What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-05-01 13:00:25 | New phishing campaign packs an info-stealer, ransomware punch (lien direct) | A new phishing campaign is distributing a double-punch of a LokiBot information-stealing malware along with a second payload in the form of the Jigsaw Ransomware. [...] | Ransomware Malware | ||
|
2020-04-30 15:21:25 | Shade Ransomware Decryptor can now decrypt over 750K victims (lien direct) | Kaspersky has released an updated decryptor for the Shade Ransomware (Troldesh) that allows all victims who have their files encrypted to recover them for free. [...] | Ransomware | ||
|
2020-04-30 11:00:12 | Clop ransomware leaks ExecuPharm\'s files after failed ransom (lien direct) | Clop ransomware leaked files stolen from U.S pharmaceutical company ExecuPharm after ransom negotiations allegedly failed. [...] | Ransomware | ||
|
2020-04-28 14:04:30 | Microsoft releases guidance on blocking ransomware attacks (lien direct) | Microsoft warned today of ongoing human-operated ransomware campaigns targeting healthcare organizations and critical services, and shared tips on how to block new breaches by patching vulnerable internet-facing systems. [...] | Ransomware Patching | ||
|
2020-04-28 07:24:28 | Lucy malware for Android adds file-encryption for ransomware ops (lien direct) | A threat actor focusing on Android systems has expanded their malware-as-a-service (MaaS) business with file-encrypting capabilities for ransomware operations. [...] | Ransomware Malware Threat | ||
|
2020-04-27 11:47:31 | Shade Ransomware shuts down, releases 750K decryption keys (lien direct) | The operators behind the Shade Ransomware (Troldesh) have shut down their operations, released over 750,000 decryption keys, and apologized for the harm they caused their victims. [...] | Ransomware | ||
|
2020-04-24 19:09:31 | The Week in Ransomware - April 24th 2020 - High Profile Attacks (lien direct) | There was not a lot of new variants released this week, but we did have some news such as the ransomware attack on Cognizant, the leaking of data for a California city, and the continued attacks on hospitals. [...] | Ransomware | ||
|
2020-04-23 17:32:22 | SeaChange video platform allegedly hit by Sodinokibi ransomware (lien direct) | A video delivery platform company is the latest victim of the Sodinokibi Ransomware, who has posted images of data they claim to have stolen from the company during a cyberattack. [...] | Ransomware | ||
|
2020-04-21 16:34:25 | DoppelPaymer Ransomware hits Los Angeles County city, leaks files (lien direct) | The City of Torrance of the Los Angeles metropolitan area, California, has allegedly been attacked by the DoppelPaymer Ransomware, having unencrypted data stolen and devices encrypted. [...] | Ransomware | ||
|
2020-04-18 13:45:29 | IT services giant Cognizant suffers Maze Ransomware cyber attack (lien direct) | Information technologies services giant Cognizant suffered a cyber attack Friday night allegedly by the operators of the Maze Ransomware, BleepingComputer has learned. [...] | Ransomware | ||
|
2020-04-18 10:00:00 | US govt: Hacker used stolen AD credentials to ransom hospitals (lien direct) | Hackers have deployed ransomware on the systems of U.S. hospitals and government entities using Active Directory credentials stolen months after exploiting a known remote code execution (RCE) vulnerability in their Pulse Secure VPN servers. [...] | Ransomware Vulnerability | ||
|
2020-04-17 18:35:45 | The Week in Ransomware - April 17th 2020 - Changing Tactics (lien direct) | There was not a lot of new ransomware variants released this week, but some pretty interesting news about operations changing their tactics to remain more profitable and to evade law enforcement. [...] | Ransomware | ||
|
2020-04-15 19:07:57 | Nemty Ransomware shuts down public RaaS operation, goes private (lien direct) | The Nemty Ransomware is shutting down its public Ransomware-as-a-Service (RaaS) operation and switching to an exclusive private operation where affiliates are hand-selected for their expertise. [...] | Ransomware | ||
|
2020-04-14 13:35:00 | RagnarLocker ransomware hits EDP energy giant, asks for €10M (lien direct) | Attackers using the Ragnar Locker ransomware have encrypted the systems of Portuguese multinational energy giant Energias de Portugal (EDP) and are now asking for a 1580 BTC ransom ($10.9M or €9.9M). [...] | Ransomware | ||
|
2020-04-11 16:23:11 | Sodinokibi Ransomware to stop taking Bitcoin to hide money trail (lien direct) | The Sodinokibi Ransomware has started to accept the Monero cryptocurrency to make it harder for law enforcement to track ransom payments and plans to stop allowing bitcoin payments in the future. [...] | Ransomware | ||
|
2020-04-10 17:20:06 | The Week in Ransomware - April 3rd 2020 - No Sign of Letting Up (lien direct) | Over the past two week, we have seen an increase in warnings from law enforcement agencies stating that healthcare organizations need to be on high alert for attacks by ransomware operators and other attackers who are looking to capitalize on the Coronavirus pandemic. [...] | Ransomware | ||
|
2020-04-07 15:47:37 | Drug testing firm sends data breach alerts after ransomware attack (lien direct) | Hammersmith Medicines Research LTD (HMR), a research company on standby to perform live trials of Coronavirus vaccines, has started emailing data breach notifications after having their data stolen and published in a ransomware attack. [...] | Ransomware Data Breach | ||
|
2020-04-06 11:39:13 | Interpol: Ransomware attacks on hospitals are increasing (lien direct) | The INTERPOL (short for International Criminal Police Organisation) warns that cybercriminals are increasingly attempting to lockout hospitals out of critical systems by attempting to deploy ransomware on their networks despite the currently ongoing COVID-19 pandemic. [...] | Ransomware | ||
|
2020-04-01 12:03:52 | Microsoft is Alerting Hospitals Vulnerable to Ransomware Attacks (lien direct) | Microsoft has started to send targeted notifications to dozens of hospitals about vulnerable public-facing VPN devices and gateways located on their network. [...] | Ransomware | ||
|
2020-03-27 17:35:22 | The Week in Ransomware - March 27th 2020 - Don\'t Attack Hospitals! (lien direct) | This two-week edition covers a lot of new ransomware variants, including attackers utilizing Coronavirus-themes for their phishing scams and ransomware variants. [...] | Ransomware | ||
|
2020-03-26 18:08:25 | Ryuk Ransomware Keeps Targeting Hospitals During the Pandemic (lien direct) | The Ryuk Ransomware operators to continue to target hospitals even as these organizations are overwhelmed during the Coronavirus pandemic. [...] | Ransomware | ||
|
2020-03-26 13:40:34 | Chubb Cyber Insurer Allegedly Hit By Maze Ransomware Attack (lien direct) | Cyber insurer giant Chubb is allegedly the latest ransomware victim according to the operators of the Maze Ransomware who claim to have encrypted the company in March 2020. [...] | Ransomware | ||
|
2020-03-24 19:23:47 | Three More Ransomware Families Create Sites to Leak Stolen Data (lien direct) | Three more ransomware families have created sites that are being used to leak the stolen data of non-paying victims and further illustrates why all ransomware attacks must be considered data breaches. [...] | Ransomware | ||
|
2020-03-21 12:06:42 | Netwalker Ransomware Infecting Users via Coronavirus Phishing (lien direct) | As if people did not have enough to worry about, attackers are now targeting them with Coronavirus (COVID-19) phishing emails that install ransomware. [...] | Ransomware | ||
|
2020-03-20 18:38:30 | UK Fintech Firm Finastra Hit By Ransomware, Shuts Down Servers (lien direct) | Finastra, a leading financial technology provider from the UK, announced that it had to take several servers offline following a ransomware attack detected earlier today. [...] | Ransomware Guideline | ||
|
2020-03-20 17:01:45 | PwndLocker Fixes Crypto Bug, Rebrands as ProLock Ransomware (lien direct) | PwndLocker has rebranded as the ProLock Ransomware after fixing a crypto bug that allowed a free decryptor to be created. [...] | Ransomware | ||
|
2020-03-19 17:36:40 | Sodinokibi Ransomware Data Leaks Now Sold on Hacker Forums (lien direct) | Ransomware victims who do not pay a ransom and have their stolen files leaked are now facing a bigger nightmare as other hackers and criminals sell and distribute the released files on hacker forums. [...] | Ransomware | ||
|
2020-03-18 19:18:53 | Most Ransomware Gets Executed Three Days After Initial Breach (lien direct) | Ransomware gets deployed three days after an organization's network gets infiltrated in the vast majority of attacks, with post-compromise deployment taking as long as 299 days in some of the dozens of attacks researchers at cybersecurity firm FireEye examined between 2017 and 2019. [...] | Ransomware | ||
|
2020-03-18 18:36:31 | Ransomware Gangs to Stop Attacking Health Orgs During Pandemic (lien direct) | Some Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic. [...] | Ransomware | ||
|
2020-03-18 10:26:34 | Emsisoft, Coveware Offer Free Ransomware Help During Coronavirus Outbreak (lien direct) | Emsisoft and Coveware have announced that they will be offering their ransomware decryption and negotiation services for free to healthcare providers during the Coronavirus outbreak. [...] | Ransomware | ||
|
2020-03-17 12:28:34 | New Nefilim Ransomware Threatens to Release Victims\' Data (lien direct) | A new ransomware called Nefilim that shares much of the same code as Nemty has started to become active in the wild and threatens to release stolen data. [...] | Ransomware | ||
|
2020-03-14 18:01:00 | (Déjà vu) The Week in Ransomware - March 13th 2020 - Stay Safe (lien direct) | This has been a slow week in terms of new variants, but we continue to see enterprise-targeting ransomware operators threatening to release data for non-paying victims. [...] | Ransomware | ||
|
2020-03-14 18:01:00 | The Week in Ransomware - March 20th 2020 - Stay Safe (lien direct) | This has been a slow week in terms of new variants, but we continue to see enterprise-targeting ransomware operators threatening to release data for non-paying victims. [...] | Ransomware | ||
|
2020-03-12 13:39:12 | New CoronaVirus Ransomware Acts as Cover for Kpot Infostealer (lien direct) | A new ransomware called CoronaVirus is has been distributed through a fake web site pretending to promote the system optimization software and utilities from WiseCleaner. [...] | Ransomware | ||
|
2020-03-10 13:15:01 | Paradise Ransomware Distributed via Uncommon Spam Attachment (lien direct) | Attackers have started to send Excel Web Query attachments in phishing campaigns to download and install the Paradise Ransomware on unsuspecting victims. [...] | Ransomware Spam | ||
|
2020-03-08 13:45:29 | Ryuk Ransomware Behind Durham, North Carolina Cyberattack (lien direct) | The City of Durham, North Carolina has shut down its network after suffering a cyberattack by the Ryuk Ransomware this weekend. [...] | Ransomware | ||
|
2020-03-07 10:15:00 | Ransomware Threatens to Reveal Company\'s \'Dirty\' Secrets (lien direct) | The operators of the Sodinokibi Ransomware are threatening to publicly share a company's "dirty" financial secrets because they refused to pay the demanded ransom. [...] | Ransomware | ||
|
2020-03-06 16:13:45 | The Week in Ransomware - March 6th 2020 - Breaches Everywhere (lien direct) | Ransomware continues to target the enterprise and local government in the hopes of a big windfall of bitcoins. In addition new variants of STOP, Dharma, and other families continue to be released. [...] | Ransomware | ||
|
2020-03-05 15:36:08 | Microsoft Shares Tactics Used in Human-Operated Ransomware Attacks (lien direct) | Microsoft today shared tips on how to defend against human-operated ransomware attacks known to be behind hundreds of millions of dollars in losses following campaigns targeting enterprises and government entities. [...] | Ransomware | ||
|
2020-03-05 12:02:00 | PwndLocker Ransomware Gets Pwned: Decryption Now Available (lien direct) | Emsisoft has discovered a way to decrypt files encrypted by the new PwndLocker Ransomware so that victims can recover their files without paying a ransom. [...] | Ransomware | ||
|
2020-03-04 17:28:39 | Ryuk Ransomware Attacked Epiq Global Via TrickBot Infection (lien direct) | Legal services and e-discovery giant Epiq Global took their systems offline on Saturday after the Ryuk Ransomware was deployed and began encrypting devices on their network. [...] | Ransomware | ||
|
2020-03-04 12:09:37 | Windows Explorer Used by Mailto Ransomware to Evade Detection (lien direct) | A newly discovered Mailto (NetWalker) ransomware strain can inject malicious code into the Windows Explorer process so that the malware can evade detection. [...] | Ransomware Malware | ||
|
2020-03-03 16:36:05 | Ransomware Attackers Use Your Cloud Backups Against You (lien direct) | Backups are one the most, if not the most, important defense against ransomware, but if not configured properly, attackers will use it against you. [...] | Ransomware | ||
|
2020-03-03 13:48:04 | German BSI Tells Local Govt Authorities Not to Pay Ransoms (lien direct) | BSI, Germany's federal cybersecurity agency, recommends local governments and municipal institutions not to pay the ransoms asked by attackers after they get affected by ransomware attacks. [...] | Ransomware | ||
|
2020-03-02 19:10:10 | Nemty Ransomware Punishes Victims by Posting Their Stolen Data (lien direct) | The Nemty Ransomware is the latest cybercrime operation to create a data leak site to punish victims who refuse to pay ransoms. [...] | Ransomware | ||
|
2020-03-02 15:08:07 | New PwndLocker Ransomware Targeting U.S. Cities, Enterprises (lien direct) | Driven by the temptation of big ransom payments, a new ransomware called PwndLocker has started targeting the networks of businesses and local governments with ransom demands over $650,000. [...] | Ransomware | ||
|
2020-02-28 18:47:19 | The Week in Ransomware - February 28th 2020 - Data Leaks Everywhere (lien direct) | Over the past two weeks, we continue to see small towns, fire departments, hospitals, and companies being attacked by ransomware. [...] | Ransomware | ||
|
2020-02-28 18:07:35 | US Railroad Contractor Reports Data Breach After Ransomware Attack (lien direct) | RailWorks Corporation, one of North America's leading railroad track and transit system providers, disclosed a ransomware attack that led to the exposure of personally identifiable information of current and former employees, their beneficiaries and dependents, as well as that of independent contractors. [...] | Ransomware Data Breach Guideline | ||
|
2020-02-28 12:25:11 | Sodinokibi Ransomware Posts Alleged Data of Kenneth Cole Fashion Giant (lien direct) | The operators behind Sodinokibi Ransomware published download links to files containing what they claim is financial and work documents, as well as customers' personal data stolen from giant U.S. fashion house Kenneth Cole Productions. [...] | Ransomware | ||
|
2020-02-27 14:16:53 | Nemty Ransomware Actively Distributed via \'Love Letter\' Spam (lien direct) | Security researchers have spotted an ongoing malspam campaign using emails disguised as messages from secret lovers to deliver Nemty Ransomware payloads on the computers of potential victims. [...] | Ransomware Spam |
To see everything:
Our RSS (filtrered)
