Skip to Content

CryWiper hits Russian courts and mayor offices in data-wiping attacks

Judicial courts and mayor officers across several Russian regions have been hit by a new data-wiping trojan, according to reports from Russian antivirus maker Kaspersky and local news outlet Izvestia. Named CryWiper, the malware goes through the motions of a ransomware attack, where it scrambles files and leaves a ransom note demanding money. But Kaspersky …

Read More about CryWiper hits Russian courts and mayor offices in data-wiping attacks

IKEA Kuwait and Morocco branches breached by Vice Society ransomware

Updated on 2022-11-29 IKEA confirmed suffering a cyberattack on its Kuwait and Morocco branches, disrupting several operating systems. The Vice Society ransomware group added the franchises to its leak site. Read more: IKEA investigating cyberattacks on outlets in Kuwait, Morocco Overview: Local IKEA incidents Swedish furniture retailer IKEA confirmed that its local franchises in Kuwait …

Read More about IKEA Kuwait and Morocco branches breached by Vice Society ransomware

New REvil leaks

Overview: New REvil leaks The REvil ransomware group has added two new companies on its dark web data leak portal, a US school district and a major services provider for the US healthcare sector. Two two updates are of note because they come after a period of two weeks of inactivity, following REvil’s high-profile leak …

Read More about New REvil leaks

Ragnar Locker ransomware hacked

Updated on 2022-11-28: Ransomware Operators Leak Belgian Police Force Data Ransomware operators who thought they were targeting a Belgian municipality in Antwerp instead stole from the Zwijndrecht police force in that city. The attackers leaked the data, which includes crime report files, investigation reports, traffic camera footage, and personnel information. The attackers reportedly leveraged an …

Read More about Ragnar Locker ransomware hacked

Ransomware on All India Institute of Medical Sciences (AIIMS)

Updated on 2022-11-27: Ransomware on Indian hospital A suspected ransomware attack has disrupted the IT network of the All India Institute of Medical Sciences (AIIMS), one of India’s largest medical schools and hospitals. The Hindustan Times said this would mark the first instance of a major Indian hospital being affected by ransomware. Healthcare organizations, and …

Read More about Ransomware on All India Institute of Medical Sciences (AIIMS)

Vanuatu ransomware attack

Updated on 2022-11-29 Almost a month after a ransomware attack that crippled its IT network, the government of the small Pacific island of Vanuatu has yet to recover from the incident. ABC News reports that government workers are using their personal email services and hotspots to conduct government business and that local hospitals are still …

Read More about Vanuatu ransomware attack

Zeppelin ransomware decrypter: Zeppelin ransomware flaw exploited to help victims for years

Updated on 2022-11-24: Zeppelin ransomware flaw exploited to help victims for years Unit 221B, a New Jersey cyber security firm was able to recover Zeppelin encryption keys by taking advantage of a flaw in the three-step encryption system Zeppelin used. In one of the encryption steps the ransomware temporarily stored a relatively weak 512-bit RSA …

Read More about Zeppelin ransomware decrypter: Zeppelin ransomware flaw exploited to help victims for years

ARCrypter Ransomware Expansion

Updated on 2022-11-18 A previously unknown ransomware, ARCrypter, was found expanding its foothold from Latin America to China, Canada, the U.S., Germany, and France. Read more: Previously unidentified ARCrypter ransomware expands worldwide Overview: ARCrypter ransomware BlackBerry’s security team has a report on the new ARCrypter ransomware, the strain used in attacks on the Colombian National …

Read More about ARCrypter Ransomware Expansion

Hive Ransomware Development

Updated on 2022-11-18 An alert published by the CISA, the FBI, and the HHS states that the Hive ransomware group extorted over $100 million in ransom payments from 1,300 organizations, from June 2021 to November 2022. Read more: Alert (AA22-321A) #StopRansomware: Hive Ransomware CISA, the FBI, and the HHS have issued a joint report on …

Read More about Hive Ransomware Development

GAO Urges CISA, Secret Service, and FBI to Help Stale, Local, Tribal, and Territorial Governments with Ransomware Challenges

In a report, the US Government Accountability Office (GAO) makes recommendations that “could help the federal government improve coordination and assistance” to help protect state, local, tribal, and territorial (SLTT) government organizations from ransomware attacks. Ransomware: Federal Coordination and Assistance Challenges recommends that the Cybersecurity and Infrastructure Security Agency (CISA), Secret Service, and FBI improve …

Read More about GAO Urges CISA, Secret Service, and FBI to Help Stale, Local, Tribal, and Territorial Governments with Ransomware Challenges

Somnia ransomware

Updated on 2022-11-14 CERT-UA confirmed that Russian hacktivists, tracked as UAC-0118, compromised multiple Ukrainian organizations with the new Somnia ransomware strain. Read more: Ukraine says Russian hacktivists use new Somnia ransomware Updated on 2022-11-13: Somnia ransomware Ukraine’s CERT team has released details and IOCs about a new strain of ransomware—named Somnia—deployed in recent attacks against …

Read More about Somnia ransomware

Australia to hack the hackers

Clare O’Neil, the Minister for Home Affairs of Australia, says the government is setting up “a permanent standing operation” that will “scour the world” and “hunt down the criminal syndicates and gangs who are targeting Australia in cyber attacks and disrupt their efforts.” In an interview with ABC Insiders, O’Neil said this new initiative would be a joint effort …

Read More about Australia to hack the hackers

Iridium/Sandworm APT – New Sandworm ransomware strain named RansomBoggs

Updated on 2022-11-29 ESET has a short blog post on RansomBoggs, a new ransomware strain deployed last week in Ukraine and which the company linked to Sandworm, a cyber-espionage group linked to the Russian military intelligence services. ESET spotted and warned about this new ransomware last Friday. Read more: RansomBoggs: New ransomware targeting Ukraine Updated …

Read More about Iridium/Sandworm APT – New Sandworm ransomware strain named RansomBoggs
Ads Blocker Image Powered by Code Help Pro

Ads Blocker Detected!!!

This site depends on revenue from ad impressions to survive. If you find this site valuable, please consider disabling your ad blocker.