Security Affairs

JANUARY 26, 2025

On February 21, a cyber attack disrupted IT operation of the healthcare organization, and more than 100 Change Healthcare applications were impacted. Change Healthcare can confirm we are experiencing a cybersecurity issue perpetrated by a cybercrime threat actor who has represented itself to us as ALPHV/Blackcat.

Healthcare 129

Healthcare Data breaches Insurance Cybercrime 129

Security Boulevard

MARCH 17, 2021

Cyber attacks are a threat to businesses of all sizes and in all industries. With cybercrime rising by 600% during the pandemic, businesses are more vulnerable than ever to the financial and reputational repercussions of cyberattacks. By 2025, it is estimated that cybercrime will cost businesses worldwide $10.5

Cybercrime 138

Cybercrime Cyber Attacks Ransomware Healthcare 138

The Hacker News

JULY 16, 2024

The infamous cybercrime group known as Scattered Spider has incorporated ransomware strains such as RansomHub and Qilin into its arsenal, Microsoft has revealed.

Cyber Attacks 134

Cyber Attacks Social Engineering Ransomware Cybercrime 134

Krebs on Security

MAY 31, 2022

Costa Rica’s national health service was hacked sometime earlier this morning by a Russian ransomware group known as Hive. The intrusion comes just weeks after Costa Rican President Rodrigo Chaves declared a state of emergency in response to a data ransom attack from a different Russian ransomware gang — Conti.

Ransomware 305

Ransomware Government Hacking Media 305

Security Affairs

NOVEMBER 3, 2024

Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide PTZOptics cameras zero-days actively exploited in the wild New LightSpy spyware (..)

Cryptocurrency 109

Cryptocurrency Hacking Phishing Cyber Attacks 109

Security Affairs

OCTOBER 13, 2024

CISA adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog Three new Ivanti CSA zero-day actively exploited in attacks Ukrainian national pleads guilty in U.S. Every week the best security articles from Security Affairs are free in your email box.

Data breaches 116

Data breaches Cryptocurrency Artificial Intelligence Cybercrime 116

Security Affairs

MARCH 15, 2020

While the Coronavirus is spreading worldwide, a massive cyber attack hit the town hall of Marseille and the metropolis. According to sources informed of the fact, the cyber attack is unprecedented in its scale. At the time there are no details about the attack and the family of ransomware that hit the city.

Cyber Attacks 144

Cyber Attacks Ransomware Advertising Backups 144

Security Affairs

MARCH 5, 2025

Ransomware group Hunters International claims to have hacked Tata Technologies, threatening to leak 1.4 The Hunters International ransomware group claimed to have breached the Indian multinational technology company Tata Technologies, a Tata Motors subsidiary. TB of stolen data. The group claims the theft of 1.4

Technology 108

Technology Ransomware Engineering Manufacturing 108

The Hacker News

AUGUST 15, 2024

A cybercrime group with links to the RansomHub ransomware has been observed using a new tool designed to terminate endpoint detection and response (EDR) software on compromised hosts, joining the likes of other similar programs like AuKill (aka AvNeutralizer) and Terminator.

Cyber Attacks 141

Cyber Attacks Cybercrime Ransomware Software 141

Security Affairs

MARCH 21, 2020

The financial technology firm Finastra announced it has suffered a ransomware attack that took down its some of its systems. Finastra , the UK leading financial technology provider, announced that some of its servers were shut down in response to a ransomware attack that the company detected. billion in revenues.

Cyber Attacks 144

Cyber Attacks Data breaches Advertising Ransomware 144

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. ” reads the alert published by the FBI. Pierluigi Paganini.

Cybercrime 145

Cybercrime Education Accountability Phishing 145

The Last Watchdog

JUNE 21, 2020

Ransomware is undoubtedly one of the most unnerving phenomena in the cyber threat landscape. Related: What local government can do to repel ransomware Ransomware came into existence in 1989 as a primitive program dubbed the AIDS Trojan that was spreading via 5.25-inch inch diskettes. inch diskettes.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

NOVEMBER 22, 2019

The University Hospital Center (CHU) of Rouen was hit by the malware last week, the ransomware had a severe impact on the operations during the weekend. The AFP news agency reported that a ransomware attack on a hospital in Rouen last week caused “very long delays in care.” Pierluigi Paganini.

Ransomware 138

Ransomware Cybercrime Cyber Attacks Advertising 138

Security Affairs

APRIL 22, 2024

A cyber attack has been disrupting operations at Synlab Italia, a leading provider of medical diagnosis services, since April 18. Since April 18, Synlab Italia, a major provider of medical diagnosis services, has been experiencing disruptions due to a cyber attack.

Cyber Attacks 134

Cyber Attacks Backups Healthcare Media 134

Security Affairs

MARCH 12, 2021

Researchers warn of a surge in cyber attacks against Microsoft Exchange servers exploiting the recently disclosed ProxyLogon vulnerabilities. Microsoft researchers also spotted a ransomware gangs that is exploiting ProxyLogon flaws to spread a piece of malware tracked as DearCry. and also as DearCry. Pierluigi Paganini.

Cyber Attacks 143

Cyber Attacks Cybercrime Authentication Hacking 143

Security Affairs

SEPTEMBER 12, 2023

The charity organization Save the Children International revealed that it was hit by a cyber attack. The company disclosed the security incident after the ransomware gang BianLian listed the organization on its Tor leak site.

Cyber Attacks 134

Cyber Attacks Healthcare Education Data breaches 134

Krebs on Security

DECEMBER 3, 2021

Rarely do cybercriminal gangs that deploy ransomware gain the initial access to the target themselves. In this post we’ll look at the clues left behind by “ Babam ,” the handle chosen by a cybercriminal who has sold such access to ransomware groups on many occasions over the past few years. com and wwwpexpay[.]com.

Ransomware 338

Ransomware Passwords Accountability Cybercrime 338

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. Pierluigi Paganini.

Cybercrime 138

Cybercrime Security Intelligence Authentication Banking 138

Security Affairs

OCTOBER 8, 2021

The Dutch government will not tolerate ransomware attacks that could threaten national security, it will use intelligence or military services to curb them. “For several years, the threat of ransomware attacks has been increasing around the world.

Ransomware 140

Ransomware Cybercrime Government Cyber Attacks 140

Security Affairs

DECEMBER 8, 2024

Anna Jaques Hospital revealed thatthe ransomware attack it suffered last year has exposed sensitive health data for over 316,000 patients. On December 25, 2023, a ransomware attack hit the Anna Jaques Hospital. The hospital revealed that the security breach exposed sensitive health data for over 316,000 patients.

Data breaches 116

Data breaches Insurance Healthcare Ransomware 116

Security Affairs

MAY 10, 2021

FBI confirmed that the attack against the Colonial Pipeline over the weekend was launched by the Darkside ransomware gang. Federal Bureau of Investigation confirmed that the Colonial Pipeline was shut down due to a cyber attack carried out by the Darkside ransomware gang. The pipeline allows carrying 2.5

Ransomware 145

Ransomware Energy and Utilities Healthcare Cybercrime 145

Security Affairs

MARCH 3, 2021

Cybersecurity firm Qualys is the latest victim of a cyber attack, the company was likely hacked by threat actors that exploited a zero-day vulnerability in their Accellion FTA server. The attackers exfiltrate sensitive data from the target systems and then published it on the CLOP ransomware gang’s leak site.

Ransomware 145

Ransomware Cybersecurity Cyber Attacks Data breaches 145

Security Affairs

FEBRUARY 23, 2021

FireEye experts linked a series of attacks targeting Accellion File Transfer Appliance (FTA) servers to the cybercrime group UNC2546, aka FIN11. Security experts from FireEye linked a series of cyber attacks against organizations running Accellion File Transfer Appliance (FTA) servers to the cybercrime group UNC2546, aka FIN11.

Cybercrime 125

Cybercrime Software Ransomware Cyber Attacks 125

Security Affairs

APRIL 25, 2024

A ransomware attack on a Swedish logistics company Skanlog severely impacted the country’s liquor supply. Skanlog, a critical distributor for Systembolaget, the Swedish government-owned retail chain suffered a ransomware attack. Our systems, including our central business system, have been affected by the attack.

Ransomware 137

Ransomware Retail Cyber Attacks Backups 137

Security Affairs

MAY 22, 2021

Conti ransomware targeted over 400 organizations worldwide, 290 in the US, and at least 16 healthcare and first responder networks. The Federal Bureau of Investigation (FBI) revealed that the Conti ransomware gang has hit at least 16 healthcare and first responder organizations. SecurityAffairs – hacking, Conti Ransomware).

Ransomware 126

Ransomware Healthcare Cyber Attacks Cybercrime 126

Security Affairs

OCTOBER 20, 2020

The Nefilim ransomware operators have posted a long list of files that appear to belong to Italian eyewear and eyecare giant Luxottica. Security experts believe that threat actor exploited the above flaw to infect the systems at the company with ransomware. Luxottica Group S.p.A. ” explained Odysseus. Pierluigi Paganini.

Ransomware 144

Ransomware Cyber Attacks Advertising Retail 144

Security Affairs

SEPTEMBER 19, 2023

The cyber attack that hit the cleaning products manufacturer Clorox in August is still affecting the supply of the products to customers. In response to the cyber attack, the company has taken some of its systems offline while it was implementing additional “protections and hardening measures to further secure them”.

Cyber Attacks 129

Cyber Attacks Manufacturing Marketing Cybersecurity 129

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Security Affairs

MAY 5, 2024

FuckRansomware pic.twitter.com/uD09m7AukH — Jon DiMaggio (@Jon__DiMaggio) May 5, 2024 However, researchers at VX-underground have spoken with Lockbit ransomware group administrative staff regarding the return of the old domain and the gang claims law enforcement is lying. Lockbit ransomware group states law enforcement is lying.

Ransomware 141

Ransomware Cybercrime Cyber Attacks Encryption 141

Security Affairs

APRIL 4, 2021

Clop ransomware gang leaked online data stolen from Stanford Medicine, University of Maryland Baltimore, and the University of California. Clop ransomware operators have leaked the personal and financial information stolen from Stanford Medicine, University of Maryland Baltimore (UMB), and the University of California.

Ransomware 133

Ransomware Encryption Data breaches Cybercrime 133

Security Affairs

APRIL 2, 2020

Microsoft is warning dozens of hospitals of the risks of ransomware attacks due to insecure VPN devices and gateways exposed online. Recently Microsoft has published details about human-operated ransomware attacks that targeted organizations in various industries. ” reads the post published by Microsoft.

Ransomware 140

Ransomware VPN Healthcare Cyber Attacks 140

Security Affairs

JULY 28, 2020

Security experts from Kaspersky Lab reported that North Korea-linked hackers are attempting to spread a new ransomware strain known as VHD. North Korean-linked Lazarus APT Group continues to be very active, the state-sponsored hackers are actively employing new ransomware, tracked as VHD, in attacks aimed at enterprises.

Ransomware 139

Ransomware Malware Advertising VPN 139

CyberSecurity Insiders

JUNE 26, 2023

In recent months, a cybercrime group known as Blacktail has begun to make headlines as they continue to target organizations around the globe. Since February, the group has launched multiple attacks based on their latest ransomware campaign labeled Buhti. Since its launch it has been linked to over 1400 attacks worldwide.

Cybercrime 100

Cybercrime Ransomware Social Engineering Phishing 100

The Last Watchdog

DECEMBER 16, 2021

In 2021, law enforcement continued making a tremendous effort to track down, capture and arrest ransomware operators, to take down ransomware infrastructure, and to claw back ransomware payments. These transformations for ransomware groups will become the source of new attacks. Before BlackMatter it was DarkSide.

CISO 262

CISO Ransomware Risk Authentication 262

CyberSecurity Insiders

FEBRUARY 8, 2021

Reuters’ published a news article saying Brazil’s electro-nuclear power plant was hit by a ransomware attack, bringing down the operations to a halt on a partial note. Note- Lazarus group aka Guardians of Peace is a Cybercrime group that is being funded by North Korean intelligence- as per US Intelligence.

Ransomware 134

Ransomware Social Engineering Cryptocurrency Cybercrime 134

CyberSecurity Insiders

NOVEMBER 13, 2022

Australian government has imposed a ban on ransom payments in cyber attack incidents as it fears that such payments can encourage crime affecting millions of populaces at a time. In case of ransomware, the victim is being asked to shell out millions to free up data.

Ransomware 130

Ransomware Insurance Cryptocurrency Cybercrime 130

Security Affairs

NOVEMBER 27, 2021

. “In internal emails seen by BleepingComputer, IKEA is warning employees of an ongoing reply-chain phishing cyber-attack targeting internal mailboxes. “There is an ongoing cyber-attack that is targeting Inter IKEA mailboxes. ” reports BleepingComputer. Source Bleeping Computer. Pierluigi Paganini.

Cyber Attacks 145

Cyber Attacks Phishing Malware Hacking 145