What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-11-20 10:07:14 | New AxLocker ransomware encrypts files, then steals your Discord account (lien direct) | The new 'AXLocker' ransomware family is not only encrypting victims' files and demanding a ransom payment but also stealing the Discord accounts of infected users. [...] | Ransomware | ||
|
2022-11-17 15:07:02 | Previously unidentified ARCrypter ransomware expands worldwide (lien direct) | A previously unknown 'ARCrypter' ransomware that compromised key organizations in Latin America is now expanding its attacks worldwide. [...] | Ransomware | ||
|
2022-11-09 11:43:27 | Medibank warns customers their data was leaked by ransomware gang (lien direct) | Australian health insurance giant Medibank has warned customers that the ransomware group behind last month's breach has started to leak data stolen from its systems. [...] | Ransomware | ||
|
2022-11-08 17:56:13 | LockBit affiliate uses Amadey Bot malware to deploy ransomware (lien direct) | A LockBit 3.0 ransomware affiliate is using phishing emails that install the Amadey Bot to take control of a device and encrypt devices. [...] | Ransomware Malware | ||
|
2022-11-07 12:50:26 | Ransomware gang threatens to release stolen Medibank data (lien direct) | A ransomware gang that some believe is a relaunch of REvil and others track as BlogXX has claimed responsibility for last month's ransomware attack against Australian health insurance provider Medibank Private Limited. [...] | Ransomware | ||
|
2022-11-03 14:25:59 | LockBit ransomware claims attack on Continental automotive giant (lien direct) | The LockBit ransomware gang has claimed responsibility for a cyberattack against the German multinational automotive group Continental. [...] | Ransomware | ||
|
2022-10-28 16:08:28 | The Week in Ransomware - October 28th 2022 - Healthcare leaks (lien direct) | This week, we learned of healthcare data leaks out of Australia, information about existing attacks, and reports on how ransomware gangs operate and partner with malware developers for initial access. [...] | Ransomware Malware | ||
|
2022-10-27 14:05:38 | Australian Clinical Labs says patient data stolen in ransomware attack (lien direct) | Australian Clinical Labs (ACL) has disclosed a February 2022 data breach that impacted its Medlab Pathology business, exposing the medical records and other sensitive information of 223,000 people. [...] | Ransomware Data Breach | ||
|
2022-10-25 04:49:21 | Hive claims ransomware attack on Tata Power, begins leaking data (lien direct) | Hive ransomware group has claimed responsibility for a cyber attack disclosed by Tata Power this month. In data leak screenshots seen by BleepingComputer, Hive operators are seen leaking data it claims to have stolen from Tata Power, indicating the ransom negotiations failed. [...] | Ransomware | ||
|
2022-10-24 10:51:38 | Pendragon car dealer refuses $60 million LockBit ransomware demand (lien direct) | Pendragon Group, with more than 200 car dealerships in the U.K., was breached in a cyberattack from the LockBit ransomware gang, who allegedly demanded $60 million to decrypt files and not leak them. [...] | Ransomware | ||
|
2022-10-21 06:00:00 | BlackByte ransomware uses new data theft tool for double-extortion (lien direct) | A BlackByte ransomware affiliate is using a new custom data stealing tool called 'ExByte' to steal data from compromised Windows devices quickly. [...] | Ransomware Tool | ||
|
2022-10-20 11:03:41 | OldGremlin hackers use Linux ransomware to attack Russian orgs (lien direct) | OldGremlin, one of the few ransomware groups attacking Russian corporate networks, has expanded its toolkit with file-encrypting malware for Linux machines. [...] | Ransomware Malware | ||
|
2022-10-18 17:49:08 | Ransom Cartel linked to notorious REvil ransomware operation (lien direct) | Threat analysts have connected the pieces that link the Ransom Cartel RaaS (ransomware-as-a-service) to the REvil gang, one of the most notorious and prolific ransomware groups in recent years. [...] | Ransomware Threat | ||
|
2022-10-17 13:56:16 | Australian insurance firm Medibank confirms ransomware attack (lien direct) | Health insurance provider Medibank has confirmed that a ransomware attack is responsible for last week's cyberattack and disruption of online services. [...] | Ransomware | ||
|
2022-10-17 10:33:00 | Ransomware attack halts circulation of some German newspapers (lien direct) | German newspaper 'Heilbronn Stimme' published today's 28-page issue in e-paper form after a Friday ransomware attack crippled its printing systems. [...] | Ransomware | ||
|
2022-10-14 17:27:17 | Police tricks DeadBolt ransomware out of 155 decryption keys (lien direct) | The Dutch National Police, in collaboration with cybersecurity firm Responders.NU, obtained 155 decryption keys from the DeadBolt ransomware gang by faking ransom payments. [...] | Ransomware | ||
|
2022-10-11 12:59:44 | Microsoft Exchange servers hacked to deploy LockBit ransomware (lien direct) | Microsoft is investigating reports of a new zero-day bug abused to hack Exchange servers which were later used to launch Lockbit ransomware attacks. [...] | Ransomware Hack | ||
|
2022-09-29 10:32:16 | New Royal Ransomware emerges in multi-million dollar attacks (lien direct) | A new ransomware operation named Royal is quickly ramping up, targeting corporations with ransom demands ranging from $250,000 to over $2 million. [...] | Ransomware | ★★★★★ | |
|
2022-09-25 11:14:27 | Ransomware data theft tool may show a shift in extortion tactics (lien direct) | Data exfiltration malware known as Exmatter and previously linked with the BlackMatter ransomware group is now being upgraded with data corruption functionality that may indicate a new tactic that ransomware affiliates might switch to in the future. [...] | Ransomware Malware Tool | ||
|
2022-09-23 17:25:58 | The Week in Ransomware - September 23rd 2022 - LockBit leak (lien direct) | This week we saw some embarrassment for the LockBit ransomware operation when their programmer leaked a ransomware builder for the LockBit 3.0 encryptor. [...] | Ransomware | ||
|
2022-09-20 16:33:51 | Hive ransomware claims attack on New York Racing Association (lien direct) | The Hive ransomware operation claimed responsibility for an attack on the New York Racing Association (NYRA), which previously disclosed that a cyber attack on June 30, 2022, impacted IT operations and website availability and compromised member data. [...] | Ransomware | ||
|
2022-09-19 12:07:36 | VMware, Microsoft warn of widespread Chromeloader malware attacks (lien direct) | The operators of the Chromeloader adware are evolving their attack methods and gradually transforming the low-risk tool into a dangerous malware loader, seen dropping ransomware in some cases. [...] | Ransomware Malware Tool | ||
|
2022-09-17 11:17:23 | Emotet botnet now pushes Quantum and BlackCat ransomware (lien direct) | While monitoring the Emotet botnet's current activity, security researchers found that the malware is now being used by the Quantum and BlackCat ransomware gang to deploy their payloads. [...] | Ransomware Malware | ||
|
2022-09-17 10:12:14 | New York ambulance service discloses data breach after ransomware attack (lien direct) | Empress EMS (Emergency Medical Services), a New York-based emergency response and ambulance service provider, has disclosed a data breach that exposed customer information. [...] | Ransomware Data Breach | ||
|
2022-09-15 15:10:55 | Hive ransomware claims cyberattack on Bell Canada subsidiary (lien direct) | The Hive ransomware gang claimed responsibility for an attack that hit the systems of Bell Canada subsidiary Bell Technical Solutions (BTS). [...] | Ransomware | ||
|
2022-09-12 12:00:00 | Lorenz ransomware breaches corporate network via phone systems (lien direct) | The Lorenz ransomware gang now uses a critical vulnerability in Mitel MiVoice VOIP appliances to breach enterprises using their phone systems for initial access to their corporate networks. [...] | Ransomware Vulnerability | ||
|
2022-09-07 07:00:00 | Google says former Conti ransomware members now attack Ukraine (lien direct) | Google says some former Conti cybercrime gang members, now part of a threat group tracked as UAC-0098, are targeting Ukrainian organizations and European non-governmental organizations (NGOs). [...] | Ransomware Threat | ||
|
2022-09-06 07:41:11 | Second largest U.S. school district LAUSD hit by ransomware (lien direct) | Los Angeles Unified (LAUSD), the second largest school district in the U.S., disclosed that a ransomware attack hit its Information Technology (IT) systems over the weekend. [...] | Ransomware | ||
|
2022-09-02 16:05:55 | BlackCat ransomware claims attack on Italian energy agency (lien direct) | The BlackCat/ALPHV ransomware gang claimed responsibility for an attack that hit the systems of Italy's energy agency Gestore dei Servizi Energetici SpA (GSE) over the weekend. [...] | Ransomware | ||
|
2022-09-02 12:25:17 | Hive ransomware hits Damart clothing store with $2 million ransom (lien direct) | Damart, a French clothing company with over 130 stores across the world, is being extorted for $2 million after a cyberattack from the Hive ransomware gang. [...] | Ransomware | ||
|
2022-09-02 09:12:27 | San Francisco 49ers: Blackbyte ransomware gang stole info of 20K people (lien direct) | NFL's San Francisco 49ers are mailing notification letters confirming a data breach affecting more than 20,000 individuals following a ransomware attack that hit its network earlier this year. [...] | Ransomware | ||
|
2022-08-31 13:01:07 | Ragnar Locker ransomware claims attack on Portugal\'s flag airline (lien direct) | The Ragnar Locker ransomware gang has claimed an attack on the flag carrier of Portugal, TAP Air Portugal, disclosed by the airline last Friday. [...] | Ransomware | ||
|
2022-08-26 16:32:59 | The Week in Ransomware - August 26th 2022 - Fighting back (lien direct) | We saw a bit of ransomware drama this week, mostly centered around LockBit, who saw their data leak sites taken down by a DDoS attack after they started leaking the allegedly stolen Entrust data. [...] | Ransomware | ||
|
2022-08-24 17:39:20 | Quantum ransomware attack disrupts govt agency in Dominican Republic (lien direct) | The Dominican Republic's Instituto Agrario Dominicano has suffered a Quantum ransomware attack that encrypted multiple services and workstations throughout the government agency. [...] | Ransomware | ||
|
2022-08-24 12:36:33 | RansomEXX claims ransomware attack on Sea-Doo, Ski-Doo maker (lien direct) | The RansomEXX ransomware gang is claiming responsibility for the cyberattack against Bombardier Recreational Products (BRP), disclosed by the company on August 8, 2022. [...] | Ransomware | ||
|
2022-08-22 10:39:53 | LockBit ransomware blames Entrust for DDoS attacks on leak sites (lien direct) | The LockBit ransomware operation's data leak sites have been shut down over the weekend due to a DDoS attack telling them to remove Entrust's allegedly stolen data. [...] | Ransomware | ||
|
2022-08-18 19:06:42 | (Déjà vu) LockBit claims ransomware attack on security giant Entrust, leaks data (lien direct) | The LockBit ransomware gang has claimed responsibility for the June cyberattack on digital security giant Entrust. [...] | Ransomware | ||
|
2022-08-18 19:06:42 | LockBit claims ransomware attack on security giant Entrust (lien direct) | The LockBit ransomware gang has claimed responsibility for the June cyberattack on digital security giant Entrust. [...] | Ransomware | ||
|
2022-08-17 17:28:33 | BlackByte ransomware gang is back with new extortion tactics (lien direct) | The BlackByte ransomware is back with version 2.0 of their operation, including a new data leak site utilizing new extortion techniques borrowed from LockBit. [...] | Ransomware | ||
|
2022-08-15 20:06:24 | Argentina\'s Judiciary of Córdoba hit by PLAY ransomware attack (lien direct) | Argentina's Judiciary of Córdoba has shut down its IT systems after suffering a ransomware attack, reportedly at the hands of the new 'Play' ransomware operation. [...] | Ransomware | ||
|
2022-08-13 10:12:06 | SOVA malware adds ransomware feature to encrypt Android devices (lien direct) | The SOVA Android banking trojan continues to evolve with new features, code improvements, and the addition of a new ransomware feature that encrypts files on mobile devices. [...] | Ransomware Malware | ★★★ | |
|
2022-08-11 12:18:40 | UK NHS service recovery may take a month after MSP ransomware attack (lien direct) | Managed service provider (MSP) Advanced confirmed that a ransomware attack on its systems caused the disruption of emergency services (111) from the United Kingdom's National Health Service (NHS). [...] | Ransomware | ||
|
2022-08-10 18:21:40 | 7-Eleven Denmark confirms ransomware attack behind store closures (lien direct) | 7-Eleven Denmark has confirmed that a ransomware attack was behind the closure of 175 stores in the country on Monday. [...] | Ransomware | ||
|
2022-08-10 14:04:44 | Hacker uses new RAT malware in Cuba Ransomware attacks (lien direct) | A member of the Cuba ransomware operation is employing previously unseen tactics, techniques, and procedures (TTPs), including a novel RAT (remote access trojan) and a new local privilege escalation tool. [...] | Ransomware Malware | ★★★★★ | |
|
2022-08-09 11:00:05 | Maui ransomware operation linked to North Korean \'Andariel\' hackers (lien direct) | The Maui ransomware operation has been linked to the North Korean state-sponsored hacking group 'Andariel,' known for using malicious cyber activities to generate revenue and causing discord in South Korea. [...] | Ransomware | ||
|
2022-08-05 17:35:24 | The Week in Ransomware - August 5th 2022 - A look at cyber insurance (lien direct) | For the most part, it has been a quiet week on the ransomware front, with a few new reports, product developments, and attacks revealed. [...] | Ransomware | ||
|
2022-08-03 16:50:05 | Spanish research agency still recovering after ransomware attack (lien direct) | The Spanish National Research Council (CSIC) last month was hit by a ransomware attack that is now attributed to Russian hackers. [...] | Ransomware | ||
|
2022-08-02 15:13:40 | Microsoft Defender now better at blocking ransomware on Windows 11 (lien direct) | Microsoft has released new Windows 11 builds to the Beta Channel with improved Microsoft Defender for Endpoint ransomware attack blocking capabilities. [...] | Ransomware | ||
|
2022-08-02 13:38:57 | Semiconductor manufacturer Semikron hit by LV ransomware attack (lien direct) | German power electronics manufacturer Semikron has disclosed that it was hit by a ransomware attack that partially encrypted the company's network. [...] | Ransomware | ||
|
2022-08-01 10:20:27 | BlackCat ransomware claims attack on European gas pipeline (lien direct) | The ransomware group known as ALPHV (aka BlackCat) has assumed over the weekend responsibility for the cyberattack that hit Creos Luxembourg last week, a natural gas pipeline and electricity network operator in the central European country. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
