Security Affairs

APRIL 10, 2024

Group Health Cooperative of South Central Wisconsin disclosed a data breach that impacted over 500,000 individuals. The Group Health Cooperative of South Central Wisconsin (GHC-SCW) is a non-profit organization that provides health insurance and medical care services to its members in the Madison metropolitan area of Wisconsin.

Data breaches 122

Data breaches e-Discovery Ransomware Insurance 122

Data Breach Today

MAY 17, 2023

BianLian Is Not Double Trouble Anymore, Says US CISA The BianLian ransomware group is abandoning malicious encryption in favor of pure extortion, warns the U.S. top cybersecurity agency. A major likely factor in BianLian's shift was cybersecurity firm Avast's January release of a free decryptor.

Encryption 144

Encryption Cybersecurity Ransomware 144

Data Breach Today

JULY 5, 2023

Proposed Online Safety Bill Is 'Doomed to Fail,' Academics Say in an Open Letter Over five dozen British academics joined a widening group of technology firms and privacy groups in criticizing a U.K. government bill aimed at protecting children from online harassments by weakening encryption.

Encryption 130

Encryption Privacy Government 130

Data Breach Today

MARCH 22, 2023

BianLian Follows in Karakurt's Footsteps by Moving Away From Crypto-Locking Malware Not all ransomware groups wield crypto-locking malware. After security researchers released a free decryptor for its malware, instead of encrypting files, the group chose to steal them and demand ransom solely for their safe return.

Ransomware 167

Ransomware Encryption Security IT 167

Security Affairs

JULY 29, 2021

ransomware is now able to encrypt Windows domains by using Active Directory group policies. ransomware that encrypts Windows domains by using Active Directory group policies. The ransomware will create new group policies on the domain controller that are pushed to all of the machines in the Windows domain.

Encryption 144

Encryption Ransomware Access Security 144

Security Affairs

SEPTEMBER 1, 2023

Researchers released a free decryptor for the Key Group ransomware that allows victims to recover their data without paying a ransom. Threat intelligence firm EclecticIQ released a free decryption tool for the Key Group ransomware (aka keygroup777) that allows victims to recover their data without paying a ransom.

Ransomware 117

Ransomware Encryption Access Security 117

Krebs on Security

SEPTEMBER 30, 2023

Earlier this week, KrebsOnSecurity revealed that the darknet website for the Snatch ransomware group was leaking data about its users and the crime gang’s internal operations. According to a September 20, 2023 joint advisory from the FBI and the U.S. According to a September 20, 2023 joint advisory from the FBI and the U.S.

Ransomware 206

Ransomware Data breaches Encryption Systems administration 206

Security Affairs

MAY 15, 2023

A previously unknown ransomware group known as RA Group is targeting companies in U.S. Cisco Talos researchers recently discovered a new ransomware operation called RA Group that has been active since at least April 22, 2023. The group has already compromised three organizations in the U.S. and one in South Korea.

Ransomware 96

Ransomware Encryption Healthcare Insurance 96

Security Affairs

NOVEMBER 12, 2023

The Lorenz extortion group leaked the data stolen from the Texas-based Cogdell Memorial Hospital. The group claims to theft of more than 400GB of data, including internal files, patient medical images, and also employee email communications. Ransom demands have been quite high, between $500.000 and $700.000.

Ransomware 132

Ransomware Encryption Communications IT 132

Security Affairs

JUNE 8, 2022

Black Basta ransomware gang implemented a new feature to encrypt VMware ESXi virtual machines (VMs) running on Linux servers. The Black Basta ransomware gang now supports encryption of VMware ESXi virtual machines (VMs) running on Linux servers. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Encryption 142

Encryption Ransomware Cybersecurity Security 142

Data Breach Today

DECEMBER 30, 2022

Ragnar Locker Apparently Still Trying to Extort Victim; Says No Files Encrypted One of the primary healthcare systems in the northwestern Italian city of Alessandria has been listed as a recent victim of the Ragnar Locker ransomware group, which has leaked stolen data and appears to be continuing to try and extort the organization.

Encryption 130

Encryption Ransomware 130

Data Breach Today

APRIL 10, 2024

Wisconsin Nonprofit Says Attackers Also Tried to Encrypt Systems, But They Failed A Wisconsin nonprofit managed care organization is notifying nearly 534,000 individuals that their protected health information was copied and stolen in a recent attack by a "foreign ransomware gang" that also attempted - but failed - to encrypt the group's IT systems. (..)

Encryption 176

Encryption Ransomware IT 176

Thales Cloud Protection & Licensing

JANUARY 31, 2024

ESG Research Unearths Critical Insights for Future-Proofing Encryption and Key Management madhav Thu, 02/01/2024 - 05:14 Encryption and key management are critical defenses against data breaches and cyber threats in the evolving digital landscape. This trend underscores the growing reliance on encryption as a primary safeguard.

Encryption 83

Encryption Cloud Data migration Compliance 83

Dark Reading

DECEMBER 14, 2022

An emerging cybercriminal group linked with Conti has expanded its partial encryption strategy and demonstrates other evasive maneuvers, as it takes aim at healthcare and other sectors.

Encryption 110

Encryption Ransomware IT 110

Dark Reading

SEPTEMBER 1, 2023

Researchers crack Key Group's ransomware encryption and release free tool for victim organizations to recover their data.

Ransomware 105

Ransomware Encryption 105

Security Affairs

MARCH 11, 2024

The financially motivated hacking group Magnet Goblin uses various 1-day flaws to deploy custom malware on Windows and Linux systems. The group focuses on internet-facing services, in at least one instance the group exploited the vulnerability CVE-2024-21887 in Ivanti Connect Secure VPN.

Communications 113

Communications Encryption IT Security 113

Security Affairs

FEBRUARY 6, 2023

Royal Ransomware operators added support for encrypting Linux devices and target VMware ESXi virtual machines. The Royal Ransomware gang is the latest extortion group in order of time to add support for encrypting Linux devices and target VMware ESXi virtual machines. Starting from September 2022, the note was changed to Royal.

Encryption 98

Encryption Ransomware IT Security 98

Data Breach Today

SEPTEMBER 15, 2023

Data Minimization and Encryption Mitigate Fallout, Says FS-ISAC's Teresa Walsh The Clop ransomware group's zero-day attack on MOVEit software was its fourth data theft campaign targeting secure file transfer users.

Encryption 284

Encryption Ransomware Security IT 284

Security Affairs

OCTOBER 3, 2023

In the last few weeks, two cybercriminal groups that have also targeted Italian entities and businesses, are back in the news; they are LockBit 3.0 Like all ransomware, this is a type of malware that, once introduced into an organization, encrypts the data and then requires the victim to pay a ransom in order to decrypt it.

Ransomware 123

Ransomware Encryption Access Cybersecurity 123

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. 22, 2020, the U.S. It’s just some kind of sabotage.”

Ransomware 260

Ransomware Government Security IT 260

Data Breach Today

AUGUST 23, 2023

Previously Unknown APT Uses Supply Chain Hack to Reach Victims A previously unknown threat group orchestrated a supply chain attack using a Chinese encryption app to target victims mostly located in Hong Kong. Korplug, the backdoor incorporated into the encryption app, "is known to be used by multiple APT groups," Symantec says.

Encryption 241

Encryption 241

Security Affairs

JUNE 6, 2023

The Cyclops group has developed multi-platform ransomware that can infect Windows, Linux, and macOS systems. In an unprecedented move, the group is also offering a separate information-stealer malware that can be used to steal sensitive data from infected systems. ” reads the report. ” reads the report.

Ransomware 85

Ransomware Encryption Archiving File names 85

Schneier on Security

JUNE 17, 2021

The first encryption algorithm for that standard was GEA-1, a stream cipher built on three linear-feedback shift registers and a non-linear combining function. ETSI was — and maybe still is — under the auspices of SOGIS : the Senior Officials Group, Information Systems Security.

Encryption 131

Encryption Paper Security 131

Security Affairs

FEBRUARY 21, 2022

Researchers discovered a flaw in the encryption algorithm used by Hive ransomware that allowed them to decrypt data. Researchers discovered a flaw in the encryption algorithm used by Hive ransomware that allowed them to decrypt data without knowing the private key used by the gang to encrypt files.

Encryption 97

Encryption Ransomware Paper Blockchain 97

Data Breach Today

DECEMBER 1, 2023

The Incident Involves Ransomware Encryption and Follows Familiar, Concerning Trends A large, Seattle-based surgical group is notifying nearly 437,400 individuals that their information was potentially compromised in a ransomware and data theft incident earlier this year.

Ransomware 279

Ransomware Encryption 279

Security Affairs

JULY 6, 2022

Hive ransomware operators have improved their file-encrypting module by migrating to Rust language and adopting a more sophisticated encryption method. The group used a variety of attack methods, including malspam campaigns, vulnerable RDP servers, and compromised VPN credentials. ” reads the post published by Microsoft.

Encryption 124

Encryption Ransomware Blockchain Libraries 124

Security Affairs

SEPTEMBER 28, 2023

. “The threat actors also claim to have stolen over 27 TB of corporate data and encrypted the company’s VMWare ESXi virtual machines during the attack.” Today Johnson Controls, an ICS/SCADA vendor, confirmed they were a victim of Dark Angels ransomware group. ” reported Bleeping Computer.

Ransomware 123

Ransomware Insurance Cybersecurity Encryption 123

Security Affairs

AUGUST 31, 2021

Recently emerged LockFile ransomware family LockFile leverages a novel technique called intermittent encryption to speed up encryption. Sophos researchers discovered that the group is now leveraging a new technique called “intermittent encryption” to speed up the encryption process.

Encryption 118

Encryption Ransomware Financial Services Manufacturing 118

Security Affairs

JUNE 26, 2021

On June 14th, Altus Group, a commercial real estate software solutions firm, disclosed a security breach, now Hive ransomware gang leaked its files. On June 14th, Altus Group, a commercial real estate software solutions company, has announced that its data was breached. Altus Group has been informed about the new development.

Ransomware 115

Ransomware File names Archiving Encryption 115

Security Affairs

FEBRUARY 7, 2023

A new Linux variant of the Clop ransomware has been observed in the wild, the good news is that its encryption algorithm is flawed. The researchers noticed that the encryption algorithm implemented in the ELF executable is flawed and can allow victims to decrypt locked files without paying a ransom. ” continues the report.

Encryption 97

Encryption Ransomware Cloud IT 97

Security Affairs

APRIL 4, 2023

A new ransomware strain named Rorschach ransomware supports the fastest file-encrypting routine observed to date. The researchers conducted five separate encryption speed tests in a controlled environment (with 6 CPUs, 8192MB RAM, SSD, and 220000 files to be encrypted), limited to local drive encryption only.

Encryption 97

Encryption Ransomware Education Security 97

Security Affairs

JANUARY 18, 2022

A new ransomware gang named White Rabbit appeared in the threat landscape, experts believe it is linked to the FIN8 hacking group. A new ransomware gang called ‘White Rabbit’ launched its operations and according to the experts, it is likely linked to the FIN8 financially motivated group. scrypt.txt.” . Pierluigi Paganini.

Ransomware 143

Ransomware Encryption Passwords IT 143

Security Affairs

JUNE 8, 2021

Trojan Shield operation: The FBI and Australian Federal Police ran an encrypted chat platform that was used by crime gangs and intercepted their communications. The FBI and Australian Federal Police (AFP) ran an encrypted chat platform that was used by crime gangs and intercepted their communications.

Encryption 122

Encryption Communications Sales Passwords 122

Security Affairs

JULY 28, 2021

BlackMatter is a new ransomware gang that started its activity this week, the cybercriminals group claims to be the successor of Darkside and REvil groups. Lile other ransomware operations, BlackMatter also set up its leak site where it will publish data exfiltrated from the victims before encrypting their system.

Ransomware 123

Ransomware Encryption Access IT 123

Data Breach Today

AUGUST 17, 2023

Fortinet SSL VPN Vulnerability Is Among Top Most Common Vulnerabilities The Play ransomware group is targeting security managed service providers to gain initial access and using up to a half-decade-old vulnerabilities in security appliances, warn security researchers with Adlumin.

Ransomware 244

Ransomware Encryption Access Security 244

WIRED Threat Level

JANUARY 10, 2018

German researchers say that a flaw in the app's group-chat feature undermines its end-to-end encryption promises.

Encryption 111

Encryption Security IT 111

eSecurity Planet

OCTOBER 6, 2021

The malware encrypts files and spreads to the entire system to maximize damage, which forces companies to lock down the whole network to stop the propagation. Encryption is the Key. Encryption is used everywhere. Encrypting is neither hashing nor obfuscating files. What Happens During Ransomware Encryption?

Encryption 85

Encryption Ransomware Communications Access 85