Ransomware - Information Management Today

Why Criminals Keep Reusing Leaked Ransomware Builders

Data Breach Today

AUGUST 30, 2023

Blame Police Crackdowns on Big Names, Hacker Thrift, Ransomware Grifters in Trouble What's behind the a profusion of reported attacks involving stolen or reused strains of ransomware?

Ransomware

Who’s Behind the 8Base Ransomware Website?

Krebs on Security

SEPTEMBER 18, 2023

The victim shaming website operated by the cybercriminals behind 8Base — currently one of the more active ransomware groups — was until earlier today leaking quite a bit of information that the crime group probably did not intend to be made public. The 8Base ransomware group’s victim shaming website on the darknet.

Ransomware

Ransomware Encryption Communications Security

Ransomware: It Takes A Village, Says NCSC

Data Breach Today

SEPTEMBER 11, 2023

UK Crime and Cybersecurity Agencies Urge 'Holistic' View of Ransomware Ecosystem Stopping the ransomware epidemic is less about tackling individual crypto-locking malware variants and more about combating the entire ecosystem of bad actors underpinning digital extortion, the British government said Monday.

Ransomware

Ransomware Cybersecurity IT Government

Webinars

Customer Experience Management: Optimizing Your Strategy for Financial Success

MORE WEBINARS

UNC3944 Is Now Deploying Ransomware Variants

Data Breach Today

SEPTEMBER 17, 2023

Financially Motivated Hackers Are Diversifying Operations A financially motivated criminal syndicate that mainly operates in Telegram and underground forums has expanded its criminal arsenals to deploy ransomware and other intrusion capabilities on various cloud applications, warn Mandiant researchers.

Ransomware

Ransomware Cloud IT

How Preparation and Strategy Can Be Used to Fight and Defeat Any Ransomware Attack

Speaker: Karl Camilleri, Cloud Services Product Manager at phoenixNAP

Did you know that 2021 was a record-breaking year for ransomware? Considering the possible impact and the increased threat vector, deploying efficient ransomware protection must remain a priority for organizations of all sizes. Ransomware growth trends and stats. The costs and impact of a ransomware attack.

Ransomware

Big MGM Resorts Outage Traces to Ransomware, Researchers Say

Data Breach Today

SEPTEMBER 13, 2023

Alphv/BlackCat Group Reportedly Hit Casino Operator via Social Engineering Attack Booking and reservation systems, as well as slot machines, hotel room door locks, ATMs and more remain offline at multiple MGM Resorts properties as the publicly traded casino hotel giant battles "a cybersecurity issue" that one group of security researchers has tied (..)

Ransomware

Ransomware Cybersecurity Security

Monti Ransomware Deploying New Linux Encryptor

Data Breach Today

AUGUST 22, 2023

More Ransomware Groups Targeting Linux Systems A ransomware campaign by the recently emerged Monti ransomware group is targeting victims with a new Linux variant of its malware. The threat group is the latest in a growing number of ransomware groups finding profit in going after Linux infrastructure.

Ransomware

Ransomware IT

Feds Warn About Snatch Ransomware

Data Breach Today

SEPTEMBER 21, 2023

US Agency Advisory Sheds Light on the Group's Activities The Snatch ransomware group is targeting a wide range of critical infrastructure sectors, including the defense industrial base, food and agriculture, and information technology sectors, according to a new alert issued by U.S. The group operates on a ransomware-as-a-service model.

Ransomware

Ransomware Agriculture

Caesars Confirms Ransomware Payoff and Customer Data Breach

Data Breach Today

SEPTEMBER 15, 2023

MGM Resorts Continuing to Be Extorted by the Same Alphv/BlackCat Ransomware Group Casino and hotel giant Caesars Entertainment is warning customers that their personal details were stolen in a recent hack attack.

Ransomware

Ransomware Data breaches IT

Ransomware Prevention and Recovery

Learn how to protect your business data from the most disruptive malware currently in existence. This whitepaper will help you avoid becoming the victim of a data breach and ensure business continuity. It discusses defense best practices and protection solutions to help you keep your data safe.

Ransomware

Greater Manchester Police Caught Up in Ransomware Hack

Data Breach Today

SEPTEMBER 14, 2023

Employee Information Among Compromised Data Hackers stole the personal details of thousands of police officers and staff in a ransomware attack that swept up one of the United Kingdom's largest law enforcement agencies.

Ransomware

Tattletale Ransomware Gangs Threaten to Reveal GDPR Breaches

Data Breach Today

SEPTEMBER 7, 2023

Repeat Shakedown Tactic: Victims Told to Pay Up or Else They'll Pay Massive Fines Ransomware groups do whatever they can to pressure a victim into paying.

Ransomware

Ransomware GDPR

Russian Hacker “Wazawaka” Indicted for Ransomware

Krebs on Security

MAY 16, 2023

A Russian man identified by KrebsOnSecurity in January 2022 as a prolific and vocal member of several top ransomware groups was the subject of two indictments unsealed by the Justice Department today. And on April 26, 2021, Matveev and his Babuk gang allegedly deployed ransomware against the Metropolitan Police Department in Washington, D.C.

Ransomware

Ransomware Security Access Government

Feds Warn Healthcare Sector of Akira Ransomware Threats

Data Breach Today

SEPTEMBER 13, 2023

HHS: Group Seems to Favor Targeting Small & Midsized Entities that Lack MFA on VPNs Authorities are warning of threats posed by Akira, a ransomware group that surfaced in March and has been linked to dozens of attacks on small and midsized entities.

Ransomware

Scarab Ransomware Deployed Using SpaceColon Toolkit

Data Breach Today

AUGUST 24, 2023

Developers Appear To Be Preppring New Ransomware Malware Hackers are using toolset that first appeared in 2020 apparently developed by Turkish-speakers to deploy Scarab ransomware, say security researchers. Eset dubs the threat actors behind the framework "CosmicBeetle."

Ransomware

Ransomware Security

Ransomware Attack Cleanup Costs: $10M So Far for Rackspace

Data Breach Today

AUGUST 28, 2023

Fallout From Crypto-Locking Malware Attacks and Data Exfiltration Remains Costly Ransomware and data-exfiltration attacks are continuing to stick victims with serious bills to cover cleanup, legal and other resulting costs - to the tune of $10.8

Cleanup

Cleanup Ransomware Cloud

Ransomware Attack Cleanup Costs: $11M So Far for Rackspace

Data Breach Today

AUGUST 29, 2023

Fallout From Crypto-Locking Malware Attacks and Data Exfiltration Remains Costly Ransomware and data-exfiltration attacks are continuing to stick victims with serious bills to cover cleanup, legal and other resulting costs - to the tune of $10.8

Cleanup

Cleanup Ransomware Cloud

Speed Demons: Ransomware Attackers' Dwell Time Shrinks

Data Breach Today

AUGUST 23, 2023

Seeking Every Advantage, Most Ransomware Groups Attack Outside of Business Hours Ransomware-wielding hackers are moving faster than ever to pull the trigger on malicious encryption - but they could be bumping up against the limits of how fast they can go, say security researchers at Sophos.

Ransomware

Ransomware Encryption Security

Cuba Ransomware Exploits Veeam Vulnerability

Data Breach Today

AUGUST 22, 2023

The Attack Accesses an Exposed API on a Component of the Veeam Application The Cuba ransomware group is exploiting a bug in data backup software exposed in March, warn BlackBerry security researchers.

Ransomware

Ransomware Security Access IT

Ransomware Attack Specialist Tied to Citrix NetScaler Hacks

Data Breach Today

AUGUST 29, 2023

Multiple Highly Automated Campaigns Have Dropped Persistent Web Shells, Experts Say Citrix NetScaler defenders are being warned to not just patch a critical flaw but also review logs from before mid-July for signs of compromise, since attackers - including "a known threat actor specializing in ransomware attacks" - have been dropping web shells that (..)

Ransomware

Magniber Ransomware Group Exploiting Microsoft Zero Day

Data Breach Today

MARCH 16, 2023

Microsoft Patches Another SmartScreen Signature-Based Vulnerability A financial motivated hacking group has been exploiting a now-patched zero-day vulnerability in the Windows operating system to deliver ransomware. Google Threat Analysis Group attributed the campaign to Magniber ransomware group.

Ransomware

Ransomware IT

BlackCat Ransomware Variant Incorporates Impacket, RemCom

Data Breach Today

AUGUST 18, 2023

Version Uses Open-Source Communication Framework Tool for Lateral Movement Microsoft identified a new variant of BlackCat ransomware malware that uses an open-source communication framework tool to facilitate lateral movement.

Ransomware

Ransomware Communications

New Entrants to Ransomware Unleash Frankenstein Malware

Data Breach Today

JUNE 9, 2023

Opportunistic, Less Sophisticated Hackers Test Limits of the Concept of Code Reuse Ransomware hackers are stretching the concept of code reuse to the limit as they confront the specter of diminishing returns for extortionate malware.

Ransomware

BlackCat Ransomware Group Targets Japanese Watchmaker Seiko

Data Breach Today

AUGUST 22, 2023

Seiko Hints at Data Breach But Declines to Address BlackCat’s Claims The BlackCat group on Monday claimed responsibility for a ransomware attack on Japanese watchmaker Seiko, publishing samples of stolen data files as proof of its exploit. Seiko Group Corp.

Ransomware

Ransomware Data breaches Access IT

Government Sanctions: No Ransomware Please, We're British

Data Breach Today

FEBRUARY 15, 2023

UK Toughens Anti-Cybercrime Stance by Sanctioning Accused Operators for First Time As ransomware continues to disrupt British organizations, the U.K. Ransomware victims must conduct due diligence before paying any ransom, as violating sanctions carries severe penalties.

Ransomware

Ransomware Government

Researchers Quietly Cracked Zeppelin Ransomware Keys

Krebs on Security

NOVEMBER 17, 2022

Peter is an IT manager for a technology manufacturer that got hit with a Russian ransomware strain called “ Zeppelin ” in May 2020. There are multiple examples of ransomware groups doing just that after security researchers crowed about finding vulnerabilities in their ransomware code. This is not an idle concern.

Ransomware

Ransomware Encryption Phishing Cybersecurity

New Ransomware Actor 8Base Rivals LockBit in Extortion

Data Breach Today

JUNE 29, 2023

Group Listed Nearly 40 Victims on its Dark Web Leak Site So Far This Month New entrant ransomware group 8Base is fast becoming a "big player" in the underground market with nearly 40 victims in June - second only to the notorious LockBit ransomware gang.

Ransomware

Ransomware Manufacturing Business Services Marketing

The Hidden Benefits of Negotiating With Ransomware Attackers

Data Breach Today

AUGUST 21, 2023

GuidePoint Security's Mark Lance on Ways to Delay and Gather Info on Cybercriminals Conventional wisdom recommends to never negotiate with ransomware actors. They can't be trusted.

Ransomware

Ransomware Security

Are Akira Ransomware's Crypto-Locking Malware Days Numbered?

Data Breach Today

JULY 27, 2023

Ransomware-Building Group Lost Royal-Organized Competition, Researchers Say Is the Akira ransomware story coming to an end? Security researchers say the group was competing in a competition designed by Royal to give it a new cryptolocker - but lost.

Ransomware

Ransomware Security IT

Gouda Hacker: Charges Tie to Ransomware Hit Affecting Cheese

Data Breach Today

MAY 30, 2023

Mikhail Matveev Indictment Shows Police Tracking Top Alleged Ransomware Affiliates How many hackers can claim to have caused a national cheese shortage, not least in the Gouda-loving Netherlands?

Ransomware

Breach Roundup: Effects of ISP Ransomware Attack in Colombia

Data Breach Today

SEPTEMBER 21, 2023

Also, Clorox Product Shortages; California Passes Data Broker Restrictions This week, Colombia grappled with the aftermath of a ransomware attack against IFX Networks, Clorox suffered product shortages, a glitch allowed T-Mobile users to access other users' data, California passed restrictions for data brokers and Finland seized a dark web marketplace. (..)

Ransomware

Ransomware Access

LockBit Ransomware Group Reportedly Behind Royal Mail Attack

Data Breach Today

JANUARY 12, 2023

Attack Is Disrupting International Mail Export Services The cyber incident at the Royal Mail that is impeding exports from the United Kingdom is reportedly a ransomware attack by the LockBit ransomware-as-a-service group. Britain's national postal service told customers Thursday not to post export items.

Ransomware

Ransomware Continues to Plague European Healthcare Sector

Data Breach Today

JULY 6, 2023

Hacktivist-Led DDoS Attacks Also on the Rise, ENISA Says Ransomware continues to be the biggest threat to the European healthcare sector, but the region also is experiencing an uptick in distributed denial-of-service attacks tied to hacktivist groups, the European Union Agency for Cybersecurity warned.

Ransomware

Ransomware Cybersecurity

The Double-Edged Sword of Crypto in Ransomware

Data Breach Today

MAY 5, 2023

Hackers Treasure Crypto's Anonymity, Cybercrime Defenders its Traceability Ransomware hackers' favorite currency is cryptocurrency. But that dependency is also an opportunity for law enforcement to hit ransomware hackers in their most vulnerable spot. Digital assets transfer millions of dollars each year from victims to cybercriminals.

Ransomware

Ransomware IT

Colorado Warns Ransomware Attack Caused Massive Data Breach

Data Breach Today

AUGUST 7, 2023

Information From 2004 to 2020 Exposed for High School Students, Teachers and Others Colorado's Department of Higher Education is warning that it suffered a ransomware attack in June, in which attackers stole personal data on current and past students and teachers, dating from 2004 to 2020.

Ransomware

Ransomware Data breaches Personal data Education

CISA Warns That Royal Ransomware Is Picking Up Steam

Data Breach Today

MARCH 3, 2023

US Agency Says Royal Ransomware Group Is Made Up of Experienced Threat Actors The Royal ransomware group targeting critical infrastructure in the United States and other countries is made up of experienced ransomware attackers and has strong similarities to Conti, the infamous Russia-linked hacking group, according to a new alert issued by U.S.

Ransomware

Play Ransomware Using MSPs and N-Days to Attack

Data Breach Today

AUGUST 17, 2023

Fortinet SSL VPN Vulnerability Is Among Top Most Common Vulnerabilities The Play ransomware group is targeting security managed service providers to gain initial access and using up to a half-decade-old vulnerabilities in security appliances, warn security researchers with Adlumin.

Ransomware

Ransomware Encryption Security Access

Vendor Ransomware Breach Affects 942,000 Patients

Data Breach Today

AUGUST 17, 2022

Incident Is Among Latest Fallout From Attacks on Healthcare Sector Entities A New York-based practice management vendor has notified 28 healthcare entity clients and more than 942,000 of their patients that sensitive information was compromised in a ransomware attack in April.

Ransomware

Ransomware Hit Disrupts Real Estate Property Listings in US

Data Breach Today

AUGUST 15, 2023

Rapattoni-Hosted Multiple Listing Services Can't Add or Update Property Information Property listings nationwide are being disrupted due to an apparent ransomware attack against California-based Rapattoni, which hosts Multiple Listing Services used by real estate brokers to list, market and sell properties.

Ransomware

Ransomware Marketing IT

GUEST ESSAY: Caring criminals — why some ransomware gangs now avoid targeting hospitals

The Last Watchdog

SEPTEMBER 21, 2023

Ransomware is a significant threat to businesses worldwide. Related: How Putin has weaponized ransomware In mid-March 2020, representatives from the cybersecurity website BleepingComputer contacted numerous ransomware gangs to ask if they’d continue targeting hospitals during the unprecedented COVID-19 public health threat.

Ransomware

Ransomware Cybersecurity Risk IT

Alleged Babuk Ransomware Hacker 'Wazawaka' Indicted in US

Data Breach Today

MAY 16, 2023

government says has been a key actor in Russian ransomware hacking faces federal criminal charges, economic sanctions and a $10 million reward for information leading to his arrest. Mikhail Matveev, aka Wazawaka, was a central figure of the Babuk ransomware-as-a-service gang.

Ransomware

Ransomware Government

Ransomware Leak Sites Attract More Attacks

Data Breach Today

AUGUST 9, 2022

Victims Often Attacked Simultaneously by Multiple Ransomware Groups Cybercriminals monitor leak sites for newly listed ransomware victims in a bid to try their own hand at dropping encryption malware, says Sophos.

Ransomware

Ransomware Encryption Cybersecurity IT

Conti's Legacy: What's Become of Ransomware's Most Wanted?

Data Breach Today

JUNE 1, 2023

Group Lives on in the Form of More Agile Offshoots Such as Royal and Black Basta Former members of the defunct Conti ransomware group are continuing to ply their trade under a variety of other guises, including Royal and Black Basta.

Ransomware

Russian Ransomware Group Shuts Down Major Japanese Port

Data Breach Today

JULY 5, 2023

Attack Locks Up Systems, Delays Shipping of Toyota Auto Parts Ransomware believed to originate from the Russian LockBit 3.0 Reported LockBit 3.0 group has locked up computer systems for the Port of Nagoya, Japan's largest cargo hub.

Ransomware

Why Criminals Keep Reusing Leaked Ransomware Builders

Who’s Behind the 8Base Ransomware Website?

Webinars

Trending Sources

Ransomware: It Takes A Village, Says NCSC

Webinars

UNC3944 Is Now Deploying Ransomware Variants

How Preparation and Strategy Can Be Used to Fight and Defeat Any Ransomware Attack

Big MGM Resorts Outage Traces to Ransomware, Researchers Say

Monti Ransomware Deploying New Linux Encryptor

Feds Warn About Snatch Ransomware

Caesars Confirms Ransomware Payoff and Customer Data Breach

Ransomware Prevention and Recovery

Greater Manchester Police Caught Up in Ransomware Hack

Tattletale Ransomware Gangs Threaten to Reveal GDPR Breaches

Russian Hacker “Wazawaka” Indicted for Ransomware

Feds Warn Healthcare Sector of Akira Ransomware Threats

Scarab Ransomware Deployed Using SpaceColon Toolkit

Ransomware Attack Cleanup Costs: $10M So Far for Rackspace

Ransomware Attack Cleanup Costs: $11M So Far for Rackspace

Speed Demons: Ransomware Attackers' Dwell Time Shrinks

Cuba Ransomware Exploits Veeam Vulnerability

Ransomware Attack Specialist Tied to Citrix NetScaler Hacks

Magniber Ransomware Group Exploiting Microsoft Zero Day

BlackCat Ransomware Variant Incorporates Impacket, RemCom

New Entrants to Ransomware Unleash Frankenstein Malware

BlackCat Ransomware Group Targets Japanese Watchmaker Seiko

Government Sanctions: No Ransomware Please, We're British

Researchers Quietly Cracked Zeppelin Ransomware Keys

New Ransomware Actor 8Base Rivals LockBit in Extortion

The Hidden Benefits of Negotiating With Ransomware Attackers

Are Akira Ransomware's Crypto-Locking Malware Days Numbered?

Gouda Hacker: Charges Tie to Ransomware Hit Affecting Cheese

Breach Roundup: Effects of ISP Ransomware Attack in Colombia

LockBit Ransomware Group Reportedly Behind Royal Mail Attack

Ransomware Continues to Plague European Healthcare Sector

The Double-Edged Sword of Crypto in Ransomware

Colorado Warns Ransomware Attack Caused Massive Data Breach

CISA Warns That Royal Ransomware Is Picking Up Steam

Play Ransomware Using MSPs and N-Days to Attack

Vendor Ransomware Breach Affects 942,000 Patients

Ransomware Hit Disrupts Real Estate Property Listings in US

GUEST ESSAY: Caring criminals — why some ransomware gangs now avoid targeting hospitals

Alleged Babuk Ransomware Hacker 'Wazawaka' Indicted in US

Ransomware Leak Sites Attract More Attacks

Conti's Legacy: What's Become of Ransomware's Most Wanted?

Russian Ransomware Group Shuts Down Major Japanese Port

Stay Connected