Security Affairs

MARCH 13, 2025

The Medusa ransomware operation hit over 300 organizations in critical infrastructure sectors in the United States until February 2025. The FBI, CISA, and MS-ISAC have issued a joint advisory detailing Medusa ransomware tactics, techniques, and indicators of compromise (IOCs) based on FBI investigations as recent as February 2025.

Ransomware 69

Ransomware Encryption Cryptocurrency Insurance 69

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. Reached by phone today, Jansson said he quit the company in August, right around the time Gunnebo disclosed the thwarted ransomware attack.

Hacking 359

Hacking Ransomware Banking Accountability 359

Security Affairs

MAY 11, 2021

The FBI and Australian Australian Cyber Security Centre (ACSC) warn of an ongoing Avaddon ransomware campaign targeting organizations worldwide. “The Australian Cyber Security Centre (ACSC) is aware an ongoing ransomware campaign utilising the Avaddon Ransomware malware. . ” reads the alert published by ACSC.

Ransomware 139

Ransomware Backups Antivirus DDOS 139

SecureWorld News

JANUARY 16, 2025

A report from 2023 revealed that 67% of energy and utility companies faced ransomware attacks, with many incidents exploiting unpatched vulnerabilities. Develop backup and recovery plans: Data recovery plans are essential to mitigate the impact of cyber incidents.

Energy and Utilities 107

Energy and Utilities IoT Artificial Intelligence Backups 107

CyberSecurity Insiders

SEPTEMBER 12, 2021

Japan -based camera and binocular manufacturer Olympus that is also into the manufacturing of medical devices has revealed in an official statement that its servers were targeted by BlackMatter Ransomware group that could have disrupted the computers systems in network operating in Middle East, Europe and Africa.

Ransomware 128

Ransomware Manufacturing Backups Encryption 128

CyberSecurity Insiders

APRIL 9, 2021

European Enterprises mainly involved in manufacturing are being targeted by a new strain of Ransomware dubbed as Cring and confirmed sources say that the malware is being spread by exploitation of Fortinet VPN Vulnerability.

Ransomware 140

Ransomware VPN Manufacturing Backups 140

IT Security Guru

AUGUST 19, 2024

Ransomware attacks are a growing menace. By recognising early warning indicators and addressing security gaps proactively, entities can prevent themselves from falling victim to ransomware. Cybercriminals often encrypt live data and demand ransom for access, corrupting backups and turning off security software.

Ransomware 136

Ransomware Backups Social Engineering Manufacturing 136

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” ” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. ” reads the message published on the leak site.

Manufacturing 98

Manufacturing Ransomware Engineering Hacking 98

Security Affairs

NOVEMBER 19, 2023

8Base ransomware operators were observed using a variant of the Phobos ransomware in a recent wave of attacks. Cisco Talos researchers observed 8Base ransomware operators using a variant of the Phobos ransomware in recent attacks. The ransomware component is then decrypted and loaded into the SmokeLoader process’ memory.

Ransomware 140

Ransomware Encryption Backups Malware 140

CyberSecurity Insiders

APRIL 15, 2021

In 2020, ransomware was the most widely-used method of delivering cyber attacks, accounting for 23% of security events handled by the IBM Security X-Force. A distant second to ransomware, the report says, was data theft (13%), followed by server access (10%). Ransomware is undeniably the top attack type,” according to the report.

Ransomware 140

Ransomware Manufacturing Phishing Accountability 140

Security Affairs

AUGUST 21, 2020

Experts at threat intelligence firm Cyble came across a post published by Maze ransomware operators claiming to have breached the steel sheet giant Hoa Sen Group. 1 company in the field of manufacturing and trading steel sheet in Vietnam and the leading exporter of steel sheet in Southeast Asia. Hoa Sen Group is the no.1

Ransomware 145

Ransomware Hacking Advertising Backups 145

Webroot

OCTOBER 31, 2024

This year has seen ransomware groups adapt and innovate, pushing the boundaries of their malicious capabilities and evasiveness from law enforcement. The ransomware sector, in particular, has witnessed the emergence of “business models,” with ransomware-as-a-service (RaaS) dominating the scene.

Malware 104

Malware Ransomware Passwords Healthcare 104

Security Affairs

OCTOBER 26, 2021

The FBI published a flash alert to warn of the activity of the Ranzy Locker ransomware that had already compromised tens of US companies. The FBI published a flash alert to warn of Ranzy Locker ransomware operations that had already compromised at least 30 US companies this year. SecurityAffairs – hacking, Ranzy Locker ransomware).

Ransomware 143

Ransomware Firmware Antivirus Accountability 143

Security Affairs

JANUARY 16, 2022

QNAP NAS devices are under attack, experts warn of a new Qlocker ransomware campaign that hit devices worldwide. A new wave of Qlocker ransomware it targeting QNAP NAS devices worldwide, the new campaign started on January 6 and it drops ransom notes named !!!READ_ME.txt READ_ME.txt on infected devices.

Ransomware 139

Ransomware Encryption Backups Firmware 139

Security Affairs

AUGUST 15, 2020

Sodinokibi (REvil) ransomware operators announced on Friday to have hacked Brown-Forman, one of the largest U.S. Sodinokibi (REvil) ransomware operators announced last week to have breached the network of the Brown-Forman, one of the largest U.S. firm in the spirits and wine business. firm in the spirits and wine business.

Ransomware 144

Ransomware Advertising Hacking Encryption 144

Hacker Combat

JUNE 2, 2022

ransomware to conduct the cyber-attack, the hackers threaten to expose stolen files unless the company pays a ransom. The factory specializes in manufacturing, consumer electronics, medical devices, and industrial operations. The ransomware gang demanded over $34 million in bitcoin to be paid as ransom. using the LockBit 2.0

Ransomware 132

Ransomware Manufacturing Antivirus Cyber Risk 132

Security Affairs

MAY 25, 2021

The audio equipment manufacturer Bose Corporation said it was the victim of a ransomware attack that took place earlier this year, on March 7. Bose Corporation has announced it was the victim of a ransomware attack that took place earlier this year, on March 7. Bose first detected the malware/ransomware on Bose’s U.S.

Ransomware 138

Ransomware Malware Cyber Attacks Backups 138

Security Affairs

AUGUST 9, 2021

ransomware attacks against Australian organizations starting July 2021. ransomware attacks against Australian organizations in multiple industry sectors starting July 2021. The Australian agency also published 2021-006: ACSC Ransomware Profile – Lockbit 2.0 ransomware. . ransomware. in Australia since 2020.

Ransomware 121

Ransomware Retail Manufacturing Encryption 121

Hot for Security

JUNE 2, 2021

In the early days of ransomware things were fairly simple: malware would infect your company’s infrastructure, encrypting your valuable data with a secret key that was only known to your attackers. If you had shown the foresight of making secure backups in advance, you could get back up and running again.

Encryption 138

Encryption Ransomware Backups Hacking 138

Security Affairs

MARCH 26, 2021

The Federal Bureau of Investigation (FBI) issued an alert to warn that the Mamba ransomware is abusing the DiskCryptor open source tool to encrypt entire drives. Mamba ransomware is one of the first malware that encrypted hard drives rather than files that was detected in public attacks. ” reads the alert published by the FBI.

Ransomware 145

Ransomware Encryption Passwords Malware 145

Malwarebytes

SEPTEMBER 3, 2021

The FBI has issued a Private Industry Notification (PIN) about cybercriminal actors targeting the food and agriculture sector with ransomware attacks. Ransomware attacks targeting the food and agriculture sector disrupt operations, cause financial loss, and negatively impact the food supply chain. ” Internet of Things.

Ransomware 143

Ransomware Manufacturing Passwords Internet 143

Security Affairs

SEPTEMBER 3, 2021

FBI warns ransomware gangs are actively targeting organizations in the food and agriculture sector. Small farms, large producers, processors and manufacturers, and markets and restaurants are particularly exposed to ransomware attacks. The good news is in the latter attack the victims restored its backups.

Ransomware 119

Ransomware Passwords Backups Firmware 119

Security Affairs

NOVEMBER 13, 2023

The LockBit ransomware group published data allegedly stolen from the aerospace giant Boeing in a recent attack. The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022).

Ransomware 136

Ransomware Authentication Backups Manufacturing 136

Digital Shadows

JANUARY 14, 2025

Key Findings The last quarter of 2024 proved to be a pivotal period for ransomware activity, marked by emerging threats and unexpected shifts among established groups. Ransomware Activity Hits All-Time High in December Ransomware attacks have been climbing steadily over the past few years, despite some temporary dips along the way.

Ransomware 126

Ransomware Social Engineering Phishing VPN 126

CyberSecurity Insiders

FEBRUARY 2, 2023

To those new to QNAP, the company is into the manufacturing of network attacks storage devices and has been constantly facing issued regarding security for the past 2 years. So, such appliances can not only serve as simple file servers or backup nodes, but can also serve as computing servers for basic needs. S SSD support.

Ransomware 119

Ransomware Backups Manufacturing Encryption 119

Security Affairs

MAY 13, 2021

FBI and DHS’s CISA have published a joint alert on DarkSide ransomware activity after the disruptive attack on Colonial Pipeline. FBI and DHS’s CISA have published a joint alert to warn of ransomware attacks conducted by the DarkSide group. The group provides Ransomware-as-a-Service (RaaS) to a network of affiliates.

Ransomware 142

Ransomware Healthcare Phishing Risk 142

Malwarebytes

AUGUST 16, 2022

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint Cybersecurity Advisory (CSA) about Zeppelin ransomware. Zeppelin, aka Buran, is a ransomware-as-a-service (RaaS) written in Delphi and built upon the foundation of VegaLocker. Mitigation. Authentication.

Ransomware 95

Ransomware Backups Passwords Authentication 95

Malwarebytes

MAY 24, 2023

The BlackBasta ransomware group has already claimed responsibility for the attack through its leak-site. And as we noted in our report on ransomware in Germany , in the last year Black Basta has had a liking for targets in Germany, and conducts attacks there far more frequenty than in the UK or France. Prevent intrusions.

Ransomware 96

Ransomware Backups Manufacturing Encryption 96

Malwarebytes

MARCH 6, 2023

As part of its StopRansomware effort, the Cybersecurity and Infrastructure Security Agency (CISA) has published a Cybersecurity Advisory (CSA) about Royal ransomware. Royal ransomware is a Ransomware-as-a-service (Raas) that first made an appearance in January 2022. How to avoid ransomware Block common forms of entry.

Ransomware 94

Ransomware Backups Internet Internet 94

Malwarebytes

MAY 11, 2021

Both the Australian Cyber Security Centre (ACSC) and the US Federal Bureau of Investigation (FBI) have issued warnings about an ongoing cybercrime campaign that is using Avaddon ransomware. In a separate advisory (pdf) , the ACSC says it is also aware of an ongoing ransomware campaign using the Avaddon Ransomware malware.

Ransomware 123

Ransomware VPN Encryption Cybercrime 123

Malwarebytes

FEBRUARY 19, 2023

Applied Materials, one of the world’s leading suppliers of equipment, services, and software for the manufacture of semiconductors, has warned that its second-quarter sales are likely to be hurt to the tune of $250 million due to a cybersecurity attack at one of its suppliers. How to avoid ransomware Block common forms of entry.

Ransomware 97

Ransomware Backups Manufacturing Marketing 97

The Last Watchdog

FEBRUARY 20, 2023

One report showed ransomware attacks increased by 80 percent in 2022, with manufacturing being one of the most targeted industries. The Ward Hadaway law firm lost sensitive client data to ransomware purveyors who demanded $6 million, or else they’d publish the data from the firm’s high profile clients online.

Ransomware 124

Ransomware Education Hacking Backups 124

eSecurity Planet

APRIL 6, 2023

Ransomware is a type of malicious program, or malware, that encrypts files, documents and images on a computer or server so that users cannot access the data. Ransomware is the most feared cybersecurity threat and with good reason: Its ability to cripple organizations by locking their data is a threat like no other.

Ransomware 98

Ransomware Backups Encryption Cybersecurity 98

SecureList

MAY 12, 2021

As the world marks the second Anti-Ransomware Day, there’s no way to deny it: ransomware has become the buzzword in the security community. Yet, much of the media attention ransomware gets is focused on chronicling which companies fall prey to it. Part I: Three preconceived ideas about ransomware.

Ransomware 145

Ransomware Encryption Malware Cybercrime 145

CyberSecurity Insiders

JULY 6, 2022

Maui Ransomware is being spread by state-funded hackers of North Korea and it confirmed this in a joint statement released by the FBI, CISA, and Department of Treasury on a collective note. At the same, it has issued an advisory to the health care sector on how to deal with the incident and the risks involved in ransomware payments.

Ransomware 88

Ransomware Healthcare Encryption Backups 88

SecureWorld News

APRIL 20, 2023

CommScope, a network infrastructure company based in North Carolina with more than 30,000 global employees, has suffered a data breach and leak following an apparent ransomware attack last month. Most of the files were in Spanish, according to SiliconAngle , "suggesting that the ransomware attack occurred in a Spanish-speaking country.

Data breaches 96

Data breaches Ransomware Education Backups 96

Security Affairs

APRIL 16, 2023

NCR was the victim of the BlackCat/ALPHV ransomware gang, the attack caused an outage on the company’s Aloha PoS platform. It manufactures self-service kiosks, point-of-sale terminals, automated teller machines, check processing systems, and barcode scanners. the fashion giant Moncler and the Swissport.

Ransomware 98

Ransomware Manufacturing Backups Education 98