Graham Cluley reports that if you find yourself in the situation where your files have been locked up by ProLock ransomware, there’s something to keep in mind when considering whether you should pay the ransom demand to get the decryption key promised by the attackers: What the hackers don’t tell you – let’s be generous,…
Category: Malware
DSIR Deeper Dive: The Ransomware Epidemic
David Kitchen and Anthony P. Valach of BakerHostetler compare their firm’s 2019 report to the 2020 data. Considering that this law firm represents a number of clients who have been attacked with ransomware, their experiences are instructive, and their article also provides some action items for entities. Read more on Data Privacy Monitor.
REvil claims to have sold Trump-related material to unnamed buyer
The Sodinokibi/REvil ransomware team that attacked the entertainment law firm of Grubman Shire Meiselas & Sacks have certainly gotten media attention for this attack. In their first notice of the attack, they listed some of the celebrity clients, showed screenshots of some directory of files, and provided snippets from some celebrity-related files. But then negotiations…
FBI: ProLock ransomware gains access to victim networks via Qakbot infections
Catalin Cimpanu reports: The FBI has issued a security alert earlier this month about a new ransomware strain named ProLock that has been deployed in intrusions at healthcare organizations, government entities, financial institutions, and retail organizations. First spotted in March 2020, ProLock is part of the category of “human-operated ransomware.” Read more on ZDNet.
REvil responds to Grubman Shire law firm: “We will get the money”
A ransomware team that locked up the files of entertainment law firm Grubman Shire Meiselas & Sacks after stealing copies of the files has responded to reactions to their demand for $42 million to unlock the files and to prevent the attackers from releasing the firm’s files about President Trump. The attackers claim that the…
Personal info on over 12,000 people leaked after Nikkei comes under cyberattack
Mainichi reports: TOKYO — Nikkei Inc., the publisher of the business daily The Nikkei and other media, announced on May 12 that personal information on a total of 12,514 people had been leaked after a computer used by a group company employee was infected with a virus in an apparent cyberattack. Read more on Mainichi….