What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-07-28 17:35:48 | Ransom payments fall as fewer victims choose to pay hackers (lien direct) | Ransomware statistics from the second quarter of the year show that the ransoms paid to extortionists have dropped in value, a trend that continues since the last quarter of 2021. [...] | Ransomware | ||
|
2022-07-26 09:38:02 | No More Ransom helps millions of ransomware victims in 6 years (lien direct) | The No More Ransom project celebrates its sixth anniversary today after helping millions of ransomware victims recover their files for free. [...] | Ransomware | ||
|
2022-07-26 07:17:37 | LockBit claims ransomware attack on Italian tax agency (lien direct) | Italian authorities are investigating claims made by the LockBit ransomware gang that they breached the network of the Italian Internal Revenue Service (L'Agenzia delle Entrate). [...] | Ransomware | ||
|
2022-07-13 17:52:46 | New Lilith ransomware emerges with extortion site, lists first victim (lien direct) | A new ransomware operation has been launched under the name 'Lilith,' and it has already posted its first victim on a data leak site created to support double-extortion attacks. [...] | Ransomware | ||
|
2022-07-13 16:50:18 | Bandai Namco confirms hack after ALPHV ransomware data leak threat (lien direct) | Game publishing giant Bandai Namco has confirmed that they suffered a cyberattack that may have resulted in the theft of customers' personal data. [...] | Ransomware Hack Threat | ||
|
2022-07-11 15:24:40 | Ransomware gang now lets you search their stolen data (lien direct) | Two ransomware gangs and a data extortion group have adopted a new strategy to force victim companies to pay threat actors to not leak stolen data. [...] | Ransomware Threat | ||
|
2022-07-10 10:03:00 | Maastricht University wound up earning money from its ransom payment (lien direct) | Maastricht University (UM), a Dutch university with more than 22,000 students, said last week that it has recovered the ransom paid after a ransomware attack that hit its network in December 2019. [...] | Ransomware | ||
|
2022-07-08 15:22:42 | New 0mega ransomware targets businesses in double-extortion attacks (lien direct) | A new ransomware operation named '0mega' targets organizations worldwide in double-extortion attacks and demands millions of dollars in ransoms. [...] | Ransomware | ||
|
2022-07-07 13:19:23 | Quantum ransomware attack affects 657 healthcare orgs (lien direct) | Professional Finance Company Inc. (PFC), a full-service accounts receivables management company, says that a ransomware attack in late February led to a data breach affecting over 600 healthcare organizations. [...] | Ransomware Data Breach | ||
|
2022-07-07 11:47:20 | QNAP warns of new Checkmate ransomware targeting NAS devices (lien direct) | Taiwan-based network-attached storage (NAS) vendor QNAP warned customers to secure their devices against attacks using Checkmate ransomware to encrypt data. [...] | Ransomware | ||
|
2022-07-06 13:32:10 | (Déjà vu) Ransomware, hacking groups move from Cobalt Strike to Brute Ratel (lien direct) | Hacking groups and ransomware operations are moving away from Cobalt Strike to the newer Brute Ratel post-exploitation toolkit to evade detection by EDR and antivirus solutions. [...] | Ransomware | ||
|
2022-07-06 13:32:10 | (Déjà vu) Ransomware, hacking groups ditch Cobalt Strike for Brute Ratel (lien direct) | APT hacking groups and ransomware operations are moving away from Cobalt Strike to the newer Brute Ratel post-exploitation toolkit to evade detection by EDR and antivirus solutions. [...] | Ransomware | ||
|
2022-07-06 13:32:10 | Ransomware gangs, APT groups ditch Cobalt Strike for Brute Ratel (lien direct) | APT hacking groups and ransomware operations are moving away from Cobalt Strike to the newer Brute Ratel post-exploitation toolkit to evade detection by EDR and antivirus solutions. [...] | Ransomware | ||
|
2022-07-06 10:47:32 | US govt warns of Maui ransomware attacks against healthcare orgs (lien direct) | The FBI, CISA, and the U.S. Treasury Department issued today a joint advisory warning of North-Korean-backed threat actors using Maui ransomware in attacks against Healthcare and Public Health (HPH) organizations. [...] | Ransomware Threat | ||
|
2022-07-05 18:20:47 | New RedAlert Ransomware targets Windows, Linux VMware ESXi servers (lien direct) | A new ransomware operation called RedAlert, or N13V, encrypts both Windows and Linux VMWare ESXi servers in attacks on corporate networks. [...] | Ransomware | ||
|
2022-07-01 15:35:53 | The Week in Ransomware - July 1st 2022 - Bug Bounties (lien direct) | It has been relatively busy this week with new ransomware attacks unveiled, a bug bounty program introduced, and new tactics used by the threat actors to distribute their encryptors. [...] | Ransomware Threat | ||
|
2022-06-30 14:04:11 | Macmillan shuts down systems after likely ransomware attack (lien direct) | Publishing giant Macmillan was forced to shut down their network and offices while recovering from a security incident that appears to be a ransomware attack. [...] | Ransomware | ||
|
2022-06-30 08:12:24 | AstraLocker 2.0 infects users directly from Word attachments (lien direct) | A lesser-known ransomware strain called AstraLocker has recently released its second major version, and according to threat analysts, its operators engage in rapid attacks that drop its payload directly from email attachments. [...] | Ransomware Threat | ||
|
2022-06-29 17:23:36 | Walmart denies being hit by Yanluowang ransomware attack (lien direct) | American retailer Walmart has denied being hit with a ransomware attack by the Yanluowang gang after the hackers claimed to encrypt thousands of computers. [...] | Ransomware | ||
|
2022-06-27 12:31:49 | Vice Society claims ransomware attack on Med. University of Innsbruck (lien direct) | The Vice Society ransomware gang has claimed responsibility for last week's cyberattack against the Medical University of Innsbruck, which caused severe IT service disruption and the alleged theft of data. [...] | Ransomware | ||
|
2022-06-27 11:09:44 | LockBit 3.0 introduces the first ransomware bug bounty program (lien direct) | The LockBit ransomware operation has released 'LockBit 3.0,' introducing the first ransomware bug bounty program and leaking new extortion tactics and Zcash cryptocurrency payment options. [...] | Ransomware | ||
|
2022-06-26 11:05:10 | Fake copyright infringement emails install LockBit ransomware (lien direct) | LockBit ransomware affiliates are using an interesting trick to get people into infecting their devices by disguising their malware as copyright claims. [...] | Ransomware Malware | ||
|
2022-06-24 18:20:35 | The Week in Ransomware - June 24th 2022 - Splinter Cells (lien direct) | The Conti ransomware gang has finally ended their charade and turned off their Tor data leak and negotiation sites, effectively shutting down the operation. [...] | Ransomware | ★★★★★ | |
|
2022-06-24 13:13:16 | Mitel zero-day used by hackers in suspected ransomware attack (lien direct) | Hackers used a zero-day exploit on Linux-based Mitel MiVoice VOIP appliances for initial access in what is believed to be the beginning of a ransomware attack. [...] | Ransomware | ||
|
2022-06-24 10:35:20 | Conti ransomware finally shuts down data leak, negotiation sites (lien direct) | The Conti ransomware operation has finally shut down its last public-facing infrastructure, consisting of two Tor servers used to leak data and negotiate with victims, closing the final chapter of the notorious cybercrime brand. [...] | Ransomware | ||
|
2022-06-23 10:04:25 | Automotive hose maker Nichirin hit by ransomware attack (lien direct) | Nichirin-Flex U.S.A, a subsidiary of the Japanese car and motorcycle hose maker Nichirin, has been hit by a ransomware attack causing the company to take the network offline. [...] | Ransomware | ||
|
2022-06-23 09:00:00 | Chinese hackers use ransomware as decoy for cyber espionage (lien direct) | Two Chinese hacking groups conducting cyber espionage and stealing intellectual property from Japanese and western companies are deploying ransomware as a decoy to cover up their malicious activities. [...] | Ransomware | ||
|
2022-06-23 06:05:37 | Conti ransomware hacking spree breaches over 40 orgs in a month (lien direct) | The Conti cybercrime syndicate runs one of the most aggressive ransomware operations and has grown highly organized, to the point that affiliates were able to hack more than 40 companies in a little over a month. [...] | Ransomware Hack | ||
|
2022-06-18 13:06:03 | QNAP NAS devices targeted by surge of eCh0raix ransomware attacks (lien direct) | This week a new series of ech0raix ransomware has started targeting vulnerable QNAP Network Attached Storage (NAS) devices according to user reports and sample submissions on the ID-Ransomware platform. [...] | Ransomware | ★★★★ | |
|
2022-06-17 17:11:05 | The Week in Ransomware - June 17th 2022 - Have I Been Ransomed? (lien direct) | Ransomware operations are constantly evolving their tactics to pressure victims to pay. For example, this week, we saw a new extortion tactic come into play with the creation of dedicated websites to extort victims with searchable data. [...] | Ransomware | ||
|
2022-06-17 05:52:36 | QNAP \'thoroughly investigating\' new DeadBolt ransomware attacks (lien direct) | Network-attached storage (NAS) vendor QNAP once again warned customers on Friday to secure their devices against a new campaign of attacks pushing DeadBolt ransomware. [...] | Ransomware | ||
|
2022-06-16 06:07:20 | Microsoft Office 365 feature can help cloud ransomware attacks (lien direct) | Security researchers are warning that threat actors could hijack Office 365 accounts to encrypt for a ransom the files stored in SharePoint and OneDrive services that companies use for cloud-based collaboration, document management and storage. [...] | Ransomware Threat | ||
|
2022-06-15 12:28:27 | Extortion gang ransoms Shoprite, largest supermarket chain in Africa (lien direct) | Shoprite Holdings, Africa's largest supermarket chain that operates almost three thousand stores across twelve countries in the continent, has been hit by a ransomware attack. [...] | Ransomware | ||
|
2022-06-14 19:03:26 | Ransomware gang creates site for employees to search for their stolen data (lien direct) | The ALPHV ransomware gang, aka BlackCat, has brought extortion to a new level by creating a dedicated website that allows the customers and employees of their victim to check if their data was stolen in an attack [...] | Ransomware | ||
|
2022-06-13 13:14:14 | Microsoft: Exchange servers hacked to deploy BlackCat ransomware (lien direct) | Microsoft says BlackCat ransomware affiliates are now attacking Microsoft Exchange servers using exploits targeting unpatched vulnerabilities. [...] | Ransomware | ||
|
2022-06-12 10:11:04 | Hello XD ransomware now drops a backdoor while encrypting (lien direct) | Cybersecurity researchers report increased activity of the Hello XD ransomware, whose operators are now deploying an upgraded sample featuring stronger encryption. [...] | Ransomware | ||
|
2022-06-11 10:31:49 | Confluence servers hacked to deploy AvosLocker, Cerber2021 ransomware (lien direct) | Ransomware gangs are now targeting a recently patched and actively exploited remote code execution (RCE) vulnerability affecting Atlassian Confluence Server and Data Center instances for initial access to corporate networks. [...] | Ransomware Vulnerability | ||
|
2022-06-10 18:18:21 | The Week in Ransomware - June 10th 2022 - Targeting Linux (lien direct) | It has been relatively quiet this week with many companies and researchers at the RSA conference. However, we still had some interesting ransomware reports released this week. [...] | Ransomware | ||
|
2022-06-09 15:29:09 | (Déjà vu) Roblox Game Pass store used to sell ransomware decryptor (lien direct) | A new ransomware is taking the unusual approach of selling its decryptor on the Roblox gaming platform using the service's in-game Robux currency. [...] | Ransomware | ||
|
2022-06-09 11:43:51 | Vice Society ransomware claims attack on Italian city of Palermo (lien direct) | The Vice Society ransomware group has claimed responsibility for the recent cyber attack on the city of Palermo in Italy, which has caused a large-scale service outage. [...] | Ransomware | ||
|
2022-06-08 10:55:57 | Cuba ransomware returns to extorting victims with updated encryptor (lien direct) | The Cuba ransomware operation has returned to regular operations with a new version of its malware found used in recent attacks. [...] | Ransomware Malware | ||
|
2022-06-07 15:06:36 | Linux version of Black Basta ransomware targets VMware ESXi servers (lien direct) | Black Basta is the latest ransomware gang to add support for encrypting VMware ESXi virtual machines running on enterprise Linux servers. [...] | Ransomware | ||
|
2022-06-06 17:01:20 | QBot now pushes Black Basta ransomware in bot-powered attacks (lien direct) | The Black Basta ransomware gang has partnered with the QBot malware operation to gain spread laterally through hacked corporate environments. [...] | Ransomware Malware | ||
|
2022-06-06 15:54:02 | Mandiant: “No evidence” we were hacked by LockBit ransomware (lien direct) | American cybersecurity firm Mandiant is investigating LockBit ransomware gang's claims that they hacked the company's network and stole data. [...] | Ransomware | ||
|
2022-06-06 12:56:10 | Ransomware gangs now give victims time to save their reputation (lien direct) | Threat analysts have observed an unusual trend in ransomware group tactics, reporting that initial phases of victim extortion are becoming less open to the public as the actors tend to use hidden or anonymous entries. [...] | Ransomware Threat | ||
|
2022-06-03 16:41:26 | The Week in Ransomware - June 3rd 2022 - Evading sanctions (lien direct) | Ransomware gangs continue to evolve their operations as victims refuse to pay ransoms due to sanctions or other reasons. [...] | Ransomware | ||
|
2022-06-02 16:35:29 | Evil Corp switches to LockBit ransomware to evade sanctions (lien direct) | The Evil Corp cybercrime group has now switched to deploying LockBit ransomware on targets' networks to evade sanctions imposed by the U.S. Treasury Department's Office of Foreign Assets Control (OFAC). [...] | Ransomware | ||
|
2022-06-02 15:01:51 | Ransomware gang now hacks corporate websites to show ransom notes (lien direct) | A ransomware gang is taking extortion to a new level by publicly hacking corporate websites to publicly display ransom notes. [...] | Ransomware Hack | ||
|
2022-06-02 09:22:31 | Conti ransomware targeted Intel firmware for stealthy attacks (lien direct) | Researchers analyzing the leaked chats of the notorious Conti ransomware operation have discovered that teams inside the Russian cybercrime group were actively developing firmware hacks. [...] | Ransomware | ||
|
2022-06-02 04:20:27 | Foxconn confirms ransomware attack disrupted production in Mexico (lien direct) | Foxconn electronics manufacturer has confirmed that one of its Mexico-based production plants has been impacted by a ransomware attack in late May. [...] | Ransomware |
To see everything:
Our RSS (filtrered)
