Security Affairs

MAY 30, 2020

Michigan State University is the last victim of the NetWalker ransomware, attackers threaten to leak stolen files if it will not pay the ransom in seven days. Michigan State University hit by ransomware gang, NetWalker ransomware operators are threatening to leak stolen files if the university will not pay the ransom in seven days.

Ransomware 137

Ransomware Advertising Backups Phishing 137

Security Affairs

AUGUST 21, 2020

The University of Utah admitted to have paid a $457,059 ransom in order to avoid having ransomware operators leak student information online. The university did not reveal the ransomware family involved in the attack. ” According to the University, the ransomware encrypted only 0.02% of the data stored on its servers.

Ransomware 145

Ransomware Cyber Insurance Insurance Advertising 145

Security Affairs

JULY 28, 2020

Cyble researchers reported that Nefilim ransomware operators allegedly targeted the Dussmann group, the German largest private multi-service provider. Researchers from threat intelligence firm Cyble reported that Nefilim ransomware operators allegedly targeted the Dussmann group, the German largest private multi-service provider.

Ransomware 140

Ransomware Data breaches Advertising Backups 140

Security Affairs

APRIL 9, 2020

million ransom to decrypt its files after being encrypted by the infamous Sodinokibi ransomware. “As part of this attack, the operators behind the Sodinokibi ransomware told BleepingComputer that they had encrypted the company’s entire network, deleted backup files, and copied more than 5GB of personal data.

Ransomware 144

Ransomware Encryption Advertising Backups 144

Security Affairs

SEPTEMBER 5, 2020

FBI issued a second flash alert about ProLock ransomware stealing data, four months after the first advisory published by the feds on the same threat. The FBI has issued the 20200901-001 Private Industry Notification about ProLock ransomware stealing data on September 1st. reads a report published by Group-IB. “The

Ransomware 145

Ransomware Advertising Malware Backups 145

Security Affairs

JUNE 12, 2020

A ransomware attack that targeted the offices of the City of Knoxville, Tennessee, forced to shut down its entire computer network. The city of Knoxville, Tennessee, has shut down its computer network following a ransomware attack. The City will use backup to resume operations, the good news is that backup servers were not affected.

Ransomware 141

Ransomware Backups Advertising Malware 141

Security Affairs

SEPTEMBER 20, 2020

National Cyber Security Centre (NCSC) has issued an alert about a surge in ransomware attacks targeting education institutions. National Cyber Security Centre (NCSC), has issued an alert about a surge in ransomware attacks against education institutions. backup servers, network shares, servers, auditing devices).

Education 145

Education Ransomware Antivirus Backups 145

Security Affairs

AUGUST 15, 2020

Sodinokibi (REvil) ransomware operators announced on Friday to have hacked Brown-Forman, one of the largest U.S. Sodinokibi (REvil) ransomware operators announced last week to have breached the network of the Brown-Forman, one of the largest U.S. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware 144

Ransomware Advertising Hacking Encryption 144

Security Affairs

AUGUST 4, 2020

Maze ransomware operators published internal data from LG and Xerox after the company did not pay the ransom. Ransomware crews are very active during these months, Maze ransomware operators have published tens of GB of internal data allegedly stolen from IT giants LG and Xerox following failed extortion attempts.

Ransomware 143

Ransomware Encryption Advertising Hacking 143

Security Affairs

JUNE 25, 2020

Maze ransomware operators claims to have breached the South Korean multinational electronics company LG Electronics. Researchers at Cyble discovered a data leak of LG Electronics published by Maze ransomware operators. Just after the WorldNet Telecommunications, the LG electronics fall as a victim of the Maze ransomware operators.”

Computers and Electronics 130

Computers and Electronics Ransomware Mobile Telecommunications 130

Krebs on Security

FEBRUARY 12, 2019

Email provider VFEmail has suffered what the company is calling “catastrophic destruction” at the hands of an as-yet unknown intruder who trashed all of the company’s primary and backup data in the United States. Every file server is lost, every backup server is lost. Founded in 2001 and based in Milwaukee, Wisc.,

Hacking 276

Hacking DDOS Backups Accountability 276

Security Affairs

AUGUST 6, 2020

Netwalker ransomware operators breached the networks of Forsee Power , a well-known player in the electromobility market. A new company has been added to the list of the victims of the Netwalker ransomware operators, it is Forsee Power , which provides advanced lithium-ion battery systems for any mobility application.

Ransomware 140

Ransomware VPN Advertising Marketing 140

Security Affairs

NOVEMBER 28, 2019

According to a confidential report from the Dutch National Cyber Security Centre (NCSC), at least 1,800 companies were infected with 3 ransomware. A confidential report published by the Dutch National Cyber Security Centre (NCSC) revealed that at least 1,800 companies are affected by three strain s of ransomware across the world.

Ransomware 142

Ransomware Advertising Backups Malware 142

Security Affairs

APRIL 19, 2019

A ransomware attack knocked the Weather Channel off the air for at least 90 minutes Thursday morning, federal law enforcement are investigating the incident. IT staff has restored the normal operations using the backups. The live show was interrupted due to a ransomware attack, likely an attempt to extort money to from the broadcaster.

Ransomware 111

Ransomware Backups Cyber Attacks Advertising 111

Security Affairs

NOVEMBER 3, 2018

According to the Symantec experts, the group behind the SamSam ransomware has continued to launch attacks against organizations during 2018. The SamSam ransomware is an old threat, attacks were observed in 2015 and the list of victims is long, many of them belong to the healthcare industry. Pierluigi Paganini.

Ransomware 111

Ransomware Healthcare Backups Encryption 111

Security Affairs

MAY 6, 2020

Australian shipping giant Toll informed its customers that it has shut down some IT systems due to a new ransomware attack. The Australian transportation and logistics giant Toll Group informed its customers that it has shut down some IT systems after a new ransomware attack, it is the second infection disclosed by the company this year.

Ransomware 134

Ransomware Encryption Backups Healthcare 134

Security Affairs

JUNE 17, 2020

system-on-chip maker MaxLinear disclosed a security incident, Maze ransomware operators infected some of its computing systems in May. MaxLinear restored some of the systems using its backups, despite Maze Ransomware threatened to leak over 1TB of data allegedly stolen before encrypting the infected systems. Pierluigi Paganini.

Ransomware 128

Ransomware Data breaches Advertising Insurance 128

Security Affairs

APRIL 22, 2020

The City of Torrance of the Los Angeles metropolitan area, California, is the last victim of the DoppelPaymer Ransomware, hackers also stole its data. Below the Tweet published the data breach notification service Under the Breach: Dopple ransomware group hacked into the government site of Torrance (California). million ransom.

Ransomware 124

Ransomware Advertising Backups Data breaches 124

Security Affairs

AUGUST 27, 2020

REvil ransomware operators claimed to have breached another healthcare organization, the victim is Valley Health Systems. “Recently, during the monitoring process of data leaks the Cyble Research Team identified a leak disclosure post in which the REvil ransomware operators claimed to have breached Valley Health Systems.”

Healthcare 121

Healthcare Ransomware Advertising Cyber Risk 121

The Last Watchdog

APRIL 29, 2019

Semperis is a security company, launched in 2014, that is entirely focused on AD – or, to put it more precisely, on delivering state-of-art AD cyber resilience, threat mitigation and rapid recovery from cyber breaches. This, in fact, was the service Semperis set out to provide when it launched in 2014.

Backups 207

Backups Ransomware Accountability Malware 207

Security Affairs

JUNE 2, 2020

The REvil/Sodinokibi ransomware operators have leaked the files allegedly stolen from the UK power grid middleman Elexon. In May Elexon , a middleman in the UK power grid network, was the victim of a cyber attack, its systems have been infected with the Sodinokibi ransomware. Pierluigi Paganini.

Ransomware 126

Ransomware Cyber Attacks Advertising Insurance 126

Security Affairs

MAY 21, 2020

Hackers attempted to exploit a zero-day flaw in the Sophos XG firewall to distribute ransomware to Windows machines, but the attack was blocked. In the new wave of attacks, hackers exploited the issue to distribute the Ragnarok Ransomware. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firewall 145

Firewall Ransomware Passwords VPN 145

Security Affairs

APRIL 24, 2019

were infected by the Ryuk ransomware on April 13, 2018. Law enforcement is investigating a ransomware attack that hit the City of Stuart on April 13, 2018. “City officials on Wednesday confirmed a computer virus that infected servers over the weekend was the result of a ransomware attack.” Pierluigi Paganini.

Ransomware 106

Ransomware Backups Malware Advertising 106

Security Affairs

AUGUST 26, 2019

A new ransomware, dubbed Nemty, appeared in the threat landscape over the weekend, it spreads via compromised RDP connections. A new ransomware, called Nemty ransomware, has been discovered over the weekend by malware researchers. Below the ransom note dropped by the Nemty ransomware after the encryption process is completed.

Ransomware 111

Ransomware Malware Antivirus Encryption 111

Security Affairs

AUGUST 12, 2020

The City of Lafayette, Colorado, USA, has been forced to pay $45,000 because they were unable to restore necessary files from backup. On July 27th, the systems at the City of Lafayette, Colorado, were infected with ransomware, the malicious code impacted phone services, email, and online payment reservation systems. Pierluigi Paganini.

Backups 143

Backups Advertising Ransomware Hacking 143

Security Affairs

JUNE 27, 2020

The group confirmed that the broadcasting of France 3 will be transferred to the headquarters of France Televisions, the company also activated the backup site in response to the incident. This isn’t the first attack that targeted French media, in 2019 ransomware operators hit the M6 ??group Pierluigi Paganini.

Cyber Attacks 145

Cyber Attacks Backups Advertising Media 145

Security Affairs

JANUARY 2, 2019

The Cloud hosting provider Dataresolution.net was hit by a ransomware-based attack on Christmas Eve that took down its systems. The Ryuk ransomware recently crippled printing and delivery operations for major U.S. The Ryuk ransomware appears connected to Hermes malware that was associated with the notorious Lazarus APT group.

Ransomware 110

Ransomware Encryption Advertising Backups 110

Security Affairs

DECEMBER 24, 2019

The FBI has issued a warning to the private industry of cyber attacks involving the LockerGoga and MegaCortex Ransomware. The FBI is warning the private industry of cyber attacks involving the LockerGoga and MegaCortex Ransomware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware 94

Ransomware Backups Encryption Cyber Attacks 94

Security Affairs

JUNE 13, 2019

Malware infections could be devastating for production environments, a ransomware infection halts production operations for days at airplane parts manufacturer ASCO. A ransomware attack has paralyzed the production in ASCO plants across several countries worldwide. A complaint has been submitted to the police.”

Ransomware 110

Ransomware Manufacturing Cyber Attacks Advertising 110

Security Affairs

NOVEMBER 29, 2018

DoJ charges two Iranian men over their alleged role in creating and spreading the infamous SamSam ransomware. Two Iranian men, Faramarz Shahi Savandi (34) and Mohammad Mehdi Shah Mansouri (27) have been charged by DoJ for their role in creating and distributing the dreaded SamSam ransomware. ” reads the DoJ indictment. .

Ransomware 109

Ransomware Encryption Advertising Backups 109

Security Affairs

DECEMBER 12, 2019

Experts found a new variant of the Vega ransomware, dubbed Zeppelin, targeting technology and healthcare companies across Europe, the US, and Canada. Unlike other variants of the Vega ransomware, the Zeppelin ransomware doesn’t infect users in Russia or other ex-USSR countries like Ukraine, Belorussia, and Kazakhstan.

Ransomware 94

Ransomware Encryption Healthcare Backups 94

Security Affairs

JANUARY 10, 2020

Officials at the Albany County Airport Authority revealed that New York airport servers were infected with ransomware on Christmas. Officials at the Albany County Airport Authority announced this week that a ransomware attack hit the New York airport and its computer management provider LogicalNet over Christmas. Pierluigi Paganini.

Ransomware 97

Ransomware Insurance VPN Backups 97

eSecurity Planet

FEBRUARY 15, 2022

Ransomware attacks on critical infrastructure and a surge in exploited vulnerabilities are getting the attention of U.S. BlackByte Ransomware Attack Methods, IoCs. The FBI-Secret Service warning came just ahead of news that the NFL’s San Francisco 49ers had also been hit by BlackByte ransomware. The FBI and U.S.

Ransomware 129

Ransomware Encryption Backups Accountability 129

Security Affairs

JULY 11, 2019

Malware researchers at two security firms Intezer and Anomali have discovered a new piece of ransomware targeting Network Attached Storage (NAS) devices. Experts at security firms Intezer and Anomali have separately discovered a new piece of ransomware targeting Network Attached Storage (NAS) devices. The malicious code appends.

Ransomware 111

Ransomware Encryption Malware Advertising 111

Security Affairs

DECEMBER 28, 2019

A Ryuk Ransomware attack has taken down the corporate IT network of a Maritime Transportation Security Act (MTSA) regulated facility. Ryuk Ransomware continues to infect systems worldwide, the U.S. The Ryuk ransomware was involved in a long string of attacks targeting cities, hospitals, and organizations worldwide.

Ransomware 98

Ransomware Advertising Encryption Phishing 98

Security Affairs

SEPTEMBER 5, 2019

Another US city was the victim of a ransomware attack, this time crooks hit the city of New Bedford, Massachusetts, asking for $5.3 Million Ransom, but… The systems of New Bedford, Massachusetts, were infected with ransomware and crooks asked for a $5.3 Then the city opted out to restore from backups. Pierluigi Paganini.

Ransomware 102

Ransomware Encryption Advertising Backups 102

Security Affairs

FEBRUARY 9, 2020

In December, Maastricht University was hit with ransomware attack, now the university admitted to have paid the ransom requested by crooks. In December 2019, Maastricht University (UM) announced that ransomware infected almost all of its Windows systems on December 23. The backup of a limited number of systems was also affected.”

Ransomware 143

Ransomware Cyber Attacks Backups Architecture 143