Expert insights. Personalized for you.
CISA Alert: Incident Led to Two-Day Shutdown A ransomware attack on a U.S. natural gas compression facility led to a two-day shutdown of operations, according to an alert from the Cybersecurity and Infrastructure Security Agency MORE
Separately, Texas City's Operations Disrupted by Crypto-Locking Ransomware Ransomware attacks continue, with the city of Del Rio, Texas, saying its operations have been disrupted by crypto-locking malware. MORE
A Colorado company that specializes in providing IT services to dental offices suffered a ransomware attack this week that is disrupting operations for more than 100 dentistry practices, KrebsOnSecurity has learned. MORE
Cybercrime Continues Despite Pandemic Intensifying As the COVID-19 pandemic intensifies, public health efforts are being complicated by ransomware attacks continuing to hit healthcare facilities that are not only handling cases but also running frontline virus-testing labs MORE
153 
Altus Baytown Hospital Among Latest Healthcare Cyberattack Victims An attack on Altus Baytown Hospital in Texas is the latest ransomware incident reported to federal regulators as a health data breach. What other major ransomware incidents are impacting the healthcare sector MORE
Cloud hosting provider iNSYNQ says it is trying to recover from a ransomware attack that shut down its network and has left customers unable to access their accounting data for the past three days. Data Breaches iNSYNQ ransomware attack MORE
Governor Describes 'Aggressive' Incident Response Efforts After a ransomware attack on Monday forced Louisiana's government to take several servers and websites offline to prevent the malware from spreading, state officials spent Tuesday restoring online services MORE
This edition of the ISMG Security Report features an analysis of the very latest ransomware trends. Also featured: Discussions of Microsoft's move to DNS over HTTPS and strategies for tackling IoT security challenges MORE
Synoptek , a California business that provides cloud hosting and IT management services to more than a thousand customer nationwide, suffered a ransomware attack this week that has disrupted operations for many of its clients, according to sources. Ransomware rEvil Sodinokibi Synoptek MORE
The cybercriminals behind the GandCrab ransomware-as-a-service (RaaS) offering recently announced they were closing up shop and retiring after having allegedly earned more than $2 billion in extortion payments from victims. MORE
WatchGuard's Corey Nachreiner on Threat Report's Top 3 Predictions New ransomware variants are targeting managed service and cloud service providers: This is one of the predictions made by WatchGuard Technologies for 2020. MORE
McAfee and Microsoft Analysts Review 'Ransomware as a Service' Trends Targeted ransomware attacks against enterprises and government agencies are likely to surge in the coming months as "ransomware as a service" continues to evolve into a lucrative model for cybercriminals, security experts interviewed at RSA 2020 warn. MORE
Sodinokibi and Globelmposter Gangs Target Larger Victims, Coveware Warns Ransomware continues to be a highly profitable cybercrime. MORE
191 
The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims. MORE
Report: Nefilim, CLOP, Sekhmet Follow in Maze Gang's Footsteps More bad ransomware news: Following in the footsteps of Maze, now even more cybercrime gangs are threatening to not only crypto-lock systems but also leak stolen data. Such moves come following a banner year for ransomware operators, who are continuing to bring more advanced tactics to bear MORE
168 
Cloud hosting provider Dataresolution.net is struggling to bring its systems back online after suffering a ransomware infestation on Christmas Eve, KrebsOnSecurity has learned. MORE
A ransomware outbreak has besieged a Wisconsin based IT company that provides cloud data hosting, security and access management to more than 100 nursing homes across the United States. ” Ransomware The Coming Storm alex holden Hold Security Karen Christianson VCPI MORE
Offers Details at a Press Conference The mayor of New Bedford, Massachusetts, took the unusual step this week of holding a press conference to describe a recent ransomware attack and explain why the city decided not to pay the $5.3 Mayor of New Bedford, Mass., MORE
255 
Caleb Barlow, CEO of CynergisTek, on Addressing the Challenges Healthcare institutions and nonprofits are suffering badly from ransomware attacks, says Caleb Barlow, CEO of CynergisTek, who offers insights on shoring up defenses MORE
163 
Maze Crew Reportedly Threatens to Release More of Allied Universal's Data Unless Ransom Paid Ransomware attacks have taken an unwelcome turn: The Maze gang reportedly has begun leaking a victim's files to create pressure to pay a ransom. MORE
Cybercrime Campaign Counts 23 Victims - Mostly Local Government Entities State officials in Texas say that at least 23 local government entities have fallen victim to a coordinated ransomware attack unleashed on Friday morning. MORE
cities and other governmental units reportedly have been hit by ransomware in an unrelenting wave that has proved profitable for hackers. Infected City Fires IT Manager; New Victims in Florida, Georgia More U.S. MORE
Criminals Increasingly Leak Stolen Data to Force Bitcoin Payoff As if ransomware wasn't already bad enough, more gangs are now exfiltrating data from victims before leaving systems crypto-locked. MORE
234 
Patients Seek Damages, Citing Impact of Security Incident in New Jersey A lawsuit seeking class action status has been filed against a New Jersey healthcare organization in the wake of a ransomware attack last December in which the entity paid attackers an unspecified ransom to unlock its systems. MORE
Organizations in the throes of cleaning up after a ransomware outbreak typically will change passwords for all user accounts that have access to any email systems, servers and desktop workstations within their network. VCPI) was hit by the Ryuk ransomware strain. MORE
Infections Spread Not Via Microsoft Teams, But By Stolen Active Domain Credentials Dopplepaymer ransomware, despite ongoing rumors, is not being spread via the Teams collaboration platform or BlueKeep remote desktop protocol flaws, Microsoft says. MORE
As if the scourge of ransomware wasn’t bad enough already: Several prominent purveyors of ransomware have signaled they plan to start publishing data stolen from victims who refuse to pay up. The message displayed at the top of the Maze Ransomware public shaming site. MORE
have been held hostage by a ransomware strain known as “ Robbinhood.” “We took a look at it and found a pretty vanilla ransomware binary,” Stewart said. A significant number of these customers were infected by the ransomware.” MORE
NVA said it discovered the ransomware outbreak on the morning of Sunday, Oct. A source close to the investigation told KrebsOnSecurity that NVA was hit with Ryuk , a ransomware strain first spotted in August 2018 that targets mostly large organizations for a high-ransom return. MORE
Researchers Explain Resurgence in Ransomware, Persistence of Exploit Kits Attacks tied to Shade ransomware continue to surge as part of an overall resurgence in ransomware, security researchers warn. MORE
Incident May Have Disrupted Networked Security Cameras Global security company Prosegur has blamed Ryuk ransomware for a service disruption that started Wednesday, which may have hampered networked alarms. MORE
Business-to-business payments provider Billtrust is still recovering from a ransomware attack that began last week. “Out of an abundance of caution, we cannot disclose the precise ransomware strains but will do so as soon as prudently possible. MORE
Norwegian Aluminum Maker Still Fighting LockerGoga Ransomware Attack Norsk Hydro reports that a March 18 ransomware attack has already cost the aluminum manufacturer more than $40 million, and the company continues to bring its systems back online MORE
Difficult Recovery A ransomware attack against a chain of veterinary medicine clinics plus an attack against a New York hospital show this threat remains pervasive, victims are diverse and recovery is difficult What Do They Have in Common? MORE
218 
The Wall Street Journal has a story about how two people were identified as the perpetrators of a ransomware scheme. attribution hacking operationalsecurity ransomwareThey were found because -- as generally happens -- they made mistakes covering their tracks. MORE
106 Cybercriminals and Nation-States Aim to Subvert Systems and Devices Attackers are continuing to use concerns over COVID-19 to distribute ransomware and malware, including for smartphones. MORE
The latest edition of the ISMG Security Report analyzes the "blame game" in the wake of a ransomware attack against the city of Baltimore. Also featured: Discussions of cyberthreats in the financial services sector and open source security concerns MORE
Evidence Mounts That Sodinokibi Ransomware Is GandCrab Gang's 'Retirement' Plan Did the gang behind GandCrab fake its retirement? MORE
Riviera Beach, a Florida city, is coughing up $600,000 to hackers after a ransomware attack brought down its computer systems. Hacks Malware Atlanta ransomware Baltimore ransomware Data malicious email Phishing ransom payment ransomware riviera beach ransomware attack MORE
McAfee's John Fokker Charts the Increasingly Advanced Cybercrime Service Economy Ransomware-wielding attackers - aided by a service economy that gives them access to more advanced attack tools - are increasingly targeting organizations rather than individuals to shake them down for bigger ransom payoffs, says McAfee's John Fokker. MORE
PerCSoft , a Wisconsin-based company that manages a remote data backup service relied upon by hundreds of dental offices across the country, is struggling to restore access to client systems after falling victim to a ransomware attack. MORE
Ransomware Related Topics Krebs on Security
NOVEMBER 19, 2019
NVA said it discovered the ransomware outbreak on the morning of Sunday, Oct. A source close to the investigation told KrebsOnSecurity that NVA was hit with Ryuk , a ransomware strain first spotted in August 2018 that targets mostly large organizations for a high-ransom return.
Krebs on Security
JANUARY 6, 2020
Organizations in the throes of cleaning up after a ransomware outbreak typically will change passwords for all user accounts that have access to any email systems, servers and desktop workstations within their network. VCPI) was hit by the Ryuk ransomware strain.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Krebs on Security
DECEMBER 27, 2019
Synoptek , a California business that provides cloud hosting and IT management services to more than a thousand customer nationwide, suffered a ransomware attack this week that has disrupted operations for many of its clients, according to sources. Ransomware rEvil Sodinokibi Synoptek
Krebs on Security
JULY 8, 2019
The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims.
Data Breach Today
MARCH 19, 2020
Caleb Barlow, CEO of CynergisTek, on Addressing the Challenges Healthcare institutions and nonprofits are suffering badly from ransomware attacks, says Caleb Barlow, CEO of CynergisTek, who offers insights on shoring up defenses
Krebs on Security
DECEMBER 7, 2019
A Colorado company that specializes in providing IT services to dental offices suffered a ransomware attack this week that is disrupting operations for more than 100 dentistry practices, KrebsOnSecurity has learned.
|
Data Breach Today
NOVEMBER 20, 2019
Researchers Explain Resurgence in Ransomware, Persistence of Exploit Kits Attacks tied to Shade ransomware continue to surge as part of an overall resurgence in ransomware, security researchers warn.
Data Breach Today
MARCH 25, 2020
Report: Nefilim, CLOP, Sekhmet Follow in Maze Gang's Footsteps More bad ransomware news: Following in the footsteps of Maze, now even more cybercrime gangs are threatening to not only crypto-lock systems but also leak stolen data. Such moves come following a banner year for ransomware operators, who are continuing to bring more advanced tactics to bear
Krebs on Security
OCTOBER 22, 2019
Business-to-business payments provider Billtrust is still recovering from a ransomware attack that began last week. “Out of an abundance of caution, we cannot disclose the precise ransomware strains but will do so as soon as prudently possible.
Data Breach Today
NOVEMBER 19, 2019
Governor Describes 'Aggressive' Incident Response Efforts After a ransomware attack on Monday forced Louisiana's government to take several servers and websites offline to prevent the malware from spreading, state officials spent Tuesday restoring online services
Krebs on Security
DECEMBER 16, 2019
As if the scourge of ransomware wasn’t bad enough already: Several prominent purveyors of ransomware have signaled they plan to start publishing data stolen from victims who refuse to pay up. The message displayed at the top of the Maze Ransomware public shaming site.
|
|
Krebs on Security
JULY 19, 2019
Cloud hosting provider iNSYNQ says it is trying to recover from a ransomware attack that shut down its network and has left customers unable to access their accounting data for the past three days. Data Breaches iNSYNQ ransomware attack
Data Breach Today
NOVEMBER 22, 2019
This edition of the ISMG Security Report features an analysis of the very latest ransomware trends. Also featured: Discussions of Microsoft's move to DNS over HTTPS and strategies for tackling IoT security challenges
Data Breach Today
FEBRUARY 26, 2020
McAfee's John Fokker Charts the Increasingly Advanced Cybercrime Service Economy Ransomware-wielding attackers - aided by a service economy that gives them access to more advanced attack tools - are increasingly targeting organizations rather than individuals to shake them down for bigger ransom payoffs, says McAfee's John Fokker.
Krebs on Security
JUNE 3, 2019
have been held hostage by a ransomware strain known as “ Robbinhood.” “We took a look at it and found a pretty vanilla ransomware binary,” Stewart said. A significant number of these customers were infected by the ransomware.”
Krebs on Security
NOVEMBER 22, 2019
A ransomware outbreak has besieged a Wisconsin based IT company that provides cloud data hosting, security and access management to more than 100 nursing homes across the United States. ” Ransomware The Coming Storm alex holden Hold Security Karen Christianson VCPI
Data Breach Today
MARCH 18, 2020
Cybercriminals and Nation-States Aim to Subvert Systems and Devices Attackers are continuing to use concerns over COVID-19 to distribute ransomware and malware, including for smartphones.
Data Breach Today
FEBRUARY 19, 2020
CISA Alert: Incident Led to Two-Day Shutdown A ransomware attack on a U.S. natural gas compression facility led to a two-day shutdown of operations, according to an alert from the Cybersecurity and Infrastructure Security Agency
Data Breach Today
JANUARY 16, 2020
Criminals Increasingly Leak Stolen Data to Force Bitcoin Payoff As if ransomware wasn't already bad enough, more gangs are now exfiltrating data from victims before leaving systems crypto-locked.
Data Breach Today
FEBRUARY 26, 2020
McAfee and Microsoft Analysts Review 'Ransomware as a Service' Trends Targeted ransomware attacks against enterprises and government agencies are likely to surge in the coming months as "ransomware as a service" continues to evolve into a lucrative model for cybercriminals, security experts interviewed at RSA 2020 warn.
Data Breach Today
JULY 2, 2019
cities and other governmental units reportedly have been hit by ransomware in an unrelenting wave that has proved profitable for hackers. Infected City Fires IT Manager; New Victims in Florida, Georgia More U.S.
Krebs on Security
AUGUST 29, 2019
PerCSoft , a Wisconsin-based company that manages a remote data backup service relied upon by hundreds of dental offices across the country, is struggling to restore access to client systems after falling victim to a ransomware attack.
Data Breach Today
MARCH 16, 2020
Cybercrime Continues Despite Pandemic Intensifying As the COVID-19 pandemic intensifies, public health efforts are being complicated by ransomware attacks continuing to hit healthcare facilities that are not only handling cases but also running frontline virus-testing labs
Data Breach Today
FEBRUARY 18, 2020
Patients Seek Damages, Citing Impact of Security Incident in New Jersey A lawsuit seeking class action status has been filed against a New Jersey healthcare organization in the wake of a ransomware attack last December in which the entity paid attackers an unspecified ransom to unlock its systems.
Data Breach Today
NOVEMBER 20, 2019
Difficult Recovery A ransomware attack against a chain of veterinary medicine clinics plus an attack against a New York hospital show this threat remains pervasive, victims are diverse and recovery is difficult What Do They Have in Common?
Data Breach Today
NOVEMBER 21, 2019
Infections Spread Not Via Microsoft Teams, But By Stolen Active Domain Credentials Dopplepaymer ransomware, despite ongoing rumors, is not being spread via the Teams collaboration platform or BlueKeep remote desktop protocol flaws, Microsoft says.
Data Breach Today
AUGUST 19, 2019
Cybercrime Campaign Counts 23 Victims - Mostly Local Government Entities State officials in Texas say that at least 23 local government entities have fallen victim to a coordinated ransomware attack unleashed on Friday morning.
Krebs on Security
JANUARY 2, 2019
Cloud hosting provider Dataresolution.net is struggling to bring its systems back online after suffering a ransomware infestation on Christmas Eve, KrebsOnSecurity has learned.
Data Breach Today
MARCH 10, 2020
WatchGuard's Corey Nachreiner on Threat Report's Top 3 Predictions New ransomware variants are targeting managed service and cloud service providers: This is one of the predictions made by WatchGuard Technologies for 2020.
Data Breach Today
NOVEMBER 29, 2019
Incident May Have Disrupted Networked Security Cameras Global security company Prosegur has blamed Ryuk ransomware for a service disruption that started Wednesday, which may have hampered networked alarms.
Data Breach Today
JANUARY 15, 2019
Separately, Texas City's Operations Disrupted by Crypto-Locking Ransomware Ransomware attacks continue, with the city of Del Rio, Texas, saying its operations have been disrupted by crypto-locking malware.
Schneier on Security
NOVEMBER 12, 2019
The Wall Street Journal has a story about how two people were identified as the perpetrators of a ransomware scheme. attribution hacking operationalsecurity ransomwareThey were found because -- as generally happens -- they made mistakes covering their tracks.
Data Breach Today
SEPTEMBER 5, 2019
Offers Details at a Press Conference The mayor of New Bedford, Massachusetts, took the unusual step this week of holding a press conference to describe a recent ransomware attack and explain why the city decided not to pay the $5.3 Mayor of New Bedford, Mass.,
Threatpost
JUNE 20, 2019
Riviera Beach, a Florida city, is coughing up $600,000 to hackers after a ransomware attack brought down its computer systems. Hacks Malware Atlanta ransomware Baltimore ransomware Data malicious email Phishing ransom payment ransomware riviera beach ransomware attack
Data Breach Today
NOVEMBER 16, 2018
Altus Baytown Hospital Among Latest Healthcare Cyberattack Victims An attack on Altus Baytown Hospital in Texas is the latest ransomware incident reported to federal regulators as a health data breach. What other major ransomware incidents are impacting the healthcare sector
Data Breach Today
NOVEMBER 1, 2019
Sodinokibi and Globelmposter Gangs Target Larger Victims, Coveware Warns Ransomware continues to be a highly profitable cybercrime.
Krebs on Security
JULY 15, 2019
The cybercriminals behind the GandCrab ransomware-as-a-service (RaaS) offering recently announced they were closing up shop and retiring after having allegedly earned more than $2 billion in extortion payments from victims.
Data Breach Today
SEPTEMBER 25, 2019
Evidence Mounts That Sodinokibi Ransomware Is GandCrab Gang's 'Retirement' Plan Did the gang behind GandCrab fake its retirement?
Data Breach Today
MARCH 27, 2019
Norwegian Aluminum Maker Still Fighting LockerGoga Ransomware Attack Norsk Hydro reports that a March 18 ransomware attack has already cost the aluminum manufacturer more than $40 million, and the company continues to bring its systems back online
Data Breach Today
MAY 31, 2019
The latest edition of the ISMG Security Report analyzes the "blame game" in the wake of a ransomware attack against the city of Baltimore. Also featured: Discussions of cyberthreats in the financial services sector and open source security concerns
Let's personalize your content