Data Breach Today

JANUARY 22, 2024

Finnish IT Services Previews Days or Weeks of Disruption, Ties Attack to Akira An Akira ransomware attack that hit a data center run by Finnish IT software and services firm Tietoevry has led to widespread outages across Sweden.

Ransomware 292

Ransomware IT Retail Government 292

Data Breach Today

FEBRUARY 4, 2021

Maze was one of the most notorious and successful ransomware operations of recent years until its apparent "retirement" and handover to Egregor in November 2020. Some rivals have suggested both groups have ties to the Russian government. Supposed Rivals Said Maze Gang Had Moscow Backing - But Was That Just Sour Grapes?

Government 249

Government Ransomware IT 249

Data Breach Today

NOVEMBER 15, 2023

Bureau Touts ‘All-Time High’ Public-Private Coordination Despite Rise in Attacks FBI officials said Wednesday that the federal government is preventing advanced ransomware attacks targeting a range of institutions with the help of new information-sharing and victim engagement initiatives with organizations across the public and private sectors.

Ransomware 290

Ransomware Government 290

Data Breach Today

NOVEMBER 19, 2019

Governor Describes 'Aggressive' Incident Response Efforts After a ransomware attack on Monday forced Louisiana's government to take several servers and websites offline to prevent the malware from spreading, state officials spent Tuesday restoring online services.

Government 260

Government Ransomware 260

Data Breach Today

SEPTEMBER 23, 2021

Advisory Urges Multifactor Authentication, Network Segmentation, Patching and More The pace of Conti ransomware attacks has been increasing, with more than 400 organizations globally having fallen victim, warns a joint cybersecurity advisory from the U.S.

Ransomware 289

Ransomware Government Authentication Cybersecurity 289

Data Breach Today

SEPTEMBER 11, 2023

UK Crime and Cybersecurity Agencies Urge 'Holistic' View of Ransomware Ecosystem Stopping the ransomware epidemic is less about tackling individual crypto-locking malware variants and more about combating the entire ecosystem of bad actors underpinning digital extortion, the British government said Monday.

Ransomware 258

Ransomware IT Cybersecurity Government 258

Data Breach Today

MAY 18, 2022

Ransomware Group Continues to Demand Ransom Payment From Besieged Government Ransomware group Conti, which has been holding to ransom crypto-locked Costa Rican government systems since April, has claimed on its leak site Conti News that it has "insiders" in the country's government, and that they are working toward the compromise of "other systems." (..)

Government 274

Government IT Ransomware 274

Data Breach Today

MAY 16, 2023

government says has been a key actor in Russian ransomware hacking faces federal criminal charges, economic sanctions and a $10 million reward for information leading to his arrest. Mikhail Matveev, aka Wazawaka, was a central figure of the Babuk ransomware-as-a-service gang.

Ransomware 261

Ransomware Government 261

Krebs on Security

FEBRUARY 20, 2024

authorities have seized the darknet websites run by LockBit , a prolific and destructive ransomware group that has claimed more than 2,000 victims worldwide and extorted over $120 million in payments. “I don’t think this is an accident—this is how ransomware groups talk to each other,” Stockley said.

Ransomware 259

Ransomware Encryption Insurance Manufacturing 259

Data Breach Today

DECEMBER 13, 2022

Victims Still Learning Their Personal Data Was Illegally Accessed, Copied in 2021 A ransomware attack on the Irish healthcare system in 2021 has cost the government 80 million euros in damages and counting.

Ransomware 353

Ransomware Personal data Government Access 353

Data Breach Today

JANUARY 16, 2023

Pity the overworked ransomware gang - say, LockBit - that just "discovered" one of its affiliates hit Britain's postal service. But until Western governments find a way to truly disrupt the ransomware business model, operators remain free to keep spouting half-truths and lies at victims' expense.

Ransomware 306

Ransomware Government IT 306

Security Affairs

MAY 31, 2022

Cyber Research Labs reported a rise in ransomware attacks in the second quarter of 2022, small states are more exposed to these attacks. The experts warn of ransomware attacks against government organizations. They observed a total of 48 government organizations from 21 countries that were hit by 13 ransomware attacks in 2022.

Ransomware 141

Ransomware Government Sales Cybersecurity 141

Data Breach Today

MAY 17, 2022

Threat Group Seeking to Gain Access to Other Government Systems Ransomware actor Conti, which has been targeting Costa Rican government entities since April 2022, has claimed on its leak site Conti News that it has "insiders" in the country's government, and they are working toward the compromise of "other systems."

Government 246

Government IT Ransomware Access 246

Data Breach Today

AUGUST 4, 2022

Group Published Ransomware Execution Video on Website A cyberattack that temporarily paralyzed Albania's pivot to digital government likely came from Iranian hackers.

Government 240

Government Ransomware 240

Data Breach Today

APRIL 2, 2019

Attack Comes After Others That Targeted Counties Albany, New York, is the latest unit of local government hit with ransomware in recent weeks, following similar attacks reported in Georgia and North Carolina that crippled government IT systems and disrupted service for local residents.

Government 235

Government Ransomware IT 235

Krebs on Security

MAY 16, 2023

A Russian man identified by KrebsOnSecurity in January 2022 as a prolific and vocal member of several top ransomware groups was the subject of two indictments unsealed by the Justice Department today. Previous reporting here revealed that Matveev’s alter egos included “ Orange, ” the founder of the RAMP ransomware forum.

Ransomware 241

Ransomware Access Marketing Government 241

Data Breach Today

OCTOBER 21, 2021

Big Game Hunting Is Out and 'Mid Game Hunting' Is In, Coveware Warns When a business, government agency or other organization hit by ransomware opted to pay a ransom to its attacker in Q3, the average payment was $140,000, reports ransomware incident response firm Coveware.

Ransomware 322

Ransomware Government IT 322

Data Breach Today

DECEMBER 6, 2022

Government Agencies and Private Sector Affected by Attack on IT Sercices Provider A ransomware attack on a New Zealand third party managed IT service provider impacted several government agencies across the country – including the Ministry of Justice and the national health authority.

Ransomware 236

Ransomware Government IT 236

Data Breach Today

JUNE 1, 2022

500,000 Euros Budgeted to Restore Affected Systems, Boost Cybersecurity In the aftermath of the BlackCat ransomware attack on May 24, 2022, that "severely affected" government services in Carinthia, the Austrian state has budgeted 500,000 euros to restore services and boost its cybersecurity and reinstated its passport issuance system, which was affected (..)

Ransomware 281

Ransomware Cybersecurity Government IT 281

Data Breach Today

SEPTEMBER 2, 2022

SERNAC Struggling to Recover From Ongoing Attack; No Other Agencies Affected Chile's national consumer protection agency was hit by a ransomware attack affecting online services and containing indicators connecting the malware with the Conti ransomware-as-a-service group.

Ransomware 243

Ransomware Government 243

Data Breach Today

JULY 14, 2021

Former Head of GCHQ Highlights Need for Getting Basics Right, Plus Government Action Ransomware-wielding criminals continue to find innovative new ways to extort victims, develop technically and sidestep skills shortages by delivering ransomware as a service, said Robert Hannigan, the former head of U.K.

Ransomware 293

Ransomware Government 293

Data Breach Today

OCTOBER 24, 2022

Cybercrime Gang Wields Phishing Emails and Proficiency for VMware Environments Beware ransomware and data extortion shakedowns that trace to a cybercrime gang called Daixin Team, which is especially targeting the healthcare sector, as well as wielding phishing emails and a proficiency with VMware server environments, warns a new U.S.

Ransomware 239

Ransomware Phishing Security Cybersecurity 239

Data Breach Today

OCTOBER 14, 2021

New Criminal Penalties, Assistance to Victims in the Ransomware Action Plan Australia plans to require businesses with more than $10 million in revenue to report ransomware attacks to the government, part of a comprehensive strategy to fight the attacks that also includes new criminal penalties and assistance to victims.

Ransomware 273

Ransomware Government 273

Data Breach Today

NOVEMBER 18, 2020

Learning From Difficult Recoveries and Advice in Government Alerts As ransomware attacks on the healthcare sector continue to surge, entities should heed the lessons emerging from these incidents as well as the advice provided in alerts from government agencies, security experts say.

Ransomware 326

Ransomware Government Security 326

Security Affairs

APRIL 21, 2024

Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments. Like other ransomware gangs, the group has developed a Linux encryptor to target VMware ESXi servers. It was this first time that the operators adopted this tactic.

Ransomware 94

Ransomware Encryption Education Phishing 94

Data Breach Today

MAY 14, 2019

Yet These Victims Are Less Likely to Pay Any Ransom, Recorded Future Finds Over the past two years, the number of ransomware attacks against state and local government agencies has increased. But at the same time, these victims are paying less to attackers.

Government 181

Government Ransomware 181

Data Breach Today

SEPTEMBER 24, 2021

Security Experts on Vulnerabilities, Prevention Steps for State Governments The ransomware attack on Tamil Nadu's Public Department puts the spotlight on the preparedness to identify and stave off attacks.

Ransomware 282

Ransomware Government Security 282

Data Breach Today

OCTOBER 22, 2021

The latest edition of the ISMG Security Report features an analysis of whether businesses are stepping up their ransomware defenses in response to several warnings released by the U.S. governments highlighting the threat posed to infrastructure. Also featured are the Thingiverse data breach and airline fraud trends.

Ransomware 287

Ransomware Data breaches Government Security 287

Data Breach Today

MARCH 8, 2024

As Ransomware Disruption Mounts, More Experts Seek Path to Banning Payments As ransomware groups are causing massive damage and disruption and showing no signs of stopping, cybersecurity policy expert Ciaran Martin said it's time for governments to start asking tough questions and "figure out how to make a ransomware payments ban work."

Ransomware 311

Ransomware Cybersecurity Government IT 311

Krebs on Security

AUGUST 19, 2021

Criminal hackers will try almost anything to get inside a profitable enterprise and secure a million-dollar payday from a ransomware infection. ” This attacker’s approach may seem fairly amateur, but it would be a mistake to dismiss the threat from West African cybercriminals dabbling in ransomware. ” Image: Sophos.

Ransomware 355

Ransomware Access Phishing Encryption 355

Data Breach Today

AUGUST 5, 2022

Also: BEC Attack Headaches and Inside the Nomad Bridge Hack In the latest weekly update, four editors at Information Security Media Group discuss key takeaways from ISMG's recent Government Summit, how hackers siphoned nearly $200 million from cryptocurrency bridge Nomad and how midsized businesses are the new frontier for ransomware.

Ransomware 260

Ransomware Information Security Government Security 260

Data Breach Today

JUNE 15, 2023

government. Also, CISA and its global peers crowned LockBit the world's top ransomware threat, North Korean hackers copied a popular South Korean web portal, and an impersonation campaign used SEO techniques to target top brands.

Government 144

Government Ransomware IT 144

Data Breach Today

OCTOBER 5, 2021

Head of NSA, Cyber Command Says US Will Continue to Battle Ransomware for Years Some of the highest-ranking cybersecurity officials in the U.S. government discussed the pervasive threat of ransomware on Tuesday, likening it to a clear issue of national security with the ability to inflict measurable damage on major world powers.

Ransomware 301

Ransomware Cybersecurity Government Security 301

Data Breach Today

MAY 20, 2022

Rapid7's Jen Ellis Details Cross-Government Response, Impact of Russia-Ukraine War When Colonial Pipeline suffered an outage in May 2021 as a result of an attack by the DarkSide crime syndicate, numerous governments changed their approach to ransomware and began treating it as a national security threat, says Rapid7's Jen Ellis.

Ransomware 248

Ransomware Government Security IT 248

Data Breach Today

JUNE 1, 2021

Experts Say Ransomware Hasn't Slowed Down Since Colonial Pipeline The White House says on Tuesday it has contacted Russia regarding the ransomware attack against JBS SA, the multinational meat producer. government after Colonial Pipeline, but experts say the ransomware scourge is clearly business as usual.

Ransomware 259

Ransomware Government IT 259

Krebs on Security

MAY 14, 2021

The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. The DarkSide message includes passages apparently penned by a leader of the REvil ransomware-as-a-service platform.

Ransomware 364

Ransomware Education Communications Access 364

IT Governance

OCTOBER 27, 2022

This week, we discuss the new mechanism for transferring EU residents’ personal data to the US, the first GDPR Data Protection Seal, a new ransomware attack targeting Ukraine and its allies, and the first layer in a defence-in-depth approach to cyber security: detection.

Data Privacy 115

Data Privacy Ransomware Government Privacy 115