Dark Reading

JULY 14, 2021

Hit by ransomware? These missteps can take a bad scenario and make it even worse

Ransomware 82

Ransomware IT 82

Krebs on Security

MAY 14, 2021

The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. “Ransomware has gathered a critical mass of nonsense, b t, hype, and fuss around it.

Ransomware 286

Ransomware Education Communications Access 286

Krebs on Security

MAY 11, 2021

The FBI confirmed this week that a relatively new ransomware group known as DarkSide is responsible for an attack that caused Colonial Pipeline to shut down 5,550 miles of pipe , stranding countless barrels of gasoline, diesel and jet fuel on the Gulf Coast. The DarkSide ransomware note.

Ransomware 285

Ransomware Encryption Education Data breaches 285

Threatpost

JULY 5, 2021

Matt Bromiley, senior consultant with Mandiant Managed Defense, discusses the top tricks and tips for protecting enterprise environments from ransomware.

Ransomware 114

Ransomware 114

Krebs on Security

APRIL 29, 2021

Some of the world’s top tech firms are backing a new industry task force focused on disrupting cybercriminal ransomware gangs by limiting their ability to get paid, and targeting the individuals and finances of the organized thieves behind these crimes.

Ransomware 169

Ransomware Insurance Sales Government 169

Krebs on Security

NOVEMBER 10, 2020

It’s bad enough that many ransomware gangs now have blogs where they publish data stolen from companies that refuse to make an extortion payment. Now, one crime group has started using hacked Facebook accounts to run ads publicly pressuring their ransomware victims into paying up.

Ransomware 264

Ransomware IT Security 264

Krebs on Security

MAY 11, 2020

Diebold Nixdorf , a major provider of automatic teller machines (ATMs) and payment technology to banks and retailers, recently suffered a ransomware attack that disrupted some operations. Ransomware BleepingComputer Diebold Nixdorf Emsisoft Fabian Wosar Lawrence Abrams ProLock ransomware

Ransomware 271

Ransomware Retail Sales Data breaches 271

Data Breach Today

JULY 23, 2021

As ransomware continues to pummel organizations, if they do get hit, then from an incident response standpoint, what are the essential steps they should take to smooth their recovery? Veteran ransomware-battler Fabian Wosar, CTO of Emsisoft, shares essential steps and guidance for recovery

Ransomware 200

Ransomware 200

Security Affairs

MAY 18, 2021

Researchers at Tesorion released a decryptor for Judge ransomware that also decrypts files encrypted by the NoCry ransomware. In January this year, we published a blog post on our analysis of the Judge ransomware. SecurityAffairs – hacking, NoCry ransomware).

Ransomware 111

Ransomware Encryption Cybersecurity IT 111

Krebs on Security

JUNE 16, 2021

Authorities in Ukraine this week charged six people alleged to be part of the CLOP ransomware group , a cybercriminal gang said to have extorted more than half a billion dollars from victims.

Ransomware 185

Ransomware Encryption Cybersecurity Access 185

Data Breach Today

JULY 16, 2021

Palo Alto Networks Report Describes Tactics of Group Leveraging Open-Source Tools The gang behind the ransomware strain known as Mespinoza, aka PYSA, is targeting manufacturers, schools and others, mainly in the U.S.

Ransomware 207

Ransomware Manufacturing 207

Krebs on Security

JUNE 2, 2020

The criminal group behind the REvil ransomware enterprise has begun auctioning off sensitive data stolen from companies hit by its malicious software. A partial screenshot from the REvil ransomware group’s Dark Web blog.

Ransomware 232

Ransomware Agriculture Encryption Education 232

Schneier on Security

MAY 21, 2021

In the first, hackers encrypt data with ransomware A and then re-encrypt that data with ransomware B. Uncategorized encryption extortion malware ransomwareThis seems to be a new tactic : Emsisoft has identified two distinct tactics.

Encryption 102

Encryption Ransomware IT 102

Schneier on Security

MAY 14, 2021

Modern ransomware has two dimensions: pay to get your data back, and pay not to have your data dumped on the Internet. The Colonial Pipeline is another current high-profile ransomware victim. Uncategorized cryptocurrency cybercrime doxing police ransomware

Ransomware 113

Ransomware Government Access Security 113

Krebs on Security

JULY 1, 2020

We’ve seen an ugly trend recently of tech news stories and cybersecurity firms trumpeting claims of ransomware attacks on companies large and small, apparently based on little more than the say-so of the ransomware gangs themselves. Ransomware ransomware

Ransomware 213

Ransomware Encryption Communications Cybersecurity 213

Data Breach Today

MAY 10, 2021

Report: DarkSide Ransomware Gang Infected Fuel Supplier Colonial Pipeline Company has restored smaller pipelines that ship fuels to the U.S. East Coast after a ransomware incident, but its larger ones are still offline as it assesses safety.

Ransomware 212

Ransomware IT 212

Data Breach Today

JUNE 4, 2021

Biden Orders Federal Ransomware Task Force to Coordinate Federal Investigations The White House has written to business leaders, urging them to prioritize having robust ransomware defenses in place.

Ransomware 195

Ransomware 195

Data Breach Today

JUNE 1, 2021

Experts Say Ransomware Hasn't Slowed Down Since Colonial Pipeline The White House says on Tuesday it has contacted Russia regarding the ransomware attack against JBS SA, the multinational meat producer.

Ransomware 197

Ransomware Government IT 197

Data Breach Today

APRIL 16, 2021

Babuk Ransomware Gang Reportedly Posted Exfiltrated Team Data The NBA's Houston Rockets reported on Wednesday that the organization was recently hit with a ransomware attack for which the Babuk cyber gang has taken responsibility.

Ransomware 177

Ransomware 177

Krebs on Security

JANUARY 27, 2021

and Bulgarian authorities this week seized the darkweb site used by the NetWalker ransomware cybercrime group to publish data stolen from its victims. The victim shaming site maintained by the NetWalker ransomware group, after being seized by authorities this week.

Ransomware 202

Ransomware Encryption Access Cloud 202

Data Breach Today

JULY 2, 2021

Affiliate-Driven Approach and Regular Malware Refinements Are Key, Experts Say REvil, aka Sodinokibi, is one of today's most notorious - and profitable - ransomware operations, driven by highly skilled affiliates who share profits with the operators.

Ransomware 207

Ransomware IT 207

Krebs on Security

MAY 6, 2020

Fresenius , Europe’s largest private hospital operator and a major provider of dialysis products and services that are in such high demand thanks to the COVID-19 pandemic, has been hit in a ransomware cyber attack on its technology systems.

Ransomware 266

Ransomware Healthcare Manufacturing Data breaches 266

Data Breach Today

JUNE 18, 2021

The latest edition of the ISMG Security Report features an analysis of the Avaddon ransomware gang's retirement and the crackdown on the Clop ransomware gang in Ukraine. Also featured: Bitcoin as ally in the ransomware battle; strengthening U.S.

Ransomware 148

Ransomware Cybersecurity Security 148

Security Affairs

JULY 18, 2021

BleepingComputer became aware that the recent wave of attacks targeting vulnerable SonicWall devices was carried out by HelloKitty ransomware operators. firmware in an imminent ransomware campaign using stolen credentials.” SecurityAffairs – hacking, HelloKitty ransomware).

Ransomware 79

Ransomware Access Risk Cybersecurity 79

Data Breach Today

MAY 11, 2021

Affiliate-Driven Ransomware-as-a-Service Operations Keep Generating Big Profits "It's not personal. It's strictly business."

Ransomware 218

Ransomware IT 218

Data Breach Today

JANUARY 14, 2021

Researchers Analyze the Severe Threat the Malware Poses Conti ransomware, which emerged eight months ago, poses a severe threat, according to Cybereason's Nocturnus Team, which offers an in-depth analysis of how the malware works

Ransomware 184

Ransomware 184

Schneier on Security

FEBRUARY 10, 2021

Analyzing cryptocurrency data, a research group has estimated a lower-bound on 2020 ransomware revenue: $350 million, four times more than in 2019. Ransomware is now an established worldwide business. Uncategorized crime cryptocurrency ransomware

Ransomware 83

Ransomware 83

Data Breach Today

JULY 10, 2021

The Agency Will Elevate the Role of National Central Bureaus to Fight Cybercrimes Interpol has announced that it will boost the role of country-specific National Central Bureaus to fight ransomware and other cybercrimes.

Ransomware 160

Ransomware IT 160

Krebs on Security

SEPTEMBER 23, 2020

The company declined to discuss the exact cause of the disruption, but their response so far is straight out of the playbook for responding to ransomware incidents. Ransomware ransomware Tyler Technologies tylertech.com

Ransomware 234

Ransomware Marketing Government Access 234

Data Breach Today

MARCH 1, 2021

Prolific Ransomware Can 'Spread Automatically' Inside Networks, CERT-FR Warns Prolific Ryuk ransomware has a new trick up its sleeve. "A

Ransomware 247

Ransomware Government IT 247

Data Breach Today

JULY 8, 2021

But experts say disrupting ransomware will take more than diplomacy or even using offensive cyber operations to target criminal infrastructure

Ransomware 186

Ransomware IT 186

Data Breach Today

MAY 24, 2021

Microsoft Says Spam Campaign Uses Updated Variant Microsoft is warning about a spam campaign that uses an updated variant of Java-based StrRAT malware that steals confidential data while disguising itself as a ransomware infection even though it does not actually encrypt data

Ransomware 145

Ransomware Encryption IT 145

Data Breach Today

SEPTEMBER 9, 2020

Health Data Breach Tally Shows Impact of Vendor Breach The May ransomware attack on cloud-based fundraising database management vendor Blackbaud continues to rack up victims in the healthcare sector.

Ransomware 250

Ransomware Data breaches Cloud 250

Data Breach Today

JULY 14, 2021

Former Head of GCHQ Highlights Need for Getting Basics Right, Plus Government Action Ransomware-wielding criminals continue to find innovative new ways to extort victims, develop technically and sidestep skills shortages by delivering ransomware as a service, said Robert Hannigan, the former head of U.K.

Ransomware 145

Ransomware Government 145

Krebs on Security

MARCH 2, 2021

PrismHR , a company that sells technology used by other firms to help more than 80,000 small businesses manage payroll, benefits, and human resources, has suffered what appears to be an ongoing ransomware attack that is disrupting many of its services.

Ransomware 180

Ransomware Insurance Cloud Encryption 180

Data Breach Today

MAY 21, 2021

Janine Darling, the founder and CEO of STASH Global, discusses the pervasive and persistent problem of ransomware and how to mitigate the risks

Risk 151

Risk Ransomware 151

Krebs on Security

OCTOBER 1, 2020

Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. ” Ransomware Cryptolocker Eversheds Sutherland Evgeniy Mikhailovich Bogachev Evil Corp.

Ransomware 263

Ransomware Insurance Risk Communications 263

Data Breach Today

JULY 7, 2020

Data-Leaking Extortionists' Revised Playbook Goes Way Beyond Ransomware Ransomware-wielding attackers continue to pummel organizations.

Data breaches 218

Data breaches Ransomware 218

Data Breach Today

JULY 9, 2021

This edition of the ISMG Security Report features three segments on battling ransomware.

Ransomware 133

Ransomware Risk Security IT 133

Data Breach Today

JULY 16, 2021

This edition of the ISMG Security Report features an analysis of comments from the former head of Britain's GCHQ intelligence agency, Robert Hannigan, on the changing nature of ransomware attacks.

Ransomware 136

Ransomware Security 136