Texas Hospital Hit With Dharma Ransomware Attack

Data Breach Today

Altus Baytown Hospital Among Latest Healthcare Cyberattack Victims An attack on Altus Baytown Hospital in Texas is the latest ransomware incident reported to federal regulators as a health data breach. What other major ransomware incidents are impacting the healthcare sector

Two Iranians Charged in SamSam Ransomware Attacks

Data Breach Today

US Prosecutors Allege Pair Targeted More Than 200 Victims, Including Cities, Hospitals A federal grand jury has indicted two Iranians for allegedly waging SamSam ransomware attacks on more than 200 entities, including Atlanta and other municipalities and six healthcare organizations.

Crypto-Locking Kraken Ransomware Looms Larger

Data Breach Today

Ransomware-as-a-Service Operation Joins Forces With Fallout Exploit Kit A slick ransomware-as-a-service operation called Kraken Cryptor has begun leveraging the Fallout exploit kit to help it score fresh victims, researchers from McAfee and Recorded Future warn.

Texas Hospital Catches Dharma Ransomware Infection

Data Breach Today

Altus Baytown Hospital Among Latest Healthcare Cyberattack Victims An attack on Altus Baytown Hospital in Texas is the latest ransomware incident reported to federal regulators as a health data breach. What other major ransomware incidents are impacting the healthcare sector

Phishing, Ransomware Attacks Continue to Menace Healthcare

Data Breach Today

Arizona Cancer Center a Recent Victim of Major Phishing Attack As the year winds down, phishing and ransomware attacks continue to plague the healthcare sector, as illustrated by recent breach reports.

GandCrab Ransomware: Cat-and-Mouse Game Continues

Data Breach Today

Free Decryptor Combats 'Aggressive' Ransomware-as-a-Service Provider A new, free decryptor has been released for "aggressive" crypto-locking ransomware called GandCrab. Researchers say GandCrab has come to dominate the ransomware-as-a-service market, earning its development team an estimated $120,000 per month

Ransomware Keeps Ringing in Profits for Cybercrime Rings

Data Breach Today

SamSam, Dharma, GandCrab and Global Imposter Make for Ongoing Bitcoin Paydays Criminals wielding crypto-locking ransomware - especially Dharma/CrySiS, GandCrab and Global Imposter, but also SamSam - continue to attack.

SamSam ransomware continues to make damages. Call it targeted Ransomware

Security Affairs

According to the Symantec experts, the group behind the SamSam ransomware has continued to launch attacks against organizations during 2018. The SamSam ransomware is an old threat, attacks were observed in 2015 and the list of victims is long, many of them belong to the healthcare industry.

Obama-Themed Ransomware Also Mines for Monero

Data Breach Today

More Proof Cryptojacking Is Thriving: Crypto-Locking Malware Doubles as Miner Ransomware creators, having already created "themes" for their crypto-locking malware ranging from Pokemon and horror movies to princesses and Donald Trump, have now debuted "Barack Obama" ransomware.

Mining 166

Cryptojacking Displaces Ransomware as Top Malware Threat

Data Breach Today

Criminals' Quest for Cryptocurrency Continues If 2017 was the year of ransomware innovation, 2018 is well on its way to being known as the year of cryptocurrency mining malware. But while ransomware campaigns may be down, they're far from out

Ransomware Crypto-Locks Port of San Diego IT Systems

Data Breach Today

Port Remains Open and Accessible to Ships, Officials Say Several days after the Port of San Diego was hit by a crypto-locking ransomware attack, incident response efforts remain underway and many port systems remain offline.

Fighting Ransomware

Schneier on Security

No More Ransom is a central repository of keys and applications for ransomware, so people can recover their data without paying. It's not complete, of course, but is pretty good against older strains of ransomware. encryption keys ransomware

Hospital Diverts Ambulances Due to Ransomware Attack

Data Breach Today

Latest Cyber Incident Spotlights Impact on Patient Care A ransomware attack that forced a Missouri medical center to divert ambulances carrying trauma and stroke patients to other facilities serves as reminder of the impact cyberattacks can have on healthcare delivery.

New strain of Ransomware infected over 100,000 PCs in China

Security Affairs

It is interesting to note that this ransomware requests victims to pay 110 yuan (nearly Euro 14) in ransom through WeChat Pay. “On December 1, the first ransomware that demanded the “WeChat payment” ransom broke out in the country.

Scotland's Arran Brewery Slammed by Dharma Bip Ransomware

Data Breach Today

Ransomware Crypto-Locked via Domain Controller, Complicating Restoration Scotland's Arran Brewery fell victim to a Dharma Bip ransomware attack that infected its Windows domain controller and crypto-locked files and local backups, leading to the loss of three months' worth of sales data.

Ransomware attack disrupted emergency rooms at Ohio Hospital System

Security Affairs

Ransomware attacks continue to threaten the healthcare industry, the last incident in order of time impacted the Ohio Hospital System. The good news is that no data was exposed due to the ransomware attack. Security Affairs – ransomware, Ohio Hospital System).

Responding to Ransomware Attacks: Critical Elements

Data Breach Today

Experts Provide Tips for Smoother Recoveries A Canadian home healthcare provider says it was able to recover from a recent ransomware attack without paying a ransom, but it had to revert to manual processes for several days.

Ransomware Outlook: 542 Crypto-Lockers and Counting

Data Breach Today

Crypto-Lockers Remain Serious Threat Despite Recent Attack Volume Decline After spiking in 2017, the volume of attacks involving ransomware has since declined, but the malware still remains a potent threat.

Crabby Ransomware Nests In Compromised Websites

Data Breach Today

Cisco Warns of Dangers of Running Vulnerable Web Applications The Gandcrab ransomware has been a moving target. Since it was discovered in January, it quickly became one of the most widely distributed file-encrypting malware programs.

Shipping Giant Cosco Hit by Ransomware Attack

Data Breach Today

Networks in 8 North and South America Countries Remain Offline A "local network breakdown" - reportedly caused by a ransomware infection - has led shipping giant Cosco to shut down networks for its offices in eight North America and South America countries while it scrubs and restores systems.

Alert: 'Ryuk' Ransomware Attacks the Latest Threat

Data Breach Today

Variant of Hermes Poses Major Risks, HHS Warns Organizations should be on guard for an attacks involving apparent variant of Hermes ransomware - dubbed Ryuk - that attempts to encrypt network resources.

Atlanta's Ransomware Cleanup Costs Hit $2.6 Million

Data Breach Today

Money Would Have Been Better Spent on Prevention, Experts Say The city of Atlanta's ransomware outbreak cleanup and response tab has hit $2.6 million, after a March attack froze corporate servers, employees' PCs and resident-facing portals.

U.S. DoJ charges Iranian duo over SamSam Ransomware activity

Security Affairs

DoJ charges two Iranian men over their alleged role in creating and spreading the infamous SamSam ransomware. Two Iranian men, Faramarz Shahi Savandi (34) and Mohammad Mehdi Shah Mansouri (27) have been charged by DoJ for their role in creating and distributing the dreaded SamSam ransomware.

Sextortion Emails Force Payment via GandCrab Ransomware

Threatpost

In reality, the link executes ransomware. Malware Web Security email Extortion GandCrab ransomware scam sextortionEmails say they contain a link with screenshots of victims' compromising activity.

LabCorp Still Recovering From Ransomware Attack

Data Breach Today

SamSam, Other Ransomware Still Menacing Healthcare Sector Medical testing laboratory firm LabCorp is still working to fully recover systems functionality nearly a week after a cyberattack that the company now claims involved "a new variant" of ransomware.

Eye Clinic Reports Quick Recovery from Ransomware Attack

Data Breach Today

Despite Fast Rebound, Entity Still Reporting Data Breach An Iowa eye clinic and its affiliated surgery center recently recovered from a ransomware attack on their common systems within one day and without paying a ransom.

Ransomware, Leakware, Scareware… Oh My!

Thales Data Security

Because the never-ending battle against the evil forces of the dark web continues with regard to ransomware and its ghoulish close cousins – leakware and scareware. Actors on the dark web, hiding behind their dark masks of anonymity, continue to brew their devilish ransomware potions.

Ransomware Recovery: Don't Make Matters Worse

Data Breach Today

The Impact of Missteps Can Be Substantial A recent incident involving a chronic care management company spotlights how paying a ransom to recover decryption keys from ransomware attackers can put sensitive data at additional risk.

Kraken ransomware 2.0 is available through the RaaS model

Security Affairs

The author of the infamous Kraken ransomware has released a new version of the malicious code and launched a RaaS distribution program on the Dark Web. version is being advertised on an underground forum and is available through a ransomware-as-a-service (RaaS) model.

Recent Ransomware Incidents Serve Up Lessons

Data Breach Today

Experts Say Breaches Spotlight Business Associate Risks Two recent security incidents involving ransomware attacks on vendors serve as the latest reminders of the risks business associates pose to healthcare organizations.

Atlanta's Reported Ransomware Bill: Up to $17 Million

Data Breach Today

Experts released a free Decryption Tool for GandCrab ransomware

Security Affairs

Good news for the victims of the infamous GandCrab ransomware, security experts have created a decryption tool that allows them to decrypts files without paying the ransom. “This tool recovers files encrypted by GandCrab ransomware versions 1, 4 and 5.”

DHS and FBI published a joint alert on SamSam Ransomware

Security Affairs

The US Department of Homeland Security (DHS) and the FBI published a joint alert on the activity associated with the infamous SamSam ransomware. In March 2018, computer systems in the City of Atlanta were infected by ransomware, the cyber attack was confirmed by the City officials. The ransomware infection has caused the interruption of several city’s online services, including “various internal and customer-facing applications” used to pay bills or access court-related information.

HHS Warns of SamSam Ransomware Attacks

Data Breach Today

Organizations Hit So Far This Year The Department of Health and Human Services is warning the healthcare sector about ongoing attacks involving SamSam ransomware that have impacted at least eight U.S. At Least Eight U.S.

Eye Clinic Sees Quick Recovery from Ransomware Attack

Data Breach Today

Despite Fast Rebound, Entity Still Reporting Data Breach An Iowa eye clinic and its affiliated surgery center recently recovered from a ransomware attack on their common systems within one day and without paying a ransom.

Ransomware Payments: Where Do the Bitcoins Go?

Data Breach Today

Researchers Track the Flow of Ransoms Paid by Cerber, Locky and Other Victims Ransomware isn't an easy area to study.

Atlanta Ransomware Attack Freezes City Business

Data Breach Today

Damage Assessment Is Underway, But Backups Are in Place, Officials Say Ransomware has struck the city of Atlanta and frozen internal and customer-facing applications, hampering residents from paying bills or accessing court information.

Z-LAB Report – Analyzing the GandCrab v5 ransomware

Security Affairs

Experts at the Cybaze Z-Lab have analyzed the latest iteration of the infamous GandCrab ransomware, version 5.0. Malware researchers at Cybaze ZLab analyzed the latest version of the infamous GandCrab ransomware, version 5.0.

Iranian Nationals Charged for Atlanta Ransomware Attack

Dark Reading

The March attack used SamSam ransomware to infect 3,789 computers

Recent BA Ransomware Incidents Serve Up Lessons

Data Breach Today

Experts Say Breaches Spotlight Vendor Risks Two recent security incidents involving ransomware attacks on vendors serve as the latest reminders of the risks business associates pose to healthcare organizations.

WannaCry Ransomware attack costs £92 million

IT Governance

The Department of Health and Social Care has estimated that the WannaCry ransomware attack , which disrupted more than 80 trusts and hundreds of GP practices last year, cost £92 million. BreachReady Breaches and Hacks data breach Ransomware WannaCry

SamSam Ransomware Offers Volume Decryption Discount

Data Breach Today

Ransomware: Why Rapid Detection Is So Critical

Data Breach Today

Recent ransomware attacks against healthcare organizations and others demonstrate why rapid detection is critical to limiting the malware's damage, says cybersecurity expert Bill Dixon of Kroll