Joseph Cox of 404 Media in collaboration with Court Watch writes: The FBI managed to track down and freeze millions of dollars of cryptocurrency Caesars Entertainment sent to a group of hackers that held the casino’s computer systems ransom, according to a 404 Media and Court Watch review of a recently unsealed court document. According…
Category: Malware
Cyber-crew claims it cracked American cableco, releases terrible music video to prove it
Iain Thomson reports: A cyber-crime ring calling itself Arkana has made a cringe music video to boast of an alleged theft of subscriber account data from Colorado-based cableco WideOpenWest (literally, WOW!) The video features gloomy music plus narration and text in Russian that claims – which screenshots of what looks like compromised internal WOW! systems –…
Blacklock Ransomware: A Late Holiday Gift with Intrusion into the Threat Actor’s Infrastructure
As seen on Resecurity’s blog, and where they are entitled to take a victory lap: Dubbed “BlackLock” (aka “El Dorado” or “Eldorado“), the ransomware-as-a-service (RaaS) outfit has existed since March 2024. In Q4 of last year, it increased its number of data leak posts by a staggering 1,425% quarter-on-quarter. According to independent reporting, a relatively new group has rapidly accelerated…
Shifting the sands of RansomHub’s EDRKillShifter
Jakub Souček and Jan Holman report: The RansomHub ransomware-as-a-service (RaaS) operation affiliates were linked to established gangs Medusa, BianLian, and Play, which share the use of RansomHub’s custom-developed EDRKillShifter. ESET researchers take a look back at the significant changes in the ransomware ecosystem in 2024 and focus on the newly emerged and currently dominating ransomware-as-a-service…
Ransomwared NHS software supplier nabs £3M discount from ICO for good behavior
Connor Jones reports the latest update on the ransomware attack affecting Advanced Computer Software: The UK’s data protection watchdog is dishing out a £3.07 million ($3.95 million) fine to Advanced Computer Software Group, whose subsidiary’s security failings led to a ransomware attack affecting NHS care. This is nearly half the fine the Information Commissioner’s Office provisionally floated…
Malaysia’s Anwar says ‘no way’ to US$10 million ransom demand to end airport cyberattack
Joseph Sipalan reports: Malaysia’s Prime Minister Anwar Ibrahim said on Tuesday that hackers demanded a US$10 million ransom for a cyberattack that paralysed some operations at Kuala Lumpur International Airport (KLIA) over the weekend, raising concerns about the airport’s cybersecurity and potential risks to travellers’ safety. Anwar confirmed that Malaysia Airports Holdings Berhad (MAHB), which operates the…