What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-04-30 17:46:28 | The Week in Ransomware - April 30th 2021 - Attacks Escalate (lien direct) | Ransomware gangs continue to target organizations large and small, including a brazen attack on the Washington DC police department. [...] | Ransomware | ★★★ | |
|
2021-04-30 15:28:39 | Babuk quits ransomware encryption, focuses on data-theft extortion (lien direct) | A new message today from the operators of Babuk ransomware clarifies that the gang has decided to close the affiliate program and move to an extortion model that does not rely on encrypting victim computers. [...] | Ransomware | ||
|
2021-04-29 19:18:35 | Brazil\'s Rio Grande do Sul court system hit by REvil ransomware (lien direct) | Brazil's Tribunal de Justiça do Estado do Rio Grande do Sul was hit with an REvil ransomware attack yesterday that encrypted employee's files and forced the courts to shut down their network. [...] | Ransomware | ||
|
2021-04-29 18:00:00 | New ransomware group uses SonicWall zero-day to breach networks (lien direct) | A financially motivated threat actor exploited a zero-day bug in Sonicwall SMA 100 Series VPN appliances to deploy new ransomware known as FiveHands on the networks of North American and European targets. [...] | Ransomware Threat | ||
|
2021-04-29 14:26:08 | QNAP warns of AgeLocker ransomware attacks on NAS devices (lien direct) | QNAP customers are once again urged to secure their Network Attached Storage (NAS) devices to defend against Agelocker ransomware attacks targeting their data. [...] | Ransomware | ||
|
2021-04-29 14:26:08 | QNAP finds evidence of AgeLocker ransomware activity in the wild (lien direct) | QNAP customers are once again urged to secure their Network Attached Storage (NAS) devices following a massive Qlocker ransomware campaign earlier this month. [...] | Ransomware | ||
|
2021-04-29 13:54:33 | Babuk ransomware readies \'shut down\' post, plans to open source malware (lien direct) | After just a few months of activity, the operators of Babuk ransomware briefly posted a short message about their intention to quit the extortion business after having achieved their goal. [...] | Ransomware Malware | ||
|
2021-04-29 12:01:50 | Whistler resort municipality hit by new ransomware operation (lien direct) | The Whistler municipality in British Columbia, Canada, has suffered a cyberattack at the hands of a new ransomware operation. [...] | Ransomware | ||
|
2021-04-29 06:57:31 | Security expert coalition shares actions to disrupt ransomware (lien direct) | The Ransomware Task Force, a public-party coalition of more than 50 experts, has shared a framework of actions to disrupt the ransomware business model. [...] | Ransomware | ||
|
2021-04-28 04:15:11 | UK rail network Merseyrail likely hit by Lockbit ransomware (lien direct) | UK rail network Merseyrail has confirmed a cyberattack after a ransomware gang used their email system to email employees and journalists about the attack. [...] | Ransomware | ||
|
2021-04-26 20:59:44 | DC Police confirms cyberattack after ransomware gang leaks data (lien direct) | The Metropolitan Police Department has confirmed that they suffered a cyberattack after the Babuk ransomware gang leaked screenshots of stolen data. [...] | Ransomware | ||
|
2021-04-26 15:48:36 | Ransomware gang now warns they will leak new Apple logos, iPad plans (lien direct) | The REvil ransomware gang has mysteriously removed Apple's schematics from their data leak site after privately warning Quanta that they would leak drawings for the new iPad and new Apple logos. [...] | Ransomware | ||
|
2021-04-26 15:26:25 | Accellion data breaches drive up average ransom price (lien direct) | The data breaches caused by the Clop ransomware gang exploiting a zero-day vulnerability have led to a sharp increase in the average ransom payment calculated for the first three months of the year. [...] | Ransomware Vulnerability | ||
|
2021-04-24 12:06:51 | A ransomware gang made $260,000 in 5 days using the 7zip utility (lien direct) | A ransomware gang has made $260,000 in just five days simply by remotely encrypting files on QNAP devices using the 7zip archive program. [...] | Ransomware | ||
|
2021-04-23 18:20:27 | The Week in Ransomware - April 23rd 2021 - A brutal week (lien direct) | This week has been brutal, not because of many ransomware variants released but due to a single ransomware campaign that affected thousands of people. [...] | Ransomware | ||
|
2021-04-21 13:44:57 | Massive Qlocker ransomware attack uses 7zip to encrypt QNAP devices (lien direct) | A massive ransomware campaign targeting QNAP devices worldwide is underway, and users are finding their files now stored in password-protected 7zip archives. [...] | Ransomware | ||
|
2021-04-20 16:39:29 | REvil gang tries to extort Apple, threatens to sell stolen blueprints (lien direct) | The REvil ransomware gang asked Apple to "buy back" stolen product blueprints to avoid having them leaked on REvil's leak site before today's Apple Spring Loaded event where the new iMac was introduced. [...] | Ransomware | ||
|
2021-04-18 14:10:15 | Discord Nitro gift codes now demanded as ransomware payments (lien direct) | In a novel approach to ransom demands, a new ransomware calling itself 'NitroRansomware' encrypts victim's files and then demands a Discord Nitro gift code to decrypt files. [...] | Ransomware | ||
|
2021-04-17 10:15:42 | Ryuk ransomware operation updates hacking techniques (lien direct) | Recent attacks from Ryuk ransomware operators show that the actors have a new preference when it comes to gaining initial access to the victim network. [...] | Ransomware | ||
|
2021-04-16 19:14:46 | The Week in Ransomware - April 16th 2021 - The Houston Rockets (lien direct) | It has been a pretty quiet week with only a few large attacks disclosed and only a few new ransomware variants released. The highest-profile attack this week is the NBA's Houston Rockets who were transparent about their ransomware attack. [...] | Ransomware | ||
|
2021-04-13 18:40:48 | Capcom: Ransomware gang used old VPN device to breach the network (lien direct) | Capcom has released a new update about the ransomware attack it suffered last year, detailing how the hackers gained access to the network, compromised devices, and stole personal information belonging to thousands of individuals. [...] | Ransomware | ||
|
2021-04-12 12:54:28 | Dutch supermarkets run out of cheese after ransomware attack (lien direct) | A ransomware attack against conditioned warehousing and transportation provider Bakker Logistiek has caused a cheese shortage in Dutch supermarkets. [...] | Ransomware | ||
|
2021-04-09 16:47:02 | The Week in Ransomware - April 9th 2021 - Massive ransom demands (lien direct) | Ransomware attacks continue over the past two weeks with a continuation of the massive initial ransom demands we have seen recently. [...] | Ransomware | ||
|
2021-04-09 14:52:36 | Leading cosmetics group Pierre Fabre hit with $25 million ransomware attack (lien direct) | Leading French pharmaceutical group Pierre Fabre suffered a REvil ransomware attack where the threat actors initially demanded a $25 million ransom, BleepingComputer learned today. [...] | Ransomware Threat Guideline | ||
|
2021-04-07 16:06:13 | REvil ransomware now changes password to auto-login in Safe Mode (lien direct) | A recent change to the REvil ransomware allows the threat actors to automate file encryption via Safe Mode after changing Windows passwords. [...] | Ransomware Threat | ||
|
2021-04-07 13:12:19 | New Cring ransomware hits unpatched Fortinet VPN devices (lien direct) | A vulnerability impacting Fortinet VPNs is being exploited by a new human-operated ransomware strain known as Cring to breach and encrypt industrial sector companies' networks. [...] | Ransomware Vulnerability | ||
|
2021-04-06 18:00:33 | Windows XP makes ransomware gangs work harder for their money (lien direct) | A recently created ransomware decryptor illustrates how threat actors have to support Windows XP, even when Microsoft dropped supporting it seven years ago. [...] | Ransomware Threat | ||
|
2021-04-06 12:17:36 | Ransomware hits TU Dublin and National College of Ireland (lien direct) | The National College of Ireland is working on restoring IT services after being hit by a ransomware attack over the weekend that forced the college to take IT systems offline. [...] | Ransomware | ||
|
2021-04-04 10:00:00 | Sierra Wireless resumes production after ransomware attack (lien direct) | Canadian IoT solutions provider Sierra Wireless announced that it resumed production at its manufacturing sites after it halted it due to a ransomware attack that hit its internal network and corporate website on March 20. [...] | Ransomware | ||
|
2021-04-03 09:31:22 | Ransomware gang leaks data from Stanford, Maryland universities (lien direct) | Stolen personal and financial information of students at Stanford Medicine, University of Maryland Baltimore (UMB), and the University of California was leaked online by the Clop ransomware group earlier this week. [...] | Ransomware | ||
|
2021-04-02 14:17:55 | Asteelflash electronics maker hit by REvil ransomware attack (lien direct) | Asteelflash, a leading French electronics manufacturing services company, has suffered a cyberattack by the REvil ransomware gang who is demanding a $24 million ransom. [...] | Ransomware Guideline | ||
|
2021-04-02 07:03:11 | Ransomware gang wanted $40 million in Florida schools cyberattack (lien direct) | Fueled by large payments from victims, ransomware gangs have started to demand ridiculous ransoms from organizations that can not afford them. An example of this is a recently revealed ransomware attack on the Broward County Public Schools district where threat actors demanded a $40,000,000 payment. [...] | Ransomware Threat | ||
|
2021-03-29 14:00:25 | Harris Federation hit by ransomware attack affecting 50 schools (lien direct) | The IT systems and email servers of London-based nonprofit multi-academy trust Harris Federation were taken down by a ransomware attack on Saturday. [...] | Ransomware | ||
|
2021-03-28 18:53:34 | Ransomware admin is refunding victims their ransom payments (lien direct) | After recently announcing the end of the operation, the administrator of Ziggy ransomware is now stating that they will also give the money back. [...] | Ransomware | ||
|
2021-03-28 10:41:12 | CompuCom MSP expects over $20M in losses after ransomware attack (lien direct) | American managed service provider CompuCom is expecting losses of over $20 million following this month's DarkSide ransomware attack that took down most of its systems. [...] | Ransomware | ★★★ | |
|
2021-03-27 09:41:12 | FatFace sends controversial data breach email after ransomware attack (lien direct) | British clothing brand FatFace has sent a controversial 'confidential' data breach notification to customers after suffering a ransomware attack earlier this year. [...] | Ransomware Data Breach | ||
|
2021-03-26 19:45:19 | The Week in Ransomware - March 26th 2021 - Attacks increase (lien direct) | Ransomware attacks against the enterprise continue in the form of Accellion data leaks, full-fledged ransomware attacks, and more ransomware gangs targeting Microsoft Exchange. [...] | Ransomware | ||
|
2021-03-26 15:42:58 | (Déjà vu) Ransomware gang urges victims\' customers to demand a ransom payment (lien direct) | A ransomware operation known as 'Clop' is applying maximum pressure on victims by emailing their customers and asking them to demand a ransom payment to protect their privacy. [...] | Ransomware | ||
|
2021-03-26 15:42:58 | Ransomware gang urges victims\' customers to fight for their privacy (lien direct) | A ransomware operation known as 'Clop' is applying maximum pressure on victims by emailing their customers and asking them to demand a ransom payment to protect their privacy. [...] | Ransomware | ||
|
2021-03-26 12:03:34 | (Déjà vu) Microsoft: Black Kingdom ransomware group hacked 1.5K Exchange servers (lien direct) | Microsoft has discovered web shells deployed by Black Kingdom operators on approximately 1,500 Exchange servers vulnerable to ProxyLogon attacks. [...] | Ransomware | ||
|
2021-03-26 12:03:34 | Microsoft: Black Kingdom ransomware hacked 1.5K Exchange servers (lien direct) | Microsoft has discovered web shells deployed by Black Kingdom operators on approximately 1,500 Exchange servers vulnerable to ProxyLogon attacks. [...] | Ransomware | ||
|
2021-03-26 03:30:00 | FBI exposes weakness in Mamba ransomware, DiskCryptor (lien direct) | An alert from the U.S. Federal Bureau of Investigation about Mamba ransomware reveals a weak spot in the encryption process that could help targeted organizations recover from the attack without paying the ransom. [...] | Ransomware | ||
|
2021-03-25 14:26:17 | Insurance giant CNA hit by new Phoenix CryptoLocker ransomware (lien direct) | Insurance giant CNA has suffered a ransomware attack using a new variant called Phoenix CryptoLocker that is possibly linked to the Evil Corp hacking group. [...] | Ransomware | ||
|
2021-03-25 13:34:35 | Evil Corp switches to Hades ransomware to evade sanctions (lien direct) | Hades ransomware has been linked to the Evil Corp cybercrime gang who uses it to evade sanctions imposed by the Treasury Department's Office of Foreign Assets Control (OFAC). [...] | Ransomware | ||
|
2021-03-23 16:20:38 | Ransomware gang leaks data stolen from Colorado, Miami universities (lien direct) | Grades and social security numbers for students at the University of Colorado and University of Miami patient data have been posted online by the Clop ransomware group. [...] | Ransomware | ||
|
2021-03-23 12:46:10 | High-availability server maker Stratus hit by ransomware (lien direct) | Stratus Technologies has suffered a ransomware attack that required systems to be taken offline to prevent the attack's spread. [...] | Ransomware | ★★★ | |
|
2021-03-23 11:39:53 | Ransomware attack shuts down Sierra Wireless IoT maker (lien direct) | Sierra Wireless, a world-leading IoT solutions provider, today disclosed a ransomware attack that forced it to halt production at all manufacturing sites. [...] | Ransomware Guideline | ||
|
2021-03-22 09:07:01 | (Déjà vu) Microsoft Exchange servers now targeted by Black Kingdom ransomware (lien direct) | Another ransomware operation known as 'Black Kingdom' is exploiting the Microsoft Exchange Server ProxyLogon vulnerabilities to encrypt servers. [...] | Ransomware | ||
|
2021-03-22 09:07:01 | Microsoft Exchange servers now targeted by BlackKingdom ransomware (lien direct) | Another ransomware operation known as 'BlackKingdom' is exploiting the Microsoft Exchange Server ProxyLogon vulnerabilities to encrypt servers. [...] | Ransomware | ||
|
2021-03-19 17:40:01 | The Week in Ransomware - March 19th 2021 - Highest ransom ever! (lien direct) | While the beginning of this week was fairly quiet, it definitely ended with a bang as news came out of the largest ransom demand yet. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
