Maze ransomware operators stole data from US military contractor Westech

Security Affairs

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. MAZE ransomware operators have stolen sensitive data from Westech, a company that supports the US Minuteman III nuclear deterrent.

U.S. Nuclear Contractor Hit with Maze Ransomware, Data Leaked

Threatpost

Westech International provides maintenance for the Minuteman III nuclear-missile program and runs programs for multiple branches of the military.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Maze Ransomware operators hacked the Xerox Corporation

Security Affairs

Xerox Corporation is the last victim of the Maze ransomware operators, hackers have encrypted its files and threaten of releasing them. Maze ransomware operators have breached the systems of the Xerox Corporation and stolen files before encrypting them.

A new piece of Ryuk Stealer targets government, military and finance sectors

Security Affairs

A new piece of the Ryuk malware has been improved to steal confidential files related to the military, government, financial statements, and banking. It is not clear if the malware was developed by the threat actors behind Ryuk Ransomware for data exfiltration.

Malware Linked to Ryuk Targets Financial & Military Data

Dark Reading

A newly discovered campaign, packing traces of Ryuk ransomware, aims to steal confidential information

Maze ransomware gang hacked M&A firm Threadstone Advisors LLP

Security Affairs

Maze ransomware operators hit Threadstone Advisors LLP, a US corporate advisory firm specialising in mergers ‘n’ acquisitions. Previous victims of the ransomware gang include IT services firms Cognizant and Conduent.

Maze ransomware operators claim to have breached LG Electronics

Security Affairs

Maze ransomware operators claims to have breached the South Korean multinational electronics company LG Electronics. Researchers at Cyble discovered a data leak of LG Electronics published by Maze ransomware operators. SecurityAffairs – LG Electronics, Maze ransomware).

Texas Government Agencies Hit by Ransomware

Adam Levin

The local governments and agencies from twenty-three Texas towns were hit by a coordinated ransomware campaign last week. . Although the DIR has released few details about the ransomware campaign, they did confirm that it originated from a single “threat actor.”

Maze Ransomware gang breached the US chipmaker MaxLinear

Security Affairs

system-on-chip maker MaxLinear disclosed a security incident, Maze ransomware operators infected some of its computing systems in May. ” Recently Maze ransomware operators hit Threadstone Advisors LLP, a US corporate advisory firm specialising in mergers ‘n’ acquisitions.

Healthcare giant Magellan Health discloses data breach after ransomware attack

Security Affairs

Magellan Health, a for-profit managed health care and insurance firm, was the victim of a ransomware attack. “Magellan was recently the victim of a criminal ransomware attack. “On April 11, 2020, Magellan discovered it was targeted by a ransomware attack.

US Govn contractor Electronic Warfare Associates infected with Ryuk ransomware

Security Affairs

The popular US government contractor Electronic Warfare Associates (EWA) has suffered a ransomware attack , the news was reported by ZDNet. L ast week, the US government contractor Electronic Warfare Associates (EWA) has suffered a ransomware attack that also infected its web servers.

At least 23 Texas local governments targeted by coordinated ransomware attacks

Security Affairs

At least 23 local governments were impacted by a wave of ransomware attacks that according to the experts are the result of a coordinated effort. Texas is the victim of an ongoing wave of ransomware attacks that are targeting local governments.

Military documents about MQ-9 Reaper drone leaked on dark web

The Security Ledger

Hackers have put up for sale on the dark web sensitive military documents, some associated with the U.S. military’s MQ-9 Reaper drone aircraft, one of its most lethal and technologically advanced drones, security research firm Recorded Future recently discovered. » Related Stories Fitness apps: Good for your health, not so much for military security Evasive new botnet can take over enterprise devices to steal data, spread ransomware U.S.

Fitness apps: Good for your health, not so much for military security

The Security Ledger

Fitness apps are proving to be a lot less beneficial to military security than they are for military fitness. That after researchers in the Netherlands discovered that data from the Polar fitness app revealed the homes and habits of those exercising in clandestine locations around the world, including intelligence agencies, military bases, nuclear.

Canadian restaurant chain Recipe suffered a network outage, is it a ransomware attack?

Security Affairs

A number of systems have been taken offline, and all the locations infected by the ransomware were isolated from the Internet. ” Recipe Unlimited denies it was victim of a ransomware attac, because it conducts regular system backups to promptly mitigate such kind of attacks.

DoppelPaymer crew leaked internal confidential documents belonging to aerospace companies

Security Affairs

The gang behind the DoppelPaymer ransomware has stolen internal confidential documents belonging to some of the largest aerospace companies in the world from the industrial contractor Visser Precision. SecurityAffairs – DoppelPaymer ransomware, malware).

NotPetya: From Russian Intelligence, With Love

Data Breach Today

CIA Reportedly Believes Russian Military Launched Wiper Disguised as Ransomware The CIA has attributed last year's outbreak of NotPetya wiper malware to Russia's GRU military intelligence unit, The Washington Post reports.

Dutch and British Governments Slam Russia for Cyberattacks

Data Breach Today

Officials Attribute BadRabbit Ransomware, WADA Breach to APT28, aka 'Fancy Bear' The British and Dutch governments have issued a strong rebuke to the Russian government over an ongoing series of "Fancy Bear" hack attacks that they say were launched by Russia's military intelligence agency Russian Main Intelligence Directorate, aka the GRU.

Cybersecurity Insurance Not Paying for NotPetya Losses

Schneier on Security

and other governments labeled the NotPetya attack as an action by the Russian military their claim was excluded under the "hostile or warlike action in time of peace or war" exemption. cybersecurity hacking insurance malware ransomware russia war

Cyberattack Downs Pensacola’s City Systems

Threatpost

military base Naval Air Station Pensacola rocked the city. Critical Infrastructure Government Hacks Malware cyberattack malware pensacola pensacola cyberattack ransom ransomwareThe cyberattack comes days after a shooting at U.S.

List of data breaches and cyber attacks in March 2020 – 832 million records breached

IT Governance

Ransomware. London-based clinical pharmacology testing firm recovers swiftly from Maze ransomware (unknown). Minnesota-based Community Development Bank struck by ransomware (unknown). Prince Edward Island notifies patients of ransomware attack (unknown).

Operation North Star – North-Korea hackers targeted US defense and aerospace companies

Security Affairs

The threat actors’ job postings messages were crafted to target the following specific US defense programs and groups: F-22 Fighter Jet Program Defense, Space and Security (DSS) Photovoltaics for space solar cells Aeronautics Integrated Fighter Group Military aircraft modernization programs.

Security Affairs newsletter Round 271

Security Affairs

Million ransom to decrypt files after Ransomware attack Maze Ransomware operators hacked the Xerox Corporation Microsoft releases emergency security updates to fix Windows codecs New EvilQuest ransomware targets macOS users The U.S.

Security Affairs newsletter Round 269

Security Affairs

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

Security Affairs newsletter Round 253

Security Affairs

Reading Municipal Light Department, an electric utility in Massachusetts, hit by ransomware. NRC Health health care company hit with ransomware. Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates. A new round of the weekly newsletter arrived!

Q&A: Sophos poll shows how attackers are taking advantage of cloud migration to wreak havoc

The Last Watchdog

Furthermore, 50% encountered ransomware and other malware; 29% reported incidents of data getting exposed; 25% had accounts compromised; and 17% dealt with incidents of crypto-jacking. Digital commerce from day one has revolved around companies bulling forward to take full advantage of wondrous decentralized, anonymous characteristics of the Internet, which began a military-academic experiment. LW: Shifting gears a bit, what’s going on with ransomware?

Cloud 123

Security Affairs newsletter Round 256

Security Affairs

Experts warn of a new strain of ransomware, the PXJ Ransomware. Attackers use a new CoronaVirus Ransomware to cover Kpot Infostealer infections. Most ransomware attacks take place outside the working hours. CERT France – Pysa ransomware is targeting local governments.

List of data breaches and cyber attack in March 2019 – 2.1 billion records leaked

IT Governance

Chinese hackers target universities in pursuit of maritime military secrets (unknown). Ransomware. Wolverine Solutions still notifying patients more than five months after ransomware attack (1.2 More than a million Israeli websites hit with ransomware (unknown).

UK, US and its allies blame Russia’s GRU for 2019 cyber-attacks on Georgia

Security Affairs

The governments of Britain and the US declared that Russia’s military intelligence service GRU is behind the massive cyber attack that hit Georgia during 2019. The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Security Affairs newsletter Round 264

Security Affairs

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

Security Affairs newsletter Round 244

Security Affairs

A bug in the decryptor for the Ryuk ransomware could cause data loss. City of Pensacola hit by a cyberattack few days after military base shooting. Snatch Ransomware force systems to Windows Safe Mode to bypass security solutions. A new round of the weekly newsletter arrived!

£60 million in recovery costs for Norsk Hydro after refusing ransom demand

IT Governance

Earlier this month, Norsk Hydro published its first quarterly report since it fell victim to a devastating ransomware attack in March. On 19 March 2019, Norsk Hydro’s systems were infected with the LockerGoga ransomware. TrendMicro’s analysis into the ransomware found that it was the same system administration tool abused by the likes of SOREBRECT and Bad Rabbit. This means there’s a chance that the network was compromised before the attackers planted the ransomware.

Security Affairs newsletter Round 221 – News of the week

Security Affairs

Germany and the Netherlands agreded to build TEN, the first ever joint military internet. Germany and the Netherlands agreed to build TEN, the first ever joint military internet. LooCipher: The New Infernal Ransomware. A new round of the weekly SecurityAffairs newsletter arrived!

Security Affairs newsletter Round 249

Security Affairs

A new piece of Ryuk Stealer targets government, military and finance sectors. A new piece of Snake Ransomware targets ICS processes. US Govn contractor Electronic Warfare Associates infected with Ryuk ransomware. A new round of the weekly newsletter arrived!

Security Affairs newsletter Round 237

Security Affairs

Autoclerk travel reservations platform data leak also impacts US Government and military. German firm Pilz still down a week after getting infected with ransomware. Ransomware attack hit the City of Johannesburg municipality. A new round of the weekly newsletter arrived!

MY TAKE: How advanced automation of threat intel sharing has quickened incident response

The Last Watchdog

military complex, who got frustrated by their inability to extract actionable intel from a deluge of threat feeds. As companies get better at centralized sharing and automated detection and response, the effectiveness of today’s leading-edge DDoS, ransomware and APT attacks ought to decline.

Security Affairs newsletter Round 216 – News of the week

Security Affairs

Shade Ransomware is very active outside of Russia and targets more English-speaking victims. Russian military plans to replace Windows with Astra Linux. A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition.

NEW TECH: CyCognito employs offensive bot network to put companies a step a head of attackers

The Last Watchdog

The company was launched in Tel Aviv in 2017 by a couple of former Israeli military cyber ops attack specialists, Rob Gurzeev and Dima Potekhin. When it comes to defending their networks, most companies have had it drilled into them, by now, that it’s essential to erect layered defenses.

Security Affairs newsletter Round 171 – News of the week

Security Affairs

An RDP access to internal machine goes for $10 on the dark web. · Hacker offered for sale US Military Reaper Drone documents for $200. · Hackers steal $13.5 Democrats. · A few days after discovery of GandCrab ransomware ver 4.0,

MDM 57

Malware-based attacks disrupted operations of Rheinmetall AG and Defence Construction Canada

Security Affairs

German Rheinmetall AG is a market leader in the supply of military technology, in 2019 the group generated sales of $6.9 A series of cyber attacks hit the defense contractors Rheinmetall AG and Defence Construction Canada (DCC) causing the disruption of their information technology systems.