbang. [...] | Ransomware Threat | ||
|
2021-10-18 18:03:04 | (Déjà vu) FBI, CISA, NSA share defense tips for BlackMatter ransomware attacks (lien direct) | The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) published today an advisory with details about how the BlackMatter ransomware gang operates. [...] | Ransomware | ||
|
2021-10-18 18:03:04 | FBI, CISA, NSA shares defense tips for BlackMatter ransomware attacks (lien direct) | The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) published today an advisory with details about how the BlackMatter ransomware gang operates. [...] | Ransomware | ||
|
2021-10-18 10:55:01 | Suspected Chinese hackers behind attacks on ten Israeli hospitals (lien direct) | A joint announcement from the Ministry of Health and the National Cyber Directorate in Israel describes a spike in ransomware attacks over the weekend that targeted the systems of nine health institutes in the country. [...] | Ransomware | ||
|
2021-10-18 05:52:47 | (Déjà vu) Sinclair TV stations crippled by weekend ransomware attack (lien direct) | TV stations owned by the Sinclair Broadcast Group broadcast television company went down over the weekend across the US, with multiple sources telling BleepingComputer the downtime was caused by a ransomware attack. [...] | Ransomware | ||
|
2021-10-18 05:52:47 | Ransomware attack likely behind Sinclair TV stations downtime (lien direct) | TV stations owned by the Sinclair Broadcast Group broadcast television company went down over the weekend across the US, with multiple sources telling BleepingComputer the downtime was caused by a ransomware attack. [...] | Ransomware | ||
|
2021-10-17 19:19:46 | REvil ransomware shuts down again after Tor sites were hijacked (lien direct) | The REvil ransomware operation has likely shut down once again after an unknown person hijacked their Tor payment portal and data leak blog. [...] | Ransomware | ||
|
2021-10-15 16:35:36 | The Week in Ransomware - October 15th 2021 - Disrupting ransoms (lien direct) | This week, senior officials from over thirty countries held virtual conferences on disrupting ransomware operations and attacks. [...] | Ransomware | ||
|
2021-10-15 13:40:21 | US links $5.2 billion worth of Bitcoin transactions to ransomware (lien direct) | The U.S. Treasury Department's Financial Crimes Enforcement Network (FinCEN) has identified roughly $5.2 billion worth of outgoing Bitcoin transactions likely tied to the top 10 most commonly reported ransomware variants. [...] | Ransomware | ||
|
2021-10-15 10:49:18 | Accenture confirms data breach after August ransomware attack (lien direct) | Global IT consultancy giant Accenture confirmed that LockBit ransomware operators stole data from its systems during an attack that hit the company's systems in August 2021. [...] | Ransomware Data Breach | ||
|
2021-10-15 05:13:21 | Governments worldwide to crack down on ransomware payment channels (lien direct) | Senior officials from more than 30 countries said that their governments would take action to disrupt the illicit cryptocurrency payment channels used by ransomware gangs to finance their operations. [...] | Ransomware | ||
|
2021-10-15 03:43:30 | US government discloses more ransomware attacks on water plants (lien direct) | U.S. Water and Wastewater Systems (WWS) Sector facilities have been breached multiple times in ransomware attacks during the last two years according to joint advisory published by US government agencies on Thursday. [...] | Ransomware | ||
|
2021-10-14 06:00:00 | New Yanluowang ransomware used in targeted enterprise attacks (lien direct) | A new and still under development ransomware strain is being used in highly targeted attacks against enterprise entities as Broadcom's Symantec Threat Hunter Team discovered. [...] | Ransomware Threat | ||
|
2021-10-13 11:01:44 | Australia to tackle ransomware data breaches by deleting stolen files (lien direct) | Australia's Minister for Home Affairs has announced the "Australian Government's Ransomware Action Plan," which is a set of new measures the country will adopt in an attempt to tackle the rising threat. [...] | Ransomware | ||
|
2021-10-13 06:56:43 | Russia and China left out of global anti-ransomware meetings (lien direct) | The White House National Security Council facilitates virtual meetings this week with senior officials and ministers from more than 30 countries in a virtual international counter-ransomware event to rally allies in the fight against the ransomware threat. [...] | Ransomware | ||
|
2021-10-12 08:43:47 | SnapMC hackers skip file encryption and just steal your files (lien direct) | A new actor tracked as SnapMC has emerged in the cybercrime space, performing the typical data-stealing extortion that underpins ransomware operations, but without doing any file encryption. [...] | Ransomware | ||
|
2021-10-11 05:18:44 | Pacific City Bank discloses ransomware attack claimed by AvosLocker (lien direct) | Pacific City Bank (PCB), one of the largest Korean-American community banking service providers in America, has disclosed a ransomware incident that took place last month. [...] | Ransomware | ||
|
2021-10-08 17:44:49 | The Week in Ransomware - October 8th 2021 - Making arrrests (lien direct) | This week's big news is the arrests of two ransomware operators in Ukraine responsible for hundreds of attacks targeting organizations worldwide. [...] | Ransomware | ||
|
2021-10-08 15:59:12 | Cox Media Group confirms ransomware attack that took down broadcasts (lien direct) | American media conglomerate Cox Media Group (CMG) confirmed that it was hit by a ransomware attack that took down live TV and radio broadcast streams in June 2021. [...] | Ransomware | ||
|
2021-10-08 10:40:49 | Russian orgs heavily targeted by smaller tier ransomware gangs (lien direct) | Even though American and European companies enjoy the lion's share in ransomware attacks launched from Russian ground, companies in the country aren't spared from having to deal with file encryption and double-extortion troubles. [...] | Ransomware | ||
|
2021-10-08 08:20:41 | Engineering giant Weir Group hit by ransomware attack (lien direct) | Scottish multinational engineering firm Weir Group has disclosed by what it called an "attempted ransomware attack" that led to "significant temporary disruption" in the second half of September. [...] | Ransomware | ||
|
2021-10-07 13:53:05 | FIN12 hits healthcare with quick and focused ransomware attacks (lien direct) | While most ransomware actors spend time on the victim network looking for important data to steal, one group favors quick malware deployment against sensitive, high-value targets. [...] | Ransomware Malware | ||
|
2021-10-06 04:22:07 | Ransom Disclosure Act would give victims 48 hours to report payments (lien direct) | Victims of ransomware attacks in the United States may soon have to report any payments to hackers within 48 hours, as required by a new legislation proposal titled the 'Ransom Disclosure Act'. [...] | Ransomware | ||
|
2021-10-05 09:00:00 | Ransomware gang encrypts VMware ESXi servers with Python script (lien direct) | Operators of an unknown ransomware gang are using a Python script to encrypt virtual machines hosted on VMware ESXi servers. [...] | Ransomware | ||
|
2021-10-04 09:21:40 | New Atom Silo ransomware targets vulnerable Confluence servers (lien direct) | Atom Silo, a newly spotted ransomware group, is targeting a recently patched and actively exploited Confluence Server and Data Center vulnerability to deploy their ransomware payloads. [...] | Ransomware | ||
|
2021-10-04 08:39:27 | Ransomware operators behind hundreds of attacks arrested in Ukraine (lien direct) | Europol has announced the arrest of two men in Ukraine, said to be members of a prolific ransomware operation that extorted victims with ransom demands ranging between €5 to €70 million. [...] | Ransomware | ||
|
2021-10-02 16:57:20 | Sandhills online machinery markets shut down by ransomware attack (lien direct) | Industry publication giant Sandhills Global has suffered a ransomware attack, causing hosted websites to become inaccessible and disrupting their business operations. [...] | Ransomware | ||
|
2021-10-01 16:33:22 | The Week in Ransomware - October 1st 2021 - "This was preventable" (lien direct) | This week comes with reports of a hospital ransomware attack that led to the death of a baby and new efforts by governments worldwide to combat ransomware. [...] | Ransomware | ||
|
2021-10-01 16:01:34 | US unites 30 countries to disrupt global ransomware attacks (lien direct) | U.S. President Joe Biden said today announced today that the U.S. has brought together 30 countries to jointly crackdown on ransomware gangs behind a barrage of attacks impacting organizations worldwide. [...] | Ransomware | ||
|
2021-09-30 12:38:43 | JVCKenwood hit by Conti ransomware claiming theft of 1.5TB data (lien direct) | JVCKenwood has suffered a Conti ransomware attack where the threat actors claim to have stolen 1.7 TB of data and are demanding a $7 million ransom. [...] | Ransomware Threat | ||
|
2021-09-30 09:00:00 | RansomExx ransomware Linux encryptor may damage victims\' files (lien direct) | Cybersecurity firm Profero has discovered that the RansomExx gang does not correctly lock Linux files during encryption, leading to potentially corrupted files. [...] | Ransomware Guideline | ||
|
2021-09-30 07:48:29 | US Congress asks FBI to explain delay in helping Kaseya atack victims (lien direct) | The House Committee on Oversight and Reform has requested a briefing to understand the rationale behind FBI's decision to delay providing the victims of the Kaseya REvil ransomware with an universal decryption key for three weeks. [...] | Ransomware | ||
|
2021-09-29 13:47:24 | Trucking giant Forward Air reports ransomware data breach (lien direct) | Trucking giant Forward Air has disclosed a data breach after a ransomware attack that allowed threat actors to access employees' personal information. [...] | Ransomware Data Breach Threat | ||
|
2021-09-24 19:27:03 | The Week in Ransomware - September 24th 2021 - Targeting crypto (lien direct) | This week's biggest news is the USA sanctioning a crypto exchange used by ransomware gangs to convert cryptocurrency into fiat currency. By targeting rogue exchanges, the US government is hoping to disrupt ransomware's payment system. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
