eSecurity Planet

FEBRUARY 16, 2021

All of your files are encrypted with RSA-2048 and AES-128 ciphers.” ” Or you might see a readme.txt stating, “Your files have been replaced by these encrypted containers and aren’t accessible; you will lose your files on [enter date] unless you pay $2500 in Bitcoin.” Forensic Analysis.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

Security Affairs

MARCH 13, 2023

The Dark Pink APT is active in the ASEAN region and has been active since at least mid-2021. The group focuses on military and government organizations to steal sensitive information, including confidential data and intellectual property. “The ISO file also contains a decoy Word document that has an XOR-encrypted section.

Phishing 74

Phishing Encryption Military Government 74

Security Affairs

SEPTEMBER 28, 2021

” reads the analysis published by Microsoft. “Use of FoggyWeb has been observed in the wild as early as April 2021.” ” The attackers use the version.dll DLL to load FoggyWeb which is stored in the encrypted file Windows.Data.TimeZones.zh-PH.pri. Follow me on Twitter: @securityaffairs and Facebook.

Encryption 83

Encryption Military Government Access 83

eSecurity Planet

OCTOBER 5, 2021

Estimates vary, but a recent FortiGuard Labs Global Threat Landscape Report found an almost 10-fold increase in ransomware attacks between mid-2020 and mid-2021. Here are the services that stood out in our analysis. The focus is on recovering deleted and encrypted files as quickly as possible. And the threat is growing.

Ransomware 139

Ransomware Encryption Cybersecurity Insurance 139

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military 81

Military Government Phishing Libraries 81

Krebs on Security

DECEMBER 13, 2021

The consulting firm PricewaterhouseCoopers recently published lessons learned from the disruptive and costly ransomware attack in May 2021 on Ireland’s public health system. Ireland’s Health Service Executive (HSE), which operates the country’s public health system, got hit with Conti ransomware on May 14, 2021.

Ransomware 257

Ransomware Cybersecurity Phishing Security 257

ForAllSecure

MAY 18, 2021

Failure to pay, and your data is encrypted forever. Vamosi: Okay, so you're 16, still in high school, and the Department of Defense is introducing you to members of the military and the Air Force. And he's right Ransomware is malware that blocks access to the data on a computer until a sum of money is paid. Whoa, how cool is that.

Ransomware 52

Ransomware Passwords Government Encryption 52