Mathew J. Schwartz reports: Russian police arrested “three young IT specialists” suspected of developing and selling the Meduza credential-harvesting malware. Authorities from the Ministry of Internal Affairs of Russia, together with police investigators, charged the men with developing and supplying the information-stealing malware, and tied it to an attack that breached and stole data from…
Category: Malware
Ukrainian Conti Ransomware Suspect Extradited to US from Ireland
Waqas reports: A Ukrainian national accused of helping run one of the world’s most damaging ransomware operations, Conti, is now in US custody. After being extradited from Ireland, 43-year-old Oleksii Oleksiyovych Lytvynenko made his first court appearance in the Middle District of Tennessee to face charges tied to the Conti ransomware group. Prosecutors allege that…
Some lower-tier ransomware gangs have formed a new RaaS alliance — or have they? (1)
Calling all of the groups ‘lower-tier’ may have been inaccurate. Please be sure to read the update at the bottom of this post. We’ve seen a few announcements this year heralding cartels or alliances in the ransomware ecosystem. Two such announcements involved DragonForce, but as SuspectFile reported, there was no evidence of a cartel, and…
NY: Gloversville hit by ransomware attack, paid ransom
WNYT reports: The city of Gloversville’s computer system was hit by a ransomware attack, which compromised the personal information of employees past and present. The attack was discovered by the finance commissioner back in March, the city announced on Saturday. There was a ransomware note on the server. Gloversville reported the attack to the FBI….
Confidence in ransomware recovery is high but actual success rates remain low
Ian Barker reports: A new study from OpenText of nearly 1,800 global IT and security leaders shows a false sense of confidence in ransomware readiness. The report shows that 95 percent of respondents say they’re confident in their ransomware recovery — yet only 15 percent of those attacked have fully recovered their data. In a rapidly changing threat landscape…
Protected health information of 462,000 members of Blue Cross Blue Shield of Montana involved in Conduent data breach
WVNews reports that personal and protected health information of 462,000 Montanans was involved in a significant data breach experienced by Conduent Business Services from October 2024 to January 2025. The state’s Insurance and Securities Commission wants to know why Blue Cross Blue Shield of Montana (BCBSMT) didn’t notify the state sooner. The breach came to…