Lawrence Abrams reports: The Ziggy ransomware operation has shut down and released the victims’ decryption keys after concerns about recent law enforcement activity and guilt for encrypting victims. […] Last week, the Fonix ransomware operation also shut down and released keys and decryptor. The Ziggy admin told BleepingComputer that they are friends with the Fonix ransomware group and are…
Category: Malware
The Blackbaud ransomware breach — impact on school clients
In July, 2020, cloud software firm Blackbaud announced that it had been the victim of a ransomware attack that began in February of 2020 and continued until Blackbaud was able to kick the attackers out of their system in May. In order to try to protect their clients from having personal and sensitive information on…
Blockchain transactions confirm murky and interconnected ransomware scene
Catalin Cimpanu reports: A report published today by blockchain investigations firm Chainalysis confirms that cybercrime groups engaging in ransomware attacks don’t operate in their own bubbles but often switch ransomware suppliers (RaaS services) in a search for better profits. The report analyzed how Bitcoin funds were transferred from victims to criminal groups, and how the…
DE: Netcom-Kassel announces breach
Seen on Netcom-Kassel (translation): Information according to Paragraph 109a TKG, 34 GDPR on a security incident (status: 05.02.2021) On Monday, January 18, 2021, the Netcom Kassel Gesellschaft für Telekommunikation mbH was the target of a hacker attack. Some of the general IT systems were affected by the attack, which is why they are currently only…
BE: Cyber attack on Sacred Heart Hospital Mol: no patients at risk, but administration back on paper
vrtNWS reports (translation): The Sacred Heart Hospital in Mol has been hit by a cyber attack. Criminals have managed to smuggle viruses into the hospital’s IT system, presumably via email. No data has been stolen, so the patients’ medical information has not been leaked, but the viruses have shut down many systems. Read more on vrtNWS….
The National Cyber Investigative Joint Task Force Releases Ransomware Fact Sheet
The National Cyber Investigative Joint Task Force (NCIJTF) has released a new joint-seal ransomware fact sheet. This educational product is intended to provide the public important information on the current ransomware threat and the government’s response, as well as common infection vectors, tools for attack prevention, and important contacts in the event of a ransomware…