Ransomware

Iranian State-Sponsored Hackers Have Become Access Brokers for Ransomware Gangsca

Pioneer Kitten, Ransomware, Threat Intelligence /

Iranian State-Sponsored Hackers Have Become Access Brokers for Ransomware Gangsca 2024-09-02 at 20:01 By dakshsharma16 Iranian state-backed actors operating under aliases like “Pioneer Kitten” are increasingly targeting critical infrastructure – and expanding their activities into brokering access for ransomware affiliates. Key Takeaways Overview They move silently across networks, leveraging every vulnerability left unpatched, exploiting gaps […]

React to this headline:

Loading spinner

Iranian State-Sponsored Hackers Have Become Access Brokers for Ransomware Gangsca Read More »

Ransomware crisis deepens as attacks and payouts rise

Corvus Insurance, cybercrime, News, Ransomware, report, survey, The Travelers Companies /

Ransomware crisis deepens as attacks and payouts rise 2024-09-02 at 07:01 By Help Net Security During the second quarter, new ransomware groups, including PLAY, Medusa, RansomHub, INC Ransom, BlackSuit, and some additional lesser-known factions, led a series of attacks that eclipsed the first quarter of this year by 16% and the second quarter of 2023

React to this headline:

Loading spinner

Ransomware crisis deepens as attacks and payouts rise Read More »

Critical Advisory on RansomHub Ransomware: A Comprehensive Analysis and Mitigation Guide

RansomHub, Ransomware, Threat Intelligence, Zero Day Vulnerability /

Critical Advisory on RansomHub Ransomware: A Comprehensive Analysis and Mitigation Guide 2024-08-30 at 16:16 By dakshsharma16 Key Takeaways Overview On August 29, 2024, a joint advisory was issued by the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), Multi-State Information Sharing and Analysis Center (MS-ISAC), and the Department of Health and Human

React to this headline:

Loading spinner

Critical Advisory on RansomHub Ransomware: A Comprehensive Analysis and Mitigation Guide Read More »

BlackByte Ransomware Gang Believed to Be More Active Than Leak Site Suggests

BlackByte, Ransomware /

BlackByte Ransomware Gang Believed to Be More Active Than Leak Site Suggests 2024-08-30 at 16:01 By Kevin Townsend Cisco Talos has a blog post on the BlackByte ransomware group’s continuing evolution and new TTPs. The post BlackByte Ransomware Gang Believed to Be More Active Than Leak Site Suggests appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

BlackByte Ransomware Gang Believed to Be More Active Than Leak Site Suggests Read More »

How RansomHub went from zero to 210 victims in six months

CISA, Don't miss, FBI, Hot stuff, News, Ransomware /

How RansomHub went from zero to 210 victims in six months 2024-08-30 at 15:16 By Zeljka Zorz RansomHub, a ransomware-as-a-service (RaaS) outfit that “popped up” earlier this year, has already amassed at least 210 victims (that we know of). Its affiliates have hit government services, IT and communication companies, healthcare institutions, financial organizations, emergency services,

React to this headline:

Loading spinner

How RansomHub went from zero to 210 victims in six months Read More »

US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack

Featured, Halliburton, oil, Ransomware /

US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack 2024-08-30 at 14:31 By Eduard Kovacs The RansomHub ransomware group, which has made at least 210 victims, is believed to be behind the attack on oil giant Halliburton.  The post US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack appeared first on

React to this headline:

Loading spinner

US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack Read More »

Dick’s Sporting Goods Discloses Cyberattack

Data Breaches, Dick's Sporting Goods, Ransomware /

Dick’s Sporting Goods Discloses Cyberattack 2024-08-29 at 16:46 By Ionut Arghire The sporting goods retail chain said hte incident exposed portions of the its IT systems containing confidential information. The post Dick’s Sporting Goods Discloses Cyberattack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Dick’s Sporting Goods Discloses Cyberattack Read More »

Ransomware Gang Leaks Data Allegedly Stolen From Microchip Technology

data breach, Data Breaches, Ransomware /

Ransomware Gang Leaks Data Allegedly Stolen From Microchip Technology 2024-08-29 at 13:01 By Eduard Kovacs The Play ransomware group has published gigabytes of data allegedly stolen from US semiconductor supplier Microchip Technology. The post Ransomware Gang Leaks Data Allegedly Stolen From Microchip Technology appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Ransomware Gang Leaks Data Allegedly Stolen From Microchip Technology Read More »

US Sees Iranian Hackers Working Closely With Ransomware Groups

CISA, Iran, Ransomware /

US Sees Iranian Hackers Working Closely With Ransomware Groups 2024-08-29 at 11:46 By Ionut Arghire Iranian state-sponsored APT Lemon Sandstorm is working closely with ransomware groups on monetizing network intrusions. The post US Sees Iranian Hackers Working Closely With Ransomware Groups appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

US Sees Iranian Hackers Working Closely With Ransomware Groups Read More »

Pioneer Kitten: Iranian hackers partnering with ransomware affiliates

CISA, cyber espionage, Don't miss, FBI, Iran, News, Ransomware /

Pioneer Kitten: Iranian hackers partnering with ransomware affiliates 2024-08-28 at 19:46 By Zeljka Zorz A group of Iranian hackers – dubbed Pioneer Kitten by cybersecurity researchers – is straddling the line between state-contracted cyber espionage group and initial access provider (and partner in crime) for affiliates of several ransomware groups. “The FBI assesses these actors

React to this headline:

Loading spinner

Pioneer Kitten: Iranian hackers partnering with ransomware affiliates Read More »

950,000 Impacted by Young Consulting Data Breach

data breach, Data Breaches, healthcare, Ransomware /

950,000 Impacted by Young Consulting Data Breach 2024-08-28 at 14:01 By Ionut Arghire The personal information of over 950,000 people was compromised in a BlackSuit ransomware attack on Young Consulting. The post 950,000 Impacted by Young Consulting Data Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

950,000 Impacted by Young Consulting Data Breach Read More »

BlackByte affiliates use new encryptor and new TTPs

Cisco, cybercrime, Don't miss, Hot stuff, Malware, manufacturing sector, News, Ransomware, threats, transportation /

BlackByte affiliates use new encryptor and new TTPs 2024-08-28 at 13:16 By Zeljka Zorz BlackByte, the ransomware-as-a-service gang believed to be one of Conti’s splinter groups, has (once again) created a new iteration of its encryptor. “Talos observed some differences in the recent BlackByte attacks. Most notably, encrypted files across all victims were rewritten with

React to this headline:

Loading spinner

BlackByte affiliates use new encryptor and new TTPs Read More »

Lateral movement: Clearest sign of unfolding ransomware attack

Barracuda Networks, cybercrime, News, Ransomware, report, survey /

Lateral movement: Clearest sign of unfolding ransomware attack 2024-08-27 at 06:01 By Help Net Security 44% of unfolding ransomware attacks were spotted during lateral movement, according to Barracuda Networks. 25% of incidents were detected when the attackers started writing or editing files, and 14% were unmasked by behavior that didn’t fit with known activity patterns.

React to this headline:

Loading spinner

Lateral movement: Clearest sign of unfolding ransomware attack Read More »

American Radio Relay League Paid $1 Million to Ransomware Gang

ARRL, ransom payment, Ransomware /

American Radio Relay League Paid $1 Million to Ransomware Gang 2024-08-26 at 16:16 By Ionut Arghire The American Radio Relay League (ARRL) says it paid out a $1 million ransom after falling victim to ransomware in May 2024. The post American Radio Relay League Paid $1 Million to Ransomware Gang appeared first on SecurityWeek. This

React to this headline:

Loading spinner

American Radio Relay League Paid $1 Million to Ransomware Gang Read More »

Patelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions Data

data breach, Data Breaches, Ransomware /

Patelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions Data 2024-08-26 at 12:52 By Eduard Kovacs Patelco Credit Union has confirmed a data breach impacting many individuals after the RansomHub ransomware group stole some databases.  The post Patelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions Data appeared first on SecurityWeek.

React to this headline:

Loading spinner

Patelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions Data Read More »

Rebrand, regroup, ransomware, repeat

cybercrime, Don't miss, HackerOne, Hot stuff, News, Ransomware, Video /

Rebrand, regroup, ransomware, repeat 2024-08-26 at 06:01 By Help Net Security Changes witnessed over the last few years have led to larger ransomware groups breaking into smaller units, posing more considerable challenges for law enforcement. Ransomware actors are evading arrest more easily and adapting methods with innovative technologies. In this Help Net Security video, Shobhit

React to this headline:

Loading spinner

Rebrand, regroup, ransomware, repeat Read More »

The changing dynamics of ransomware as law enforcement strikes

cybercrime, Don't miss, News, Ransomware, report, survey, WithSecure /

The changing dynamics of ransomware as law enforcement strikes 2024-08-23 at 06:31 By Help Net Security After peaking in late 2023, the ransomware industry is beginning to stabilize in productivity, with notable developments in ransomware targets, and industry dynamics, according to WithSecure. Sectors impacted by ransomware (Source: WithSecure) While ransomware productivity has shown signs of

React to this headline:

Loading spinner

The changing dynamics of ransomware as law enforcement strikes Read More »

Oil Giant Halliburton Confirms Cyber Incident, Details Scarce

Colonial Pipeline, Data Breaches, Halliburton, Ransomware /

Oil Giant Halliburton Confirms Cyber Incident, Details Scarce 2024-08-22 at 21:31 By SecurityWeek News US oil giant Halliburton confirmed its computer systems were hit by a cyberattack that affected operations at its Houston offices. The post Oil Giant Halliburton Confirms Cyber Incident, Details Scarce appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Oil Giant Halliburton Confirms Cyber Incident, Details Scarce Read More »

Understanding the ‘Morphology’ of Ransomware: A Deeper Dive

cybercrime, Ransomware /

Understanding the ‘Morphology’ of Ransomware: A Deeper Dive 2024-08-22 at 17:46 By Kevin Townsend Ransomware isn’t just about malware. It’s about brands, trust, and the shifting allegiances of cybercriminals. The post Understanding the ‘Morphology’ of Ransomware: A Deeper Dive appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Understanding the ‘Morphology’ of Ransomware: A Deeper Dive Read More »

Most ransomware attacks occur between 1 a.m. and 5 a.m.

attacks, CISO, cyberattacks, cybercrime, Don't miss, Malwarebytes, News, Ransomware, report, survey /

Most ransomware attacks occur between 1 a.m. and 5 a.m. 2024-08-22 at 07:02 By Help Net Security There’s been an alarming increase in ransomware attacks over the past year, alongside significant shifts in the tactics and strategies employed by cybercriminals that underscore the necessity for organizations to implement around-the-clock monitoring and investigation of suspicious behaviors,

React to this headline:

Loading spinner

Most ransomware attacks occur between 1 a.m. and 5 a.m. Read More »

Scroll to Top