Krebs on Security

NOVEMBER 14, 2024

In February, he and Ermakov were arrested on charges of operating a short-lived ransomware affiliate program in 2021 called Sugar (a.k.a. Shefel claims his Sugar ransomware affiliate program was a bust, and never generated any profits. Sugar Locker), which targeted single computers and end-users instead of corporations.

Retail 254

Retail Advertising Cryptocurrency Marketing 254

Security Affairs

DECEMBER 21, 2024

Romanian national was sentenced to 20 years in prison for his role in NetWalker ransomware attacks, pleading guilty to fraud charges in June. Romanian national Daniel Christian Hulea, 30, was sentenced to 20 years in prison for his role in NetWalker ransomware attacks. in cryptocurrency obtained from ransom payments.

Ransomware 107

Ransomware Healthcare Government Cryptocurrency 107

Krebs on Security

JANUARY 28, 2022

In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV (a.k.a. “ BlackCat “), considered to be the first professional cybercrime group to create and use a ransomware strain written in the Rust programming language. Image: Varonis. ” Meanwhile, the U.S.

Ransomware 328

Ransomware Accountability Cybercrime Malware 328

The Last Watchdog

DECEMBER 16, 2021

In 2021, law enforcement continued making a tremendous effort to track down, capture and arrest ransomware operators, to take down ransomware infrastructure, and to claw back ransomware payments. These transformations for ransomware groups will become the source of new attacks. Before BlackMatter it was DarkSide.

CISO 262

CISO Ransomware Risk Authentication 262

CyberSecurity Insiders

AUGUST 18, 2021

SonicWall Cyber Threat report has confirmed that the year 2021 witnessed a record number of ransomware attacks in just 6 months, taking the number to 304.3 Coming to the ransomware spread statistics, SonicWall observed that June 2021 alone witnessed over 78.4 million ransomware attacks.

Ransomware 133

Ransomware Cryptocurrency Cyber threats Threat Reports 133

Security Affairs

MARCH 13, 2025

The Medusa ransomware operation hit over 300 organizations in critical infrastructure sectors in the United States until February 2025. The FBI, CISA, and MS-ISAC have issued a joint advisory detailing Medusa ransomware tactics, techniques, and indicators of compromise (IOCs) based on FBI investigations as recent as February 2025.

Ransomware 69

Ransomware Encryption Cryptocurrency Insurance 69

SecureWorld News

NOVEMBER 22, 2024

The attacks have resulted in millions of dollars in theft, including cryptocurrency and sensitive corporate data, showcasing the ongoing threat of organized cybercrime. Scattered Spider has gained infamy for its high-profile cyberattacks, including the ransomware assault on MGM Casino in 2023 , which caused widespread disruption.

Phishing 102

Phishing Identity Theft Cryptocurrency Cybercrime 102

SecureList

MAY 12, 2021

As the world marks the second Anti-Ransomware Day, there’s no way to deny it: ransomware has become the buzzword in the security community. Yet, much of the media attention ransomware gets is focused on chronicling which companies fall prey to it. Part I: Three preconceived ideas about ransomware.

Ransomware 145

Ransomware Encryption Malware Cybercrime 145

CyberSecurity Insiders

MARCH 10, 2022

But here’s a news piece that gives details of a ransomware group that paid $6 million in salaries last year and even tried to develop its cryptocurrency. Conti Ransomware group is the hacking group in discussion and is reported to have been led by an individual code named ‘Stern’.

Cryptocurrency 119

Cryptocurrency Ransomware Banking Hacking 119

Security Affairs

NOVEMBER 21, 2024

Between September 2021 and April 2023, the hackers carried out phishing attacks to steal login credentials from employees of 12 companies and individuals. Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts.

Cybercrime 109

Cybercrime Identity Theft Cryptocurrency Phishing 109

Security Affairs

MARCH 8, 2021

Experts warn of ongoing attacks targeting QNAP network-attached storage (NAS) devices to abuse them in cryptocurrency mining. Researchers at 360Netlab are warning of a cryptocurrency malware campaign targeting unpatched QNAP network-attached storage (NAS) devices. Unity is an XMRig cryptocurrency miner. and Quick.tar.gz.

Cryptocurrency 139

Cryptocurrency Firmware Malware Threat Detection 139

Security Affairs

JANUARY 3, 2022

Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses and disruption of the operations? The systems at the company were infected with the Phoenix Locker, a variant of ransomware tracked as Hades that was part of the arsenal of the cybercrime group known as Evil Corp.

Cyber Attacks 140

Cyber Attacks Ransomware Hacking Insurance 140

Krebs on Security

FEBRUARY 1, 2024

government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX , which had just filed for bankruptcy on that same day. A graphic illustrating the flow of more than $400 million in cryptocurrencies stolen from FTX on Nov. 11-12, 2022.

Cryptocurrency 296

Cryptocurrency Ransomware Retail Government 296

SecureList

FEBRUARY 23, 2022

The year 2021 was eventful in terms of digital threats for organizations and individuals, and financial institutions were no exception. share in 2020 to the second most common in 2021 with 12.2%. The mass change in cybercriminals’ objectives and methods seen in 2020 continued in 2021. Phishing: In 2021, 8.2%

Banking 139

Banking Phishing Cryptocurrency Malware 139

Krebs on Security

NOVEMBER 8, 2021

Department of Justice today announced the arrest of Ukrainian man accused of deploying ransomware on behalf of the REvil ransomware gang, a Russian-speaking cybercriminal collective that has extorted hundreds of millions from victim organizations. million in cryptocurrency sent to another REvil affiliate, and that the U.S.

Ransomware 346

Ransomware Cybercrime System Administration Passwords 346

SecureList

MARCH 3, 2022

2021 is the second year we have spent living and working in the pandemic. By 2021 everyone got used to pandemic limitations – industrial organization employees and IT security professionals and threat actors. If we compare the numbers from 2020 and 2021, we see that 2021 looks more stable, particularly in H2. Ransomware.

Spyware 129

Spyware Ransomware Cryptocurrency Phishing 129

Security Affairs

JULY 23, 2022

DoJ seized $500,000 worth of Bitcoin from North Korea-linked threat actors who are behind the Maui ransomware. Department of Justice (DoJ) has seized $500,000 worth of Bitcoin from North Korean threat actors who used the Maui ransomware to target several organizations worldwide. ” reads the announcement published by DoJ.

Ransomware 145

Ransomware Healthcare Cryptocurrency Encryption 145

Security Affairs

FEBRUARY 13, 2022

Organizations have paid more than $600 million in cryptocurrency during 2021, nearly one-third to the Conti ransomware gang. and Australia have published a joint advisory warning of an increased globalised threat of ransomware worldwide in 2021. Last week, cybersecurity agencies from the U.K., added the company.

Ransomware 98

Ransomware Cryptocurrency Cybercrime Malware 98

Security Affairs

JULY 15, 2022

Microsoft researchers linked the Holy Ghost ransomware (H0lyGh0st) operation to North Korea-linked threat actors. The Microsoft Threat Intelligence Center (MSTIC) researchers linked the activity of the Holy Ghost ransomware (H0lyGh0st) operation to a North Korea-linked group they tracked as DEV-0530. ” concludes Microsoft.

Ransomware 144

Ransomware Cryptocurrency Government Small Business 144

SecureList

MAY 10, 2021

Q1 2021 saw the appearance of two new botnets. Cybercriminals exploited several critical vulnerabilities in programs installed on victim devices, including the newly discovered CVE-2021-3007. Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. News overview.

DDOS 138

DDOS Cryptocurrency Media Marketing 138

SecureList

FEBRUARY 10, 2022

Q4 2021 saw the appearance of several new DDoS botnets. The botnet hijacked new devices by exploiting the CVE-2021-22205 vulnerability, which GitLab patched in April 2021, and carried out DDoS attacks of over 1TB/s. A bug designated as CVE-2021-36260 was found in some Hikvision camera models and patched in September 2021.

DDOS 142

DDOS Cryptocurrency Marketing Accountability 142

Security Affairs

OCTOBER 16, 2021

billion worth of Bitcoin transactions to ransomware. billion worth of Bitcoin transactions likely associated with operations of top 10 most commonly reported ransomware variants. Studying data generated from ransomware-related SARs, the mean average total monthly suspicious amount of ransomware transactions was $66.4

Ransomware 131

Ransomware Cryptocurrency Hacking Cybercrime 131

CyberSecurity Insiders

JUNE 21, 2021

Australia’s labor party has introduced a bill titled Ransomware Payments Bill 2021 that makes it mandatory for victimized companies to notify the Australian Cyber Security Center (ACSC) before making a ransom payment to a hacker’s gang. A National Ransomware Strategy was being encouraged by labor from February this year.

Ransomware 91

Ransomware Cryptocurrency Cybersecurity Government 91

Malwarebytes

SEPTEMBER 19, 2023

The German police in cooperation with the US Secret Service have executed search warrants against suspected members of the DoppelPaymer ransomware group in Germany and Ukraine. Cryptocurrency investigators use specialized strategies to track down criminals. Although cryptocurrency is anonymous, that doesn't mean it's untraceable.

Ransomware 137

Ransomware Backups Cryptocurrency Cybercrime 137

Security Affairs

SEPTEMBER 3, 2021

USCYBERCOM is urging organizations to patch a critical CVE-2021-26084 flaw in Atlassian Confluence Server and Data Center, ahead of the Labor Day weekend. . US Cyber Command (USCYBERCOM) has issued an alert to warn US organizations to address Atlassian Confluence CVE-2021-26084 vulnerability immediately, ahead of the Labor Day weekend.

Authentication 134

Authentication Cryptocurrency Hacking Government 134

Security Affairs

DECEMBER 14, 2023

French police arrested a Russian national who is suspected of laundering money resulting from the criminal activity of the Hive ransomware gang. The French authorities arrested in Paris a Russian national who is suspected of laundering criminal proceeds for the Hive ransomware gang. anti-cybercrime (Ofac).”

Ransomware 140

Ransomware Cryptocurrency Cybercrime VPN 140

Security Boulevard

DECEMBER 21, 2021

Malware: Ransomware Attacks Don Not Let Up at the End of 2021. In what seems like an appropriate end to a year defined by an increased focus on ransomware, December proved to be a busy month for cyber defenders. Organizations of all kinds around the world fell victim to or became aware of ransomware attacks.

Ransomware 105

Ransomware Cryptocurrency Accountability Malware 105

CyberSecurity Insiders

JULY 22, 2021

Kaseya Software Company has released an update that all its software users who have fallen prey to the ransomware attack will receive a free decryptor to unlock their database files on a respective note. Going with the details, REvil is a ransomware group that is suspected to be linked to Russian Intelligence.

Ransomware 131

Ransomware Cryptocurrency Software Government 131

Bleeping Computer

NOVEMBER 12, 2021

This week, law enforcement struck a massive blow against the REvil ransomware operation, with multiple arrests announced and the seizure of cryptocurrency. [.].

Ransomware 103

Ransomware Cryptocurrency 103

Krebs on Security

SEPTEMBER 26, 2024

The government also indicted and sanctioned a top Russian cybercriminal known as Taleon , whose cryptocurrency exchange Cryptex has evolved into one of Russia’s most active money laundering networks. A 2016 screen shot of the Joker’s Stash homepage. The links have been redacted. A screenshot of a website reviewing PM2BTC.

Cryptocurrency 292

Cryptocurrency Cybercrime Retail Government 292

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. A ransomware attack is about as bad as a cyber attack can get. Jump to: What is ransomware? How ransomware works. Preventing ransomware. Ransomware attacks and costs.

Ransomware 97

Ransomware Backups Software Encryption 97

CyberSecurity Insiders

APRIL 21, 2022

Vulnerability in Microsoft Exchange Servers is allowing hackers to deploy hive ransomware and other backdoors, including Cobalt Strike Beacon, having capabilities of stealing cryptocurrency from wallets and deploy crypto mining software. High) to 9.8

Ransomware 118

Ransomware Cryptocurrency Encryption Software 118

SecureList

NOVEMBER 29, 2024

More than 90,000 users experienced ransomware attacks. Nearly 18% of all victims published on ransomware gangs’ data leak sites (DLSs) had been hit by RansomHub. According to the UK’s National Crime Agency (NCA), this individual also was behind the infamous Reveton ransomware Trojan spread in 2012 — 2014.

Mobile 105

Mobile Adware Ransomware Malware 105

CyberSecurity Insiders

JANUARY 10, 2022

Ragnar Locker Ransomware, notorious hacking group that spreads file encrypting malware to large-scale organizations, has hit a security firm this time and stole data to prove it’s worth. The post Ragnar Locker Ransomware strikes a cybersecurity firm appeared first on Cybersecurity Insiders.

Ransomware 135

Ransomware Cybersecurity IoT Cryptocurrency 135

SecureList

SEPTEMBER 9, 2021

The H1 2021 ICS threat report at a glance. During the first half of 2021 (H1 2021), the percentage of attacked ICS computers was 8% , which was 0.4 Top 15 countries and territories with the largest percentages of ICS computers on which malicious objects were blocked in H1 2021 ( download ). percentage points (p.p.)

Spyware 133

Spyware Media Internet Internet 133

CyberSecurity Insiders

AUGUST 25, 2021

All these days the government agencies and corporate networks were busy in combating known ransomware groups such as REvil, Conti, DarkSide, CLOP and Egregor along with Babuk, DopplePaymer and Ragnar. Going deep into the details, LockBit ransomware that existed since Sept’19 and has transformed into a new version dubbed 2.0

Ransomware 136

Ransomware Healthcare Cryptocurrency Government 136

SecureList

JULY 28, 2021

In terms of big news, Q2 2021 was relatively calm, but not completely eventless. Q2 2021 was no exception: in early July researchers at Netscout reported an increase in attacks using the Session Traversal Utilities for NAT (STUN) protocol. In general, DDoS ransomware attacks continued to gain momentum. News overview.

DDOS 145

DDOS DNS IoT Marketing 145