A Latvian national was arraigned in federal court in Cleveland, Ohio, today on multiple charges stemming from her alleged role in a transnational cybercrime organization responsible for creating and deploying a computer banking trojan and ransomware suite of malware known as “Trickbot.” Alla Witte, aka Max, 55, is charged in 19 counts of a 47-count…
Category: Breach Incidents
Al: Mobile County cyberattack shut down systems for 3 days, sparked federal investigation
Yesterday, Al.com reported a ransomware attack on Mobile County, Alabama: The county, in a statement released to the media Wednesday, confirmed it discovered a malware affecting “certain systems.” The infection occurred last week and prompted the county to shut down its system for about three days, according to Mobile County Commissioner Connie Hudson. […] Broussard…
Steamship Authority hit by ransomware attack
Tony Fay reports: Passengers going to Nantucket and Martha’s Vineyard via the Steamship Authority may have to deal with possible delays Wednesday, due to a ransomware attack. The ferry service posted on their official Twitter account Wednesday that the attack is affecting their operations, and that a team of IT professionals is currently working to…
IA: Union Community School District publicly silent after threat actors dump files on dark web
In a year when they were already dealing with COVID-19 and then accusations that a teacher had improper emails with students, Union Community School District in Iowa found itself with a third major challenge — a ransomware attack. But whereas the district has publicly acknowledged and discussed its response to the first two challenges, they…
Babuk re-organizes as Payload Bin, offers its first leak
At the end of April, threat actors known as Babuk indicated that they were closing up shop and switching to a different model: Babuk changes direction, we no longer encrypt information on networks, we will get to you and take your data, we will notify you about it if you do not get in touch…
How to Negotiate with Ransomware Hackers
Rachel Monroe has an interesting profile of a ransom negotiator in The New Yorker. But the piece also provides an answer to a puzzling claim in a blog post by REvil that referred to fraudulent middlemen. When the negotiator hired by a victim entered the chat, they discovered that someone had already been negotiating with…