What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-11-27 12:48:35 | (Déjà vu) Ryuk Ransomware Forces Prosegur Security Firm to Shut Down Network (lien direct) | In a statement at midday today (local time), Spanish multinational security company Prosegur announced that it was the victim of a cybersecurity incident disrupting its telecommunication platform. [...] | Ransomware | ||
|
2019-11-27 11:06:44 | Ransomware Locks Medical Records at Great Plains Health (lien direct) | Great Plains Health medical center is recovering from a ransomware incident that hit its computer network at the beginning of the week and forced switching to pen and paper to maintain activity. [...] | Ransomware | ||
|
2019-11-26 09:05:04 | New DeathRansom Ransomware Begins to Make a Name for Itself (lien direct) | A new ransomware called DeathRansom began with a rocky start, but has now resolved it's issues and has begun to infect victims and encrypt their data. [...] | Ransomware | ||
|
2019-11-24 18:07:01 | Livingston School District in New Jersey Hit With Ransomware (lien direct) | Students at the Livingston public school district in New Jersey are undoubtedly happy for a two hour delayed opening tomorrow. Unfortunately, this delay is not being caused by snow, but rather by a ransomware attack that the district is still recovering from. [...] | Ransomware | ||
|
2019-11-22 18:57:26 | The Week in Ransomware - November 22nd 2019 - Leaky Files (lien direct) | This week the biggest news was Maze Ransomware escalating the ransomware threat releasing a victim's stolen data because they did not pay the ransom. [...] | Ransomware Threat | ||
|
2019-11-22 13:50:09 | Clop Ransomware Tries to Disable Windows Defender, Malwarebytes (lien direct) | In order to successfully encrypt a victim's data, the Clop CryptoMix Ransomware is now attempting to disable Windows Defender as well as remove the Microsoft Security Essentials and Malwarebytes' standalone Anti-Ransomware programs. [...] | Ransomware | ||
|
2019-11-21 22:48:01 | Allied Universal Breached by Maze Ransomware, Stolen Data Leaked (lien direct) | After a deadline was missed for receiving a ransom payment, the group behind Maze Ransomware has published almost 700 MB worth of data and files stolen from security staffing firm Allied Universal. We are told this is only 10% of the total files stolen and the rest will be released if a payment is not made. [...] | Ransomware | ||
|
2019-11-21 09:00:00 | New RIPlace Bypass Evades Windows 10, AV Ransomware Protection (lien direct) | A new ransomware bypass technique called RIPlace requires only a few lines of code to bypass ransomware protection features built into many security products and Windows 10. [...] | Ransomware | ||
|
2019-11-20 19:40:13 | Microsoft Warns Customers of DoppelPaymer Ransomware Threat (lien direct) | The Microsoft Security Response Center (MSRC) warned customers of the threat behind ongoing DoppelPaymer ransomware attacks and reminded them about misleading info on how it spreads. [...] | Ransomware Threat Guideline | ||
|
2019-11-20 10:23:53 | Ransomware Gangs Adopt APT Tactics in Targeted Attacks (lien direct) | Ransomware operators are moving away from mass volume attacks and partnering with specialists who use APT techniques to provide stealthy infiltration and network-wide encryption capabilities. [...] | Ransomware | ||
|
2019-11-19 11:00:00 | Critical Windows Update Spam Fails at Delivering Ransomware (lien direct) | A new spam campaign pretending to be a 'Critical Microsoft Windows Update' has been discovered that attempts to deliver the Cyborg Ransomware, but turns out to be an utter failure. [...] | Ransomware Spam | ||
|
2019-11-19 01:00:00 | Shade Ransomware Is the Most Actively Distributed Malware via Email (lien direct) | During the first half of 2019, the Shade Ransomware (also known as Troldesh) was the most actively distributed malware via malicious email phishing campaigns according to Singapore-based Group-IB security outfit. [...] | Ransomware Malware | ||
|
2019-11-18 19:51:20 | Louisiana Government Suffers Outage Due to Ransomware Attack (lien direct) | The state government of Louisiana was hit by a ransomware attack today that impacted numerous state services including the Office of Motor Vehicles, the Department of Health, and the Department of Transportion and Development. [...] | Ransomware | ||
|
2019-11-18 15:36:03 | Buran Ransomware Infects PCs via Microsoft Excel Web Queries (lien direct) | A new spam campaign has been spotted distributing the Buran Ransomware through IQY file attachments. When opened, these Microsoft Excel Web Query attachments will execute a remote command that installs the ransomware onto a victim's computer. [...] | Ransomware Spam | ||
|
2019-11-15 18:16:12 | The Week in Ransomware - November 15th 2019 - Holy Ransomware (lien direct) | What better way to target a large amount of victims, then to go after providers with numerous customers, which is what we saw this week when SmarterASP.net was hit by the Snatch Ransomware and a new ransomware called NextCry specifically targets the NextCloud file sharing solution. [...] | Ransomware | ||
|
2019-11-15 14:08:29 | New NextCry Ransomware Encrypts Data on NextCloud Linux Servers (lien direct) | A new ransomware has been found in the wild that is currently undetected by antivirus engines on public scanning platforms. It's name is NextCry as it was discovered on a Linux machine running Nextcloud server. [...] | Ransomware | ||
|
2019-11-13 16:20:01 | Strange AnteFrigus Ransomware Only Targets Specific Drives (lien direct) | A new and strange ransomware called AnteFrigus is now being distributed through malvertising that redirects users to the the RIG exploit kit. Unlike other ransomware, AnteFrigus does not target the C: drive, but only other drives commonly associated with removable devices and mapped network drives. [...] | Ransomware | ||
|
2019-11-13 05:45:05 | PureLocker Ransomware Can Lock Files on Windows, Linux, and macOS (lien direct) | Cybercriminals have developed ransomware that can be ported to all major operating systems and is currently used in targeted attacks against production servers. [...] | Ransomware | ||
|
2019-11-12 11:30:43 | Mexico\'s Pemex Oil Suffers Ransomware Attack, $4.9 Million Demanded (lien direct) | Mexico's state-owned oil company, Pemex, has suffered a DoppelPaymer ransomware attack that demanded $4.9 million USD in order to decrypt their files. [...] | Ransomware | ||
|
2019-11-11 11:56:14 | Sodinokibi Ransomware Targeting Asia via the RIG Exploit Kit (lien direct) | A new malvertising campaign being used on low quality web games and blogs is redirecting Asian victims to the RIG exploit kit, which is then quietly installing the Sodinokibi Ransomware. [...] | Ransomware | ||
|
2019-11-08 16:58:17 | The Week in Ransomware - November 8th 2019 - Now Targeting Passwords (lien direct) | It has been an busy week in terms of ransomware between a new variant of MegaCortex that performs something a bit different and MSP attacks against Everis in Spain. [...] | Ransomware | ||
|
2019-11-08 14:39:32 | QuikSilver and Billabong Affected by Ransomware Attack (lien direct) | Action sports giant Boardriders was hit by a ransomware attack that affected some of its subsidiaries, including QuikSilver and Billabong, and forced the company to shut down computing systems all over the world. [...] | Ransomware | ||
|
2019-11-05 15:18:36 | New Megacortex Ransomware Changes Windows Passwords, Threatens to Publish Data (lien direct) | A new version of the MegaCortex Ransomware has been discovered that not only encrypts your files, but now changes the logged in user's password and threatens to publish the victim's files if they do not pay the ransom. [...] | Ransomware | ||
|
2019-11-05 07:07:07 | Brooklyn Hospital Loses Patient Data In Ransomware Attack (lien direct) | A ransomware attack hitting several computer systems at the Brooklyn Hospital Center in New York caused permanent loss of some patient's data. [...] | Ransomware | ||
|
2019-11-04 14:43:40 | Nemty Ransomware Now Spreads via Trik Botnet (lien direct) | The operators of Nemty ransomware have found a new distributor for their file-encrypting malware, which now spreads via Trik, a botnet that pushes all sorts of threats. [...] | Ransomware | ||
|
2019-11-04 12:56:02 | (Déjà vu) Ransomware Attacks Hit Everis and Spain\'s Largest Radio Network (lien direct) | Everis, an NTT DATA company and one of Spain's largest managed service providers (MSP), had its computer systems encrypted today in a ransomware attack, just as it happened to Spain's largest radio station Cadena SER (Sociedad Española de Radiodifusión). [...] | Ransomware | ||
|
2019-11-04 12:56:02 | Ransomware Attack Hits Everis and Spain\'s Largest Radio Network (lien direct) | Everis, an NTT DATA company and one of Spain's largest managed service providers (MSP), had its computer systems encrypted today in a ransomware attack, just as it happened to Spain's largest radio station Cadena SER (Sociedad Española de Radiodifusión). [...] | Ransomware | ||
|
2019-11-01 18:16:44 | The Week in Ransomware - November 1st 2019 - A Mix of Good and Bad (lien direct) | This week has been a mix of good and bad news. The bad news is that ransomware disrupted legal work and court cases through the TrialWorks infection, schools having to shut down, and new campaigns targeting Italy. The good news, though, is that we have had two decryptors released that allow Paradise and Ouroboros Ransomware victims [...] | Ransomware | ||
|
2019-11-01 12:33:31 | GandCrab RaaS Was a Training Ground for Malware Distributors (lien direct) | GandCrab operators changed the ransomware business from the ground up, establishing a model that is embraced and continued by other cybercriminals. [...] | Ransomware Malware | ||
|
2019-10-30 12:15:00 | (Déjà vu) Paradise Ransomware Decryptor Gets Your Files Back for Free (lien direct) | A decryptor for the Paradise Ransomware has been released by Emsisoft that allows victims to decrypt their files for free. [...] | Ransomware | ||
|
2019-10-29 19:22:36 | (Déjà vu) Ransomware Attack Causes School \'District-Wide Shutdown\' (lien direct) | A ransomware attack hitting Las Cruces Public Schools forced the district to shut down the entire computer system to contain the infection. [...] | Ransomware | ||
|
2019-10-29 19:22:36 | Ransomware Attack Causes \'District-Wide Shutdown\' (lien direct) | A ransomware attack hitting Las Cruces Public Schools forced the district to shut down the entire computer system to contain the infection. [...] | Ransomware | ||
|
2019-10-29 16:38:02 | Maze Ransomware Attacks Italy in New Email Campaign (lien direct) | The Maze Ransomware is conducting a new spam campaign that targets Italian users by pretending to be the country's Tax and Revenue Agency. [...] | Ransomware Spam | ||
|
2019-10-29 03:33:33 | Ransomware Actor Starting Young Makes Big Money, Gets Arrested (lien direct) | A 21-year old arrested in Indonesia is suspected to have sent phishing emails that spread ransomware. He is believed to be a lone wolf that started as a teenager and reportedly made at least 300 bitcoins from cybercriminal activities. [...] | Ransomware | ||
|
2019-10-27 10:52:30 | TrialWorks Ransomware Attack Disrupts Court Cases and Deadlines (lien direct) | TrialWorks, one of the top-rated providers of legal case management software for law firms and attorneys, became the victim of a ransomware attack earlier this month. [...] | Ransomware | ||
|
2019-10-25 19:03:32 | The Week in Ransomware - October 25th 2019 - Two Week Edition (lien direct) | In this special two week edition of the Week in Ransomware, we have a ton of news ranging from ransomware attacks, new REvill affiliate information, and new ransomware targeting the enterprise. [...] | Ransomware | ||
|
2019-10-25 16:45:00 | New FuxSocy Ransomware Impersonates the Notorious Cerber (lien direct) | A new ransomware has been discovered called FuxSocy that borrows much of its behavior from the notorious and now-defunct Cerber Ransomware. [...] | Ransomware | ||
|
2019-10-25 07:57:56 | Ransomware Attack Shuts Down City of Johannesburg\'s Systems (lien direct) | The City of Johannesburg municipality shut down the website, its e-services platform, and the billing system (SAP ISU and CRM) following a ransomware attack that also led to unauthorized information access according to a ransom note. [...] | Ransomware | ||
|
2019-10-22 16:24:26 | MedusaLocker Ransomware Wants Its Share of Your Money (lien direct) | A new ransomware called MedusaLocker is being actively distributed and victims have been seen from all over the world. It is not known at this time, how the attacker is distributing the ransomware. [...] | Ransomware | ||
|
2019-10-21 00:01:00 | Tools and Tactics of the Sodinokibi Ransomware Distributors (lien direct) | Using a network of honeypots, researchers from McAfee examined the tools and tactics used by the Sodinokibi Ransomware (REvil) affiliates to infect their victims with ransomware and compromise other machines on the network. [...] | Ransomware | ||
|
2019-10-18 14:02:21 | Maze Ransomware Now Delivered by Spelevo Exploit Kit (lien direct) | The Spelevo exploit kit has been spotted by security researchers while infecting victims with Maze Ransomware payloads via a new malicious campaign that exploits a Flash Player use after free vulnerability. [...] | Ransomware | ||
|
2019-10-18 11:00:00 | STOP Ransomware Decryptor Released for 148 Variants (lien direct) | The release of Emsisoft's STOP Ransomware decryption service is a huge achievement and will be a life saver for both the victims and the helpers on BleepingComputer. It should be noted, though, that while this decryptor can help with the majority of STOP variants, anyone who was infected after August 2019 cannot be helped. [...] | Ransomware | ||
|
2019-10-18 10:50:35 | (Déjà vu) REvil Ransomware Affiliates Partner with Corporate Intruders (lien direct) | Experienced network intruders and ransomware groups have struck an alliance helping each other monetize their skills by spreading malware to company networks. [...] | Ransomware Malware | ||
|
2019-10-18 10:50:35 | REvil/Sodinokibi Ransomware Partners with Access-as-a-Service Providers (lien direct) | Experienced network intruders and ransomware groups have struck an alliance helping each other monetize their skills by spreading malware to company networks. [...] | Ransomware Malware | ★★★★★ | |
|
2019-10-14 15:55:50 | Global Shipping Firm Pitney Bowes Affected by Ransomware Attack (lien direct) | Global shipping and mailing services company Pitney Bowes announced today that it was the victim of a ransomware attack that encrypted some of its systems, leading to a partial system outage that impacted customer access to some services. [...] | Ransomware Guideline | ||
|
2019-10-14 00:01:00 | Sodinokibi Ransomware: Following the Affiliate Money Trail (lien direct) | After a Sodinokibi ransomware affiliate posted partial transaction IDs for ransomware payments, researchers were able to use that information to follow the money trail for affiliates and in some cases, how they spend their illicit earnings. [...] | Ransomware | ||
|
2019-10-11 18:37:25 | The Week in Ransomware - October 11th 2019 - Decryptors Released! (lien direct) | We had some interesting news this week, such as the HildaCrypt ransomware releasing their keys, RobbinHood Ransomware bragging about their past exploits, a Muhstik Ransomware victim hacking back and stealing the decryption keys, and a Nemty decryptor being released. [...] | Ransomware | ||
|
2019-10-11 15:36:34 | Nemty 1.6 Ransomware Released and Pushed via RIG Exploit Kit (lien direct) | The RIG exploit kit is now pushing a cocktail of malware that includes a new variant of the Nemty Ransomware. [...] | Ransomware Malware | ||
|
2019-10-10 16:44:13 | Nemty Ransomware Decryptor Released, Recover Files for Free (lien direct) | Victims of the Nemty Ransomware finally have something to be happy about as researchers have released a decryptor that allows them to recover files for free. [...] | Ransomware | ||
|
2019-10-10 13:34:16 | Apple Software Update Zero-Day Used by BitPaymer Ransomware (lien direct) | Several companies from the automotive industry were targeted by BitPaymer ransomware operators during August, in attacks that used an Apple zero-day vulnerability impacting the Apple Software Update service bundled with iTunes and iCloud for Windows. [...] | Ransomware Vulnerability |
To see everything:
Our RSS (filtrered)
