Ransomware

Another NetWalker affiliate sentenced to 20 years in prison

cybercriminals, Don't miss, Hot stuff, Justice Department, News, Ransomware /

Another NetWalker affiliate sentenced to 20 years in prison 2024-12-20 at 13:07 By Zeljka Zorz A 30-year old Romanian man was sentenced to 20 years in prison for leveraging the Netwalker ransomware to extort money from victims, the US Department of Justice announced on Thursday. Daniel Christian Hulea, of Jucu de Mijloc, Cluj, Romania, was […]

React to this headline:

Loading spinner

Another NetWalker affiliate sentenced to 20 years in prison Read More »

Ransomware in 2024: New players, bigger payouts, and smarter tactics

At-Bay, Cato Networks, Cohesity, Corvus Insurance, cybercrime, GuidePoint Security, Malwarebytes, News, NTT Security, Onapsis, Ransomware, Rapid7, report, Semperis, Sophos, SpyCloud, survey, Veeam Software, Zscaler /

Ransomware in 2024: New players, bigger payouts, and smarter tactics 2024-12-19 at 06:03 By Help Net Security In 2024, ransomware remained the top cybersecurity threat to organizations worldwide. New groups filled the void left by law enforcement crackdowns, targeting businesses with record-breaking ransom demands and sophisticated tactics. In this article, you will find excerpts from

React to this headline:

Loading spinner

Ransomware in 2024: New players, bigger payouts, and smarter tactics Read More »

Romania Urges Energy Sector of Proactive Scanning Amid LYNX Ransomware Threat

LYNX Ransomware, Ransomware, Romania /

Romania Urges Energy Sector of Proactive Scanning Amid LYNX Ransomware Threat 2024-12-13 at 12:48 By daksh sharma Overview The Romanian National Cyber Security Directorate (DNSC) has issued a critical advisory urging all entities, especially those in the energy sector, to scan their IT and critical infrastructure for malicious binaries associated with the LYNX ransomware cybercrime

React to this headline:

Loading spinner

Romania Urges Energy Sector of Proactive Scanning Amid LYNX Ransomware Threat Read More »

Cleo patches zero-day exploited by ransomware gang

Cleo, enterprise, file-sharing, Huntress, News, Ransomware, Rapid7, Sophos /

Cleo patches zero-day exploited by ransomware gang 2024-12-12 at 18:34 By Zeljka Zorz Cleo has released a security patch to address the critical vulnerability that started getting exploited while still a zero-day to breach internet-facing Cleo Harmony, VLTrader, and LexiCom instances. Version 5.8.0.24 of the three products, which was pushed out on Wednesday, plugs the

React to this headline:

Loading spinner

Cleo patches zero-day exploited by ransomware gang Read More »

8Base hacked port operating company Luka Rijeka

data theft, Don't miss, EU, Europe, extortion, Hot stuff, maritime industry, News, Ransomware /

8Base hacked port operating company Luka Rijeka 2024-12-09 at 14:48 By Zeljka Zorz Luka Rijeka, a company that offers maritime transport, port, storage of goods and forwarding services in Rijeka, Croatia, has been hacked by the 8Base ransomware group. The group claimed the attack on their dark web data leak site and professed that they’ve

React to this headline:

Loading spinner

8Base hacked port operating company Luka Rijeka Read More »

A Technical Look at the New ‘Termite’ Ransomware that Hit Blue Yonder

Babuk Ransomware, cyber news, Ransomware, Termite ransomware /

A Technical Look at the New ‘Termite’ Ransomware that Hit Blue Yonder 2024-12-06 at 20:48 By Paul Shread The ransomware attack that hit supply chain management platform Blue Yonder and its customers last month was the work of a new ransomware group called “Termite.” Cyble Research and Intelligence Labs (CRIL) researchers have examined a Termite

React to this headline:

Loading spinner

A Technical Look at the New ‘Termite’ Ransomware that Hit Blue Yonder Read More »

US government, energy sector contractor hit by ransomware

energy sector, Government, Hot stuff, News, Ransomware, USA /

US government, energy sector contractor hit by ransomware 2024-12-03 at 12:15 By Zeljka Zorz ENGlobal, a Texas-based engineering and automation contractor for companies in the energy sector, has had its data encrypted by attackers. “On November 25, 2024, ENGlobal Corporation (the “Company”) became aware of a cybersecurity incident. The preliminary investigation has revealed that a

React to this headline:

Loading spinner

US government, energy sector contractor hit by ransomware Read More »

AI-based tools designed for criminal activity are in high demand

cybercrime, News, Ransomware, report, survey, Trellix /

AI-based tools designed for criminal activity are in high demand 2024-11-29 at 06:03 By Help Net Security Multiple regional conflicts, such as Russia’s continued invasion of Ukraine and the Israel-Hamas conflict, have resulted in a surge in cyberattacks and hacktivist activities, according to Trellix. AI-driven ransomware boosts cybercrime tactics The research examines an increasingly complex

React to this headline:

Loading spinner

AI-based tools designed for criminal activity are in high demand Read More »

German CERT Warns Zyxel Firewalls Exploited for Helldown Ransomware Deployment

CERT, Ransomware /

German CERT Warns Zyxel Firewalls Exploited for Helldown Ransomware Deployment 2024-11-28 at 16:08 By daksh sharma Overview Zyxel firewalls have come under scrutiny following a wave of attacks leveraging vulnerabilities to deploy Helldown ransomware. A critical directory traversal vulnerability, tracked as CVE-2024-11667, in the Zyxel ZLD firmware (versions 5.00–5.38) has been linked to these breaches.

React to this headline:

Loading spinner

German CERT Warns Zyxel Firewalls Exploited for Helldown Ransomware Deployment Read More »

VPN vulnerabilities, weak credentials fuel ransomware attacks

Corvus Insurance, cybercrime, cybersecurity, News, Ransomware, report, survey /

VPN vulnerabilities, weak credentials fuel ransomware attacks 2024-11-28 at 08:12 By Help Net Security Attackers leveraging virtual private network (VPN) vulnerabilities and weak passwords for initial access contributed to nearly 30% of ransomware attacks, according to Corvus Insurance. According to the Q3 report, many of these incidents were traced to outdated software or VPN accounts

React to this headline:

Loading spinner

VPN vulnerabilities, weak credentials fuel ransomware attacks Read More »

Ransomware payments are now a critical business decision

At-Bay, Cohesity, cybersecurity, News, Onapsis, Ransomware, Rubrik, Semperis, Sophos, SpyCloud, Veeam Software, Zscaler /

Ransomware payments are now a critical business decision 2024-11-28 at 06:03 By Help Net Security Despite the efforts of law enforcement agencies to stop and bring to justice those responsible for ransomware attacks, the situation is not improving. While authorities do not recommend making a ransomware payment, some companies are forced to make that choice

React to this headline:

Loading spinner

Ransomware payments are now a critical business decision Read More »

Starbucks, grocery stores impacted by Blue Yonder ransomware attack

attack, cybercrime, News, Ransomware /

Starbucks, grocery stores impacted by Blue Yonder ransomware attack 2024-11-26 at 16:15 By Mirko Zorz Supply chain management SaaS vendor Blue Yonder announced on November 21 that it experienced a ransomware attack that impacted its managed services hosted environment. “Since learning of the incident, the Blue Yonder team has been working diligently together with external

React to this headline:

Loading spinner

Starbucks, grocery stores impacted by Blue Yonder ransomware attack Read More »

Cybercriminals turn to pen testers to test ransomware efficiency

Cato Networks, cybercrime, News, Ransomware, report, survey /

Cybercriminals turn to pen testers to test ransomware efficiency 2024-11-22 at 07:04 By Help Net Security Ransomware gangs recruit pen testers to improve attack reliability Threat actors employ pen testers to improve ransomware effectiveness Threat actors are recruiting pen testers to test and improve the reliability of their ransomware for affiliate programs, according to Cato

React to this headline:

Loading spinner

Cybercriminals turn to pen testers to test ransomware efficiency Read More »

Phobos ransomware administrator faces US cybercrime charges

cybercrime, FBI, News, Ransomware, USA /

Phobos ransomware administrator faces US cybercrime charges 2024-11-19 at 12:33 By Help Net Security The Justice Department unsealed criminal charges against Evgenii Ptitsyn, 42, a Russian national, for allegedly administering the sale, distribution, and operation of Phobos ransomware. Ptitsyn made his initial appearance in the US District Court for the District of Maryland on Nov.

React to this headline:

Loading spinner

Phobos ransomware administrator faces US cybercrime charges Read More »

Infostealers increasingly impact global security

Check Point, cybercrime, cybersecurity, Malware, News, Ransomware /

Infostealers increasingly impact global security 2024-11-13 at 15:18 By Help Net Security Check Point Software’s latest threat index reveals a significant rise in infostealers like Lumma Stealer, while mobile malware like Necro continues to pose a significant threat, highlighting the evolving tactics used by cybercriminals across the globe. Last month researchers discovered an infection chain

React to this headline:

Loading spinner

Infostealers increasingly impact global security Read More »

GoZone ransomware accuses and threatens victims

Don't miss, Elastio, Hot stuff, News, Ransomware, SonicWall, Windows /

GoZone ransomware accuses and threatens victims 2024-11-06 at 13:06 By Zeljka Zorz A new ransomware dubbed GoZone is being leveraged by attackers that don’t seem to be very greedy: they are asking the victims to pay just $1,000 in Bitcoin if they want their files decrypted. The GoZone HTML ransom note (Source: SonicWall) The ransom

React to this headline:

Loading spinner

GoZone ransomware accuses and threatens victims Read More »

North Korean hackers pave the way for Play ransomware

Don't miss, enterprise, Hot stuff, initial access broker, News, North Korea, Palo Alto Networks, Ransomware /

North Korean hackers pave the way for Play ransomware 2024-10-31 at 12:49 By Zeljka Zorz North Korean state-sponsored hackers – Jumpy Pisces, aka Andariel, aka Onyx Sleet – have been spotted burrowing into enterprise systems, then seemingly handing matters over to the Play ransomware group. Timeline of the attack (Source: Palo Alto Networks) The attack

React to this headline:

Loading spinner

North Korean hackers pave the way for Play ransomware Read More »

Ransomware hits web hosting servers via vulnerable CyberPanel instances

CVE, Don't miss, Hot stuff, LeakIX, Linux, News, Ransomware, security update, vulnerability, web hosting /

Ransomware hits web hosting servers via vulnerable CyberPanel instances 2024-10-30 at 16:19 By Zeljka Zorz A threat actor – or possibly several – has hit approximately 22,000 vulnerable instances of CyberPanel and encrypted files on the servers running it with the PSAUX and other ransomware. The PSAUX ransom note (Source: LeakIX) The CyberPanel vulnerabilities CyberPanel

React to this headline:

Loading spinner

Ransomware hits web hosting servers via vulnerable CyberPanel instances Read More »

6 key elements for building a healthcare cybersecurity response plan

cyber risk, healthcare, Incident Response, News, Ransomware, report, risk assessment, Software Advice, strategy, survey /

6 key elements for building a healthcare cybersecurity response plan 2024-10-30 at 06:33 By Help Net Security Medical practices remain vulnerable to cyberattacks, with over a third unable to cite a cybersecurity incident response plan, according to Software Advice. This gap exposes healthcare providers to risks of patient data breaches, HIPAA violations, financial penalties, and

React to this headline:

Loading spinner

6 key elements for building a healthcare cybersecurity response plan Read More »

Ransomware Vulnerability Matrix: A Comprehensive Resource for Cybersecurity Analysts 

Ransomware, Ransomware Vulnerability Matrix /

Ransomware Vulnerability Matrix: A Comprehensive Resource for Cybersecurity Analysts  2024-10-29 at 16:18 By daksh sharma Overview  The Ransomware Vulnerability Matrix, a vital repository on GitHub, represents a new step forward in understanding ransomware vulnerabilities. This invaluable repository catalogs known Common Vulnerabilities and Exposures (CVEs) that ransomware groups exploit, providing insights into ransomware types, vulnerable technologies,

React to this headline:

Loading spinner

Ransomware Vulnerability Matrix: A Comprehensive Resource for Cybersecurity Analysts  Read More »

Scroll to Top