Krebs on Security

MARCH 11, 2025

Treasury Office of Foreign Assets Control in April 2022 for receiving hundreds of millions in criminal proceeds, including funds used to facilitate hacking, ransomware, terrorism and drug trafficking. Since those penalties were levied, Garantex has processed more than $60 billion, according to the blockchain analysis company Elliptic.

Ransomware 261

Ransomware Cryptocurrency Marketing Government 261

Malwarebytes

DECEMBER 2, 2024

The US Department of Justice has charged a Russian national named Evgenii Ptitsyn with selling, operating, and distributing a ransomware variant known as “Phobos” during a four-year cybercriminal campaign that extorted at least $16 million from victims across the world.

Ransomware 119

Ransomware Backups Small Business Malware 119

Krebs on Security

DECEMBER 13, 2021

The consulting firm PricewaterhouseCoopers recently published lessons learned from the disruptive and costly ransomware attack in May 2021 on Ireland’s public health system. The unusually candid post-mortem found that nearly two months elapsed between the initial intrusion and the launching of the ransomware.

Healthcare 325

Healthcare Ransomware Antivirus Hacking 325

Krebs on Security

MARCH 2, 2021

PrismHR , a company that sells technology used by other firms to help more than 80,000 small businesses manage payroll, benefits, and human resources, has suffered what appears to be an ongoing ransomware attack that is disrupting many of its services. “Prism is the only real option on the PEO software market,” he said.

Ransomware 337

Ransomware Small Business Insurance Software 337

Krebs on Security

MAY 16, 2023

A Russian man identified by KrebsOnSecurity in January 2022 as a prolific and vocal member of several top ransomware groups was the subject of two indictments unsealed by the Justice Department today. And on April 26, 2021, Matveev and his Babuk gang allegedly deployed ransomware against the Metropolitan Police Department in Washington, D.C.

Ransomware 312

Ransomware Cybercrime VPN Healthcare 312

Krebs on Security

NOVEMBER 14, 2024

In February, he and Ermakov were arrested on charges of operating a short-lived ransomware affiliate program in 2021 called Sugar (a.k.a. Shefel claims his Sugar ransomware affiliate program was a bust, and never generated any profits. Sugar Locker), which targeted single computers and end-users instead of corporations.

Retail 254

Retail Advertising Cryptocurrency Marketing 254

eSecurity Planet

NOVEMBER 6, 2024

Following a July 18 attack by the Rhysida ransomware group — believed to have Russian affiliations — Columbus is still reeling from the exposure of vast amounts of sensitive resident data. The post Columbus Ransomware Attack Exposes 500,000+ Residents’ Data: How to Stay Safe appeared first on eSecurity Planet.

Ransomware 116

Ransomware Authentication Identity Theft Penetration Testing 116

Security Affairs

DECEMBER 9, 2024

Romanian energy supplier Electrica Group is investigating an ongoing ransomware attack impacting its operations. Electrica Group is a key player in the electricity distribution and supply market in Romania, as well as one of the most important players in the energy services sector in the country.

Ransomware 116

Ransomware Cyber Attacks Cybercrime Marketing 116

Krebs on Security

JULY 19, 2019

Cloud hosting provider iNSYNQ says it is trying to recover from a ransomware attack that shut down its network and has left customers unable to access their accounting data for the past three days. Gig Harbor, Wash.-based based iNSYNQ specializes in providing cloud-based QuickBooks accounting software and services.

Ransomware 278

Ransomware Accountability Software Marketing 278

Krebs on Security

JULY 8, 2019

The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims. Image: Malwarebytes. The GandCrab identity on Exploit[.]in

Ransomware 277

Ransomware Accountability Cybercrime Passwords 277

Krebs on Security

AUGUST 13, 2021

A new dark web service is marketing to cybercriminals who are curious to see how their various cryptocurrency holdings and transactions may be linked to known criminal activity. “The likes of ransomware and darknet markets rely on payments being made in Bitcoin and other cryptocurrencies.

Cryptocurrency 339

Cryptocurrency Marketing Ransomware Financial Services 339

Krebs on Security

MARCH 7, 2022

Three stories here last week pored over several years’ worth of internal chat records stolen from the Conti ransomware group, the most profitable ransomware gang in operation today. penned a two-part analysis on why smart contracts will make ransomware more profitable. We will be targeting 100 million $ volume.

Ransomware 267

Ransomware Cryptocurrency DDOS Scams 267

The Last Watchdog

DECEMBER 16, 2024

Williams Dr. Darren Williams , CEO, BlackFog Lesser-known ransomware groups like Hunters International will grow rapidly, leveraging AI for more efficient attacks, while “gang-hopping” by cybercriminals complicates attribution and containment. This empowers them to proactively prioritize what matters most.

Cyber threats 264

Cyber threats CISO IoT Phishing 264

Security Affairs

MARCH 23, 2024

The German police seized the infrastructure of the darknet marketplace Nemesis Market disrupting its operation. The Nemesis Market has been active since 2021, its offerings included illegal drugs and narcotics, stolen data and credit cards, as well as a selection of cybercrime services such as ransomware , phishing or DDoS attacks.

Marketing 129

Marketing Cybercrime DDOS Internet 129

Security Affairs

MARCH 25, 2025

The company supplies chicken products to retail, wholesale, and fast-food markets in South Africa and neighboring countries. At this time, no ransomware gang has taken credit for the cyber attack. Astral Foods is a South African integrated poultry producer and one of the country’s largest food companies.

Retail 114

Retail Cyber Attacks Ransomware Marketing 114

Digital Shadows

FEBRUARY 17, 2025

Key Findings First observed in March 2024, BlackLock (aka El Dorado or Eldorado) has rapidly emerged as a major player in the ransomware-as-a-service (RaaS) ecosystem. By Q4 2024, it ranked as the 7th most prolific ransomware group on data-leak sites, fueled by a staggering 1,425% increase in activity from Q3.

Ransomware 83

Ransomware Malware Risk Accountability 83

Security Affairs

MARCH 2, 2025

The Qilin ransomware group claims responsibility for attacking the newspaper Lee Enterprises, stealing 350GB of data. The Qilin ransomware group claimed responsibility for the recent cyberattack on Lee Enterprises, which impacted dozens of local newspapers. Lee Enterprises , Inc. is a publicly traded American media company.

Ransomware 75

Ransomware Cybercrime Encryption Healthcare 75

The Last Watchdog

JUNE 20, 2022

Or the payload might be a data exfiltration routine — or a full-blown ransomware attack. Sophos’ study of adversary activity found that some 47 percent of attacks started with an exploited vulnerability and 73 percent of attacks involved ransomware. Speaking of ransomware, cyber extortion continues to persist at a plague level.

Ransomware 235

Ransomware Digital transformation Marketing Software 235

Tech Republic Security

AUGUST 12, 2024

The CEO of a burgeoning cybersecurity firm spoke to TechRepublic about XDR, ransomware, the Crowdstrike outage and what organisations can do to prepare for cyberattacks.

Marketing 167

Marketing Ransomware Cybersecurity Artificial Intelligence 167

Krebs on Security

MAY 18, 2020

RedBear’s service is marketed not only to malware creators, but to people who rent or buy malicious software and services from other cybercriminals. His final post on Exploit in May 2017 somewhat jokingly indicated he was joining an upstart ransomware affiliate program. RANSOMWARE DREAMS. is cybercrime forum.

Malware 350

Malware Cybercrime Ransomware Marketing 350

Krebs on Security

MARCH 2, 2022

Earlier this week, a Ukrainian security researcher leaked almost two years’ worth of internal chat logs from Conti , one of the more rapacious and ruthless ransomware gangs in operation today. – Penetration Testers/Hackers: Those on the front lines battling against corporate security teams to steal data, and plant ransomware.

Ransomware 237

Ransomware Antivirus Malware Cybercrime 237

The Last Watchdog

NOVEMBER 19, 2023

That’s largely because the splashy headlines and online buzz created by bringing down the pair of casinos will only motivate more mid-level cybercriminals to follow Scattered Spiders’ model, putting wide-reaching businesses at risk of ransomware attacks due to the rise of ransomware-as-a-service models.

Social Engineering 310

Social Engineering Passwords Authentication Marketing 310

Malwarebytes

JANUARY 9, 2025

Small businesses and boutique organizations should use caution when leaning on browser-friendly artificial intelligence (AI) tools to generate ideas, content, and marketing copy, as a set of Google Chrome extensions were recently compromised to deliver info-stealing malware disguised as legitimate updates.

Malware 121

Malware Small Business Artificial Intelligence VPN 121

Security Affairs

NOVEMBER 10, 2023

The Industrial and Commercial Bank of China (ICBC) suffered a ransomware attack that disrupted trades in the US Treasury market. The Industrial and Commercial Bank of China (ICBC) announced it has contained a ransomware attack that disrupted the U.S. ” reported the Financial Times. ” reported the Financial Times.

Banking 127

Banking Ransomware Marketing Financial Services 127

Krebs on Security

DECEMBER 8, 2022

Ransomware groups are constantly devising new methods for infecting victims and convincing them to pay up, but a couple of strategies tested recently seem especially devious. Department of Health and Human Services (HHS) warned that Venus ransomware attacks were targeting a number of U.S. “ Cl0p ” a.k.a.

Healthcare 323

Healthcare Backups Ransomware Insurance 323

Krebs on Security

OCTOBER 8, 2020

One of the most common ways such access is monetized these days is through ransomware , which holds a victim’s data and/or computers hostage unless and until an extortion payment is made. THE DOCTOR IS IN. ” WHO IS DR. . Have a Coke and a Molotov cocktail.

Cybercrime 350

Cybercrime VPN Malware Ransomware 350

Security Affairs

DECEMBER 15, 2023

The Snatch ransomware group announced it had hacked the food giant Kraft Heinz, the company is investigating the claims. The Snatch ransomware group claims to have hacked Kraft Heinz in August and on December 14, it added the company to the list of victims on its leak site. ” reads the alert.

Hacking 132

Hacking Ransomware Computers and Electronics Marketing 132

Joseph Steinberg

JANUARY 20, 2022

So, let’s cut through the marketing fluff and understand what Zero Trust is – and, even before that that, what Zero Trust Is not. Consider the case of ransomware, for example, and the fact that the number of successful ransomware attacks has skyrocketed in recent years. Zero Trust is not something that you can achieve overnight.

Cybersecurity 363

Cybersecurity Artificial Intelligence Ransomware Social Engineering 363

Krebs on Security

MAY 13, 2024

and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. ” In an October 2013 discussion on the cybercrime forum Exploit , NeroWolfe weighed in on the karmic ramifications of ransomware. Last week, the United States joined the U.K.

Ransomware 296

Ransomware Cybercrime Accountability Malware 296

SecureList

MAY 11, 2023

Ransomware keeps making headlines. attempted ransomware attacks which was 20% more than in 2021 (61.7M). attempted ransomware attacks which was 20% more than in 2021 (61.7M). Although early 2023 saw a slight decline in the number of ransomware attacks, they were more sophisticated and better targeted.

Ransomware 140

Ransomware Malware Architecture Telecommunications 140

The Last Watchdog

JUNE 20, 2022

Related: ‘IABs’ spread ransomware. Planning your roadmap, executing your projects, and keeping an eye on the barrage of ransomware headlines, it’s understandable if you and your team are feeling some anxiety. Data collections released after ransomware attacks. Databases with critical IP and/or PII. Staying vigilant.

Ransomware 260

Ransomware Marketing Data collection VPN 260

Tech Republic Security

DECEMBER 20, 2023

Ransomware attacks on infrastructure and mid-market businesses are tipped to rise, while the use of AI cyber tools will grow as IT customers seek more signal and less noise from vendors.

Marketing 176

Marketing Ransomware Artificial Intelligence Cyber Attacks 176

Security Affairs

DECEMBER 4, 2023

The LockBit ransomware attack on the Industrial & Commercial Bank of China demonstrates the weakness of global financial system to cyberattacks. The ransomware breach that crippled U.S. LockBit ransomware group claimed responsibility for the attack against ICBC, the largest lender in the world by assets, with $5.7

Ransomware 137

Ransomware Banking Financial Services Marketing 137

Graham Cluley

MARCH 25, 2024

Nemesis Market, a notorious corner of the darknet beloved by cybercriminals and drug dealers, has been suddenly shut down after German police seized control of its systems. Read more in my article on the Tripwire State of Security blog.

Marketing 111

Marketing Data breaches DDOS Phishing 111

Webroot

OCTOBER 31, 2024

This year has seen ransomware groups adapt and innovate, pushing the boundaries of their malicious capabilities and evasiveness from law enforcement. The ransomware sector, in particular, has witnessed the emergence of “business models,” with ransomware-as-a-service (RaaS) dominating the scene.

Malware 104

Malware Ransomware Passwords Healthcare 104

Krebs on Security

SEPTEMBER 30, 2023

Earlier this week, KrebsOnSecurity revealed that the darknet website for the Snatch ransomware group was leaking data about its users and the crime gang’s internal operations. It continues: “Prior to deploying the ransomware, Snatch threat actors were observed spending up to three months on a victim’s system.

Ransomware 273

Ransomware Accountability Cybercrime Backups 273

Security Affairs

APRIL 16, 2024

The Dark Angels (Dunghill) ransomware group claims the hack of the chipmaker Nexperia and the theft of 1 TB of data from the company. The Dark Angels (Dunghill) ransomware group claims responsibility for hacking chipmaker Nexperia and stealing 1 TB of the company’s data. The chipmaker has 14,000 employees as of 2024.

Ransomware 139

Ransomware Manufacturing Hacking Insurance 139