Ransomware - Information Management Today

Search:

DAY

WEEK

MONTH

YEAR

May 13 - May 19

May 06 - May 12

Apr 29 - May 05

Apr 22 - Apr 28

Apr 15 - Apr 21

MORE

MORE

MORE

MORE

Select your country:
Sign up | Log in

Ransomware

article thumbnail

Russian Hacker “Wazawaka” Indicted for Ransomware

Krebs on Security

MAY 16, 2023

A Russian man identified by KrebsOnSecurity in January 2022 as a prolific and vocal member of several top ransomware groups was the subject of two indictments unsealed by the Justice Department today. And on April 26, 2021, Matveev and his Babuk gang allegedly deployed ransomware against the Metropolitan Police Department in Washington, D.C.

Ransomware Security Access Government

article thumbnail

Alleged Babuk Ransomware Hacker 'Wazawaka' Indicted in US

Data Breach Today

MAY 16, 2023

government says has been a key actor in Russian ransomware hacking faces federal criminal charges, economic sanctions and a $10 million reward for information leading to his arrest. Mikhail Matveev, aka Wazawaka, was a central figure of the Babuk ransomware-as-a-service gang.

Ransomware Government

Join 31,000+

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

The Power of Storytelling in Risk Management

ERM Program Fundamentals for Success in the Banking Industry

Trending Sources

article thumbnail

The Double-Edged Sword of Crypto in Ransomware

Data Breach Today

MAY 5, 2023

Hackers Treasure Crypto's Anonymity, Cybercrime Defenders its Traceability Ransomware hackers' favorite currency is cryptocurrency. But that dependency is also an opportunity for law enforcement to hit ransomware hackers in their most vulnerable spot. Digital assets transfer millions of dollars each year from victims to cybercriminals.

Webinars

The Power of Storytelling in Risk Management

ERM Program Fundamentals for Success in the Banking Industry

article thumbnail

Magniber Ransomware Group Exploiting Microsoft Zero Day

Data Breach Today

MARCH 16, 2023

Microsoft Patches Another SmartScreen Signature-Based Vulnerability A financial motivated hacking group has been exploiting a now-patched zero-day vulnerability in the Windows operating system to deliver ransomware. Google Threat Analysis Group attributed the campaign to Magniber ransomware group.

article thumbnail

How Preparation and Strategy Can Be Used to Fight and Defeat Any Ransomware Attack

Speaker: Karl Camilleri, Cloud Services Product Manager at phoenixNAP

Did you know that 2021 was a record-breaking year for ransomware? Considering the possible impact and the increased threat vector, deploying efficient ransomware protection must remain a priority for organizations of all sizes. Ransomware growth trends and stats. The costs and impact of a ransomware attack.

article thumbnail

RA Group Using Babuk Ransomware Source Code in Fresh Attacks

Data Breach Today

MAY 17, 2023

New Ransomware Gang Attacked 4 US and Korean Organizations in April Security researchers say a new Babuk knockoff ransomware group emerged in April and has already claimed targets in the United States and South Korea.

Ransomware Security

article thumbnail

Government Sanctions: No Ransomware Please, We're British

Data Breach Today

FEBRUARY 15, 2023

UK Toughens Anti-Cybercrime Stance by Sanctioning Accused Operators for First Time As ransomware continues to disrupt British organizations, the U.K. Ransomware victims must conduct due diligence before paying any ransom, as violating sanctions carries severe penalties.

Ransomware Government

article thumbnail

CISA Warns That Royal Ransomware Is Picking Up Steam

Data Breach Today

MARCH 3, 2023

US Agency Says Royal Ransomware Group Is Made Up of Experienced Threat Actors The Royal ransomware group targeting critical infrastructure in the United States and other countries is made up of experienced ransomware attackers and has strong similarities to Conti, the infamous Russia-linked hacking group, according to a new alert issued by U.S.

article thumbnail

Royal Ransomware Group Builds Its Own Malware Loader

Data Breach Today

MAY 17, 2023

Malware Designed to Load Crypto-Lockers Remains Key Tool for Ransomware Groups The Royal ransomware group, which spun off from Conti in early 2022, is refining its downloader malware using tactics and techniques that appear to draw directly from other post-Conti groups, as well as working closely with trusted former associates of Conti, REvil and Hive, (..)

article thumbnail

Ransomware Prevention and Recovery

Advertisement

Learn how to protect your business data from the most disruptive malware currently in existence. This whitepaper will help you avoid becoming the victim of a data breach and ensure business continuity. It discusses defense best practices and protection solutions to help you keep your data safe.

article thumbnail

LockBit Ransomware Group Reportedly Behind Royal Mail Attack

Data Breach Today

JANUARY 12, 2023

Attack Is Disrupting International Mail Export Services The cyber incident at the Royal Mail that is impeding exports from the United Kingdom is reportedly a ransomware attack by the LockBit ransomware-as-a-service group. Britain's national postal service told customers Thursday not to post export items.

article thumbnail

Researchers Quietly Cracked Zeppelin Ransomware Keys

Krebs on Security

NOVEMBER 17, 2022

Peter is an IT manager for a technology manufacturer that got hit with a Russian ransomware strain called “ Zeppelin ” in May 2020. There are multiple examples of ransomware groups doing just that after security researchers crowed about finding vulnerabilities in their ransomware code. This is not an idle concern.

Ransomware Encryption Phishing Cybersecurity

article thumbnail

Microsoft Patches Zero-Day Bug Exploited by Ransomware Group

Data Breach Today

APRIL 12, 2023

Attackers Drop Nokoyawa Ransomware; Experts See Increasing Criminal Sophistication Microsoft has issued fixes for 114 vulnerabilities, including patching a zero-day flaw being actively exploited by a ransomware group and updating guidance to block a vulnerability from 2013 that was recently exploited for the software supply chain attack on 3CX users, (..)

article thumbnail

Iranian Hackers Deploy New Ransomware Against Israeli Firms

Data Breach Today

MAY 25, 2023

Researchers Discover Moneybird Ransomware Strain, Warn of Growing Sophistication Security researchers discovered an Iran-linked APT group carrying out a new chain of ransomware attacks against Israeli organizations.

Ransomware Security

article thumbnail

Vendor Ransomware Breach Affects 942,000 Patients

Data Breach Today

AUGUST 17, 2022

Incident Is Among Latest Fallout From Attacks on Healthcare Sector Entities A New York-based practice management vendor has notified 28 healthcare entity clients and more than 942,000 of their patients that sensitive information was compromised in a ransomware attack in April.

article thumbnail

Breach Roundup: Royal Ransomware Does Dallas

Data Breach Today

MAY 4, 2023

Also: T-Mobile, an Italian Water System, a German IT Provider, a macOS Info Stealer In the days between April 27 and May 4, the spotlight was on: a Royal ransomware attack on Dallas, Telecom giant T-Mobile's second breach in 2023, a ransomware attack disrupting water services in half a dozen southern Italian towns, a German IT services provider and (..)

article thumbnail

RSAC Fireside Chat: Counteracting Putin’s weaponizing of ransomware — with containment

The Last Watchdog

MAY 20, 2023

The ransomware plague endures — and has arisen as a potent weapon in geopolitical conflicts. Ransomware purveyors have demonstrated their capability to endlessly take advantage of a vastly expanded network attack surface – one that will only continue to expand as the shift to massively interconnected digital services accelerates.

Ransomware Security IT Privacy

article thumbnail

Ransomware Leak Sites Attract More Attacks

Data Breach Today

AUGUST 9, 2022

Victims Often Attacked Simultaneously by Multiple Ransomware Groups Cybercriminals monitor leak sites for newly listed ransomware victims in a bid to try their own hand at dropping encryption malware, says Sophos.

Ransomware Encryption Cybersecurity IT

article thumbnail

Cybercrime: Ransomware Hits and Initial Access Listings Grow

Data Breach Today

APRIL 11, 2023

But If Hydra Takedown Is a Guide, Fresh Disruptions May Take Big Bite Out of Market The cybercrime economy appears to remain alive and well: Compared to last year, researchers report seeing an increase in the number of known ransomware victims as well as initial access listings, which facilitate such attacks.

Ransomware Access Marketing

article thumbnail

LockBit Ransomware Tests Taking a Bite Out of Apple Users

Data Breach Today

APRIL 17, 2023

Don't Panic: Apparent macOS Beta Testing Is Highly Buggy, Poses No Immediate Threat Apple users: Don't fear newly discovered samples of LockBit ransomware designed to target newer macOS devices. Researchers say the still-in-development code, tied to no known in-the-wild attacks, contains numerous errors, leaving it unable to execute.

article thumbnail

Play Ransomware Lists A10 Networks on its Leak Site

Data Breach Today

FEBRUARY 11, 2023

Group Says It Has Confidential Data, Tech Docs; A10 Says Operations Not Impacted The Play ransomware group listed networking hardware manufacturer A10 Networks in its leak site, after briefly gaining access to its IT infrastructure, according to data breach notifications firm BetterCyber.

Ransomware Data breaches IT Manufacturing

article thumbnail

MKS Instruments Ransomware Attack Results in $200M Sales Hit

Data Breach Today

MARCH 15, 2023

Attack Removed MKS' Ability to Process Orders, Ship Products or Provide Services MKS Instruments expects a $200 million revenue hit from February's ransomware attack after the hack removed the company's ability to process orders or ship products.

Ransomware Sales

article thumbnail

Ransomware Profits Dip as Fewer Victims Pay Extortion

Data Breach Today

JANUARY 23, 2023

As Funding From Ransoms Goes Down, Gangs Embrace Re-Extortion, Researchers Warn Bad news for ransomware groups: Experts find it's getting tougher to earn a crypto-locking payday at the expense of others.

article thumbnail

How Criminals Are Weaponizing Leaked Ransomware Data

Data Breach Today

AUGUST 23, 2022

Accenture's Robert Boyce Advises Firms to Update Monitoring and Approval Processes Accenture analyzed the top 20 most active ransomware leak sites to see how threat actors are posting sensitive corporate information and making the data easy to search and exploit.

article thumbnail

Why Are Ransomware Attacks Intensifying?

Data Breach Today

JULY 14, 2022

The latest edition of the ISMG Security Report analyzes why the number of ransomware attacks and the amounts being paid in ransoms are both on the rise. It also discusses today's cyberthreat landscape and whether organizations should rely on user training to improve security.

Ransomware Security IT

article thumbnail

Profit at Any Cost: Why Ransomware Gangs Such as LockBit Lie

Data Breach Today

JANUARY 16, 2023

Pity the overworked ransomware gang - say, LockBit - that just "discovered" one of its affiliates hit Britain's postal service. But until Western governments find a way to truly disrupt the ransomware business model, operators remain free to keep spouting half-truths and lies at victims' expense.

Ransomware Government IT

article thumbnail

Ransomware Attackers Don't Take Holidays

Data Breach Today

NOVEMBER 16, 2022

Cybereason's Sam Curry shares insight from the new study "Organizations at Risk: Ransomware Attackers Don’t Take Holidays." What is news: These attacks cost more than weekday incidents, and they take a heavy toll on defenders.

Ransomware Risk

article thumbnail

Irish Healthcare Ransomware Hack Cost Over 80 Million Euros

Data Breach Today

DECEMBER 13, 2022

Victims Still Learning Their Personal Data Was Illegally Accessed, Copied in 2021 A ransomware attack on the Irish healthcare system in 2021 has cost the government 80 million euros in damages and counting. The Irish Health Service continues to notify victims of the incident that their personal information was illegally accessed and copied.

Ransomware Personal data Government Access

article thumbnail

Search Here: Ransomware Groups Refine High-Pressure Tactics

Data Breach Today

JULY 13, 2022

Free Searching on Stolen Data and Higher Ransom Demands Among Latest Innovations Seeking maximum profits, ransomware groups continually refine the tactics they use to bypass defenses, infect victims and pressure them into paying.

article thumbnail

FBI Seizes Hive Ransomware Servers in Multinational Takedown

Data Breach Today

JANUARY 26, 2023

Agents Infiltrated Hive in July 2022: 'We Hacked the Hackers,' Says DOJ Official The FBI penetrated the network of the Hive ransomware group, which has a history of attacking hospitals. A multinational operation seized the ransomware-as-a-service group's leak site and two servers located in Los Angeles.

article thumbnail

Ransomware Ecosystem: Big-Name Brands Becoming a Liability

Data Breach Today

JULY 29, 2022

Midsized Businesses Are the New Frontier for Ransomware Demands Here's unwelcome ransomware news: When a ransomware victim chooses to pay a ransom, the average amount has increased to $228,125, reports ransomware incident response firm Coveware.

article thumbnail

The Ransomware Files, Ep. 10: Dr. Ransomware, Part 2

Data Breach Today

AUGUST 4, 2022

Is a practicing cardiologist living in Venezuela also a ransomware mastermind? The Ransomware Files" podcast looks at the evidence. prosecutors claim Moises Luis Zagala Gonzalez is a cybercriminal polymath. But Zagala's wife says he is innocent and there's a reason for his predicament.

article thumbnail

FBI Issues Alert on Hive Ransomware

Data Breach Today

AUGUST 28, 2021

Uptick in Hive Ransomware Activity Spotted The US Federal Bureau of Investigation has issued a warning about Hive ransomware after the group took down Memorial Health System last week. The alert details indicators of compromise, tactics, techniques, and procedures (TTPs) associated with these ransomware attacks.

article thumbnail

Ransomware Ecosystem: Big Changes Since Colonial Pipeline

Data Breach Today

MAY 19, 2022

The latest edition of the ISMG Security Report analyzes the changes in the ransomware landscape one year after the attack on Colonial Pipeline. It also revisits the Ryuk ransomware attack on a school district in Illinois and examines common culprits hindering effective Zero Trust adoption.

Ransomware Security IT

article thumbnail

Wanted: Disgruntled Employees to Deploy Ransomware

Krebs on Security

AUGUST 19, 2021

Criminal hackers will try almost anything to get inside a profitable enterprise and secure a million-dollar payday from a ransomware infection. ” This attacker’s approach may seem fairly amateur, but it would be a mistake to dismiss the threat from West African cybercriminals dabbling in ransomware. ” Image: Sophos.

Ransomware Security Phishing Encryption

article thumbnail

Ransomware: 'Amateur' Tactics Lead Fewer Victims to Pay

Data Breach Today

OCTOBER 31, 2022

Criminals Shooting Themselves in the Foot With Faulty Decryptors, Re-Extortion Many ransomware-wielding attackers - including big-name groups - have been collectively shooting themselves in the foot by resorting to "amateur" tactics, including decryptors that fail to decrypt as well as gangs re-extorting the same victims.

article thumbnail

Ransomware Groups Hit Unpatched IBM File Transfer Software

Data Breach Today

MARCH 30, 2023

Buhti and IceFire Ransom Groups Tied to Attacks Targeting Vulnerable Servers Security experts are urging users of IBM's Aspera Faspex file-exchange application to take it offline immediately unless they've patched a flaw being actively exploited by ransomware groups, including Buhti and IceFire.

Ransomware Security IT

article thumbnail

Conti’s Ransomware Toll on the Healthcare Industry

Krebs on Security

APRIL 18, 2022

Conti — one of the most ruthless and successful Russian ransomware groups — publicly declared during the height of the COVID-19 pandemic that it would refrain from targeting healthcare providers. But according to Microsoft and an advisory from the U.S. National Security Agency (NSA).

Ransomware Cybersecurity Security Healthcare

article thumbnail

Strategies to Modernize Ransomware Response

Data Breach Today

APRIL 14, 2022

Accenture's Robert Boyce on Adopting an Effective Communications Plan Accenture's new ransomware report reveals key challenges in executing an effective communications plan.

Ransomware Communications

article thumbnail

Medical Center Ransomware Attack Affects 700,000

Data Breach Today

JUNE 15, 2022

Incident Is Latest on Growing List of Recent Major Healthcare Data Hacks An Arizona medical center that suffered a ransomware attack in April has begun notifying 700,000 individuals of a data breach compromising sensitive medical and personal information. The incident is among the latest major health data breaches involving ransomware.

Ransomware Data breaches

article thumbnail

New HardBit 2.0 Ransomware Tactics Target Insurance Coverage

Data Breach Today

FEBRUARY 22, 2023

ransomware group is now demanding victims disclose details of their cyber insurance coverage before negotiating a ransom demand. Hackers Demand Info on Victim's Cyber Insurance Policy to Negotiate Ransom Demand The newly relaunched HardBit 2.0

Ransomware Insurance

article thumbnail

Rackspace Confirms Exchange Outage Caused by Ransomware

Data Breach Today

DECEMBER 6, 2022

Companies Tells US SEC That the Incident Will Affect Revenue Ransomware lies behind the ongoing outage of hosted Exchange services at Rackspace, the company disclosed in a Tuesday update. The company did not disclose any particular ransomware actor. It told federal regulators that the outage is likely to create a financial loss.

article thumbnail

Ontario Teachers’ Data Stolen in Ransomware Attack

Data Breach Today

NOVEMBER 25, 2022

Victims Notified of Ransomware Attack Six Months After the Incident A cyberattack on a Canadian teachers’ union gave thieves access to sensitive data of more than 60,000 members The union is yet to disclose the exact number of affected individuals, but stated that both former and current members are impacted.

Ransomware Access

article thumbnail

Why Do Ransomware Victims Pay for Data Deletion Guarantees?

Data Breach Today

JANUARY 2, 2023

Paying for Promises That Can't Be Audited Paints a Repeat-Attack Target on Victims Many ransomware-wielding attackers are expert at preying on their victims' compulsion to clean up the mess.