Who’s Behind the GandCrab Ransomware?

Krebs on Security

The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims.

More US Cities Battered by Ransomware

Data Breach Today

cities and other governmental units reportedly have been hit by ransomware in an unrelenting wave that has proved profitable for hackers. Infected City Fires IT Manager; New Victims in Florida, Georgia More U.S.

QuickBooks Cloud Hosting Firm iNSYNQ Hit in Ransomware Attack

Krebs on Security

Cloud hosting provider iNSYNQ says it is trying to recover from a ransomware attack that shut down its network and has left customers unable to access their accounting data for the past three days. Data Breaches iNSYNQ ransomware attack

Cleaning Up After Ransomware Attacks Isn't Easy

Data Breach Today

Two Recent Attacks Illustrate the Challenges Involved The experiences of two healthcare organizations that are still recovering from recent ransomware attacks after they refused to pay a ransom illustrate the challenges these incidents pose long after the initial attack

MegaCortex Ransomware Demands Millions From Victims

Data Breach Today

Post-Ransomware Attack, Florida City Pays $600K

Threatpost

Riviera Beach, a Florida city, is coughing up $600,000 to hackers after a ransomware attack brought down its computer systems. Hacks Malware Atlanta ransomware Baltimore ransomware Data malicious email Phishing ransom payment ransomware riviera beach ransomware attack

Fingerpointing Over Baltimore's Ransomware Attack

Data Breach Today

The latest edition of the ISMG Security Report analyzes the "blame game" in the wake of a ransomware attack against the city of Baltimore. Also featured: Discussions of cyberthreats in the financial services sector and open source security concerns

Mobile Ransomware Targets Android Users Through SMS

Data Breach Today

Can Infect Multiple Contacts With Malicious Links A newly discovered mobile ransomware strain called Filecoder.C Filecoder.C

Johannesburg Utility Recovering After Ransomware Attack

Data Breach Today

Incident Plunges Parts of South Africa City Into Dark City Power, the local electrical utility that powers Johannesburg in South Africa, is recovering Friday after an unknown ransomware variant that locked-up the company's applications, network and databases for most of the day on Thursday.

Ransomware Claims to Fund Child Cancer Treatments

Data Breach Today

Separately, Texas City's Operations Disrupted by Crypto-Locking Ransomware Ransomware attacks continue, with the city of Del Rio, Texas, saying its operations have been disrupted by crypto-locking malware.

Ransomware Attack Costs Norsk Hydro $40 Million - So Far

Data Breach Today

Norwegian Aluminum Maker Still Fighting LockerGoga Ransomware Attack Norsk Hydro reports that a March 18 ransomware attack has already cost the aluminum manufacturer more than $40 million, and the company continues to bring its systems back online

Aluminum Giant Norsk Hydro Hit by Ransomware

Data Breach Today

Crypto-Locking Malware Attack Results in 'Temporary Stoppage at Several Plants' Norsk Hydro, one of the world's largest aluminum producers, has been hit by a crypto-locking ransomware attack that began at one of its U.S.

Cover Your NAS Against Nasty Cr1ptT0r Ransomware

Data Breach Today

Crypto-Locking Extortion Targets Internet-Exposed D-Link Devices Criminals wielding a new strain of ransomware called Cr1ptT0r are targeting network-attached storage users.

Texas Hospital Hit With Dharma Ransomware Attack

Data Breach Today

Altus Baytown Hospital Among Latest Healthcare Cyberattack Victims An attack on Altus Baytown Hospital in Texas is the latest ransomware incident reported to federal regulators as a health data breach. What other major ransomware incidents are impacting the healthcare sector

Ransomware Attack on Vendor Affects 600,000

Data Breach Today

But what makes breach determination in ransomware attacks so difficult

Norsk Hydro's Ransomware Headache

Data Breach Today

The latest edition of the ISMG Security Report discusses the recent ransomware attack on aluminum giant, Norsk Hydro. Plus, confessions of a former LulzSec and Anonymous hacktivist, and the growing problem of cyber extortion

iNSYNQ Continues Recovery From MegaCortex Ransomware Attack

Data Breach Today

Cloud Hosting Provider's Customers Affected A week after a ransomware attack locked up customer files and data at online cloud hosting provider iNSYNQ, the company is continuing to recover and restore its internal infrastructure.

Police Push Free Decryptor for GandCrab Ransomware

Data Breach Today

But the ransomware gang appears to already be prepping a new version

Report: Ransomware Targets QNAP Storage Devices

Data Breach Today

Attackers Demand Bitcoin Ransom After Encrypting Data A new ransomware strain called eCh0raix is targeting enterprise storage devices sold by QNAP Network by exploiting vulnerabilities in the gear and bypassing weak credentials using brute-force techniques, warns security firm Anomali

Baltimore Recovering From Second Ransomware Attack

Data Breach Today

This Time, City Hit with RobbinHood Malware Baltimore is recovering from another ransomware attack - the second in a little over a year. This time, officials say, the city was attacked by RobbinHood malware

Report: No ‘Eternal Blue’ Exploit Found in Baltimore City Ransomware

Krebs on Security

have been held hostage by a ransomware strain known as “ Robbinhood.” “We took a look at it and found a pretty vanilla ransomware binary,” Stewart said. A significant number of these customers were infected by the ransomware.”

Second Florida City Pays Up Following Ransomware Attack

Data Breach Today

After Struggling With Recovery, City Negotiates a Ransom Payment A second small city in Florida is paying off cybercriminals to recover from a ransomware attack that crippled the municipality's local network.

Mental Healthcare Providers Respond to Ransomware Attacks

Data Breach Today

Two Entities Hit - One Pays Ransom; the Other Doesn't Two recent ransomware attacks on mental healthcare providers serve as reminders of the security incident response and risk mitigation pressure faced by entities handling especially sensitive patient information

LooCipher: The New Infernal Ransomware

Security Affairs

A new Ransomware appeared in the threat landscape, the malware began to threats the digital world. A new Ransomware began to threats the digital world. Unlike most ransomware, LooCipher uses a macro-weaponized document as dropper of the real threat. Ransomware excluded folders.

Protecting Against Ransomware Attacks: A Checklist

Threatpost

In the second of a two part series discussing recent ransomware attacks against municipalities, Shawn Taylor with Forescout talks about how cities can protect themselves. Malware Podcasts Atlanta ransomware city lake Florida ransomware Cybersecurity malware ransom ransomware riviera beach ransomware

Ransomware Attack Impacts 522,000 Patients in Puerto Rico

Data Breach Today

A Medical Center and a Children's Hospital Among Latest Victims A medical center and a children's hospital in Puerto Rico are victims of a recent ransomware attack impacting a total of more than a half million individuals.

Report: New Ransomware Targets QNAP Storage Devices

Data Breach Today

Attackers Demand Bitcoin Ransom After Encrypting Data A new ransomware strain called eCh0raix is targeting enterprise storage devices sold by QNAP Network by exploiting vulnerabilities in the gear and bypassing weak credentials using brute-force techniques, according to the security firm Anomali

Georgia County Pays $400,000 to Ransomware Attackers

Data Breach Today

Cybercrime Gang Wielding Ryuk Eyed as Culprit Officials in Jackson County, Georgia, along with the FBI are investigating a ransomware attack that crippled IT systems over a two-week period and reportedly led local officials to pay a bitcoin ransom worth $400,000 to restore systems and infrastructur

Florida City Pays Ransomware

Schneier on Security

Learning from the huge expenses Atlanta and Baltimore incurred by refusing to pay ransomware, the Florida City of Riveria Beach decided to pay up. hacking malware ransomware

Analysis: Dark Web Arrests Also Led to Ransomware Disruption

Data Breach Today

Coveware Says 'Dream Market' Site Shut Down, Hampering Ransomware Attackers Arrests made last week by European, U.S.

Ransomware Re-examined: To Pay or Not to Pay?

Data Breach Today

Fortinet's Sonia Arista on the Dilemmas Facing CISOs Ransomware plays on ever-bigger stages, but the fundamental question remains: To pay or not to pay? Fortinet's Sonia Arista, a former CISO, weighs in on ransomware and other hot breach trends

North Carolina County Suffers Repeat Ransomware Infections

Data Breach Today

Attackers have hit North Carolina's Orange County with ransomware for the third time in six years. Third Time is the Charm as Orange County Keeps Having to Recover? Government officials say IT teams have been working overtime to restore systems, and that no data has been lost

Crypto-Locking Kraken Ransomware Looms Larger

Data Breach Today

Ransomware-as-a-Service Operation Joins Forces With Fallout Exploit Kit A slick ransomware-as-a-service operation called Kraken Cryptor has begun leveraging the Fallout exploit kit to help it score fresh victims, researchers from McAfee and Recorded Future warn.

Dharma Gang Pushes Phobos Crypto-Locking Ransomware

Data Breach Today

Mental Health Providers Respond to Ransomware Attacks

Data Breach Today

Two Entities Hit - One Pays Ransom; the Other Doesn't Two recent ransomware attacks on mental health providers serve as reminders of the security incident response and risk mitigation pressure faced by entities handling especially sensitive patient information

Is ‘REvil’ the New GandCrab Ransomware?

Krebs on Security

The cybercriminals behind the GandCrab ransomware-as-a-service (RaaS) offering recently announced they were closing up shop and retiring after having allegedly earned more than $2 billion in extortion payments from victims.

Second Florida City Pays Hackers $500k Post-Ransomware Attack

Threatpost

After being hit by a ransomware attack, the second Florida city this month has opted to pay hackers their requested ransom. Government Hacks Malware Atlanta ransomware Baltimore ransomware lake city malware malware attack ransom ransomware Ransomware Attack riviera beach security city

Ransomware Increasingly Hits State and Local Governments

Data Breach Today

Yet These Victims Are Less Likely to Pay Any Ransom, Recorded Future Finds Over the past two years, the number of ransomware attacks against state and local government agencies has increased.

Cloud Hosting Provider DataResolution.net Battling Christmas Eve Ransomware Attack

Krebs on Security

Cloud hosting provider Dataresolution.net is struggling to bring its systems back online after suffering a ransomware infestation on Christmas Eve, KrebsOnSecurity has learned.

Texas Hospital Catches Dharma Ransomware Infection

Data Breach Today

Altus Baytown Hospital Among Latest Healthcare Cyberattack Victims An attack on Altus Baytown Hospital in Texas is the latest ransomware incident reported to federal regulators as a health data breach. What other major ransomware incidents are impacting the healthcare sector