Inside Croydon provides an update on the devastating ransomware attack by Qilin that targeted an NHS service provider: Four months after a malicious cyber attack on IT systems serving major hospitals in south London, the NHS says that it is in “the final stages of recovery” and “nearly all services are now up and running”….
Category: Malware
White House official says insurance companies must stop funding ransomware payments, but that’s not an official directive
Alexander Martin reports: Insurance companies must stop issuing policies that incentivize making extortion payments in ransomware attacks, a senior White House official said on Friday. The call for the practice to end, which was made without any indication the White House was formally proposing to ban the practice, follows the fourth annual International Counter Ransomware…
Cyberattack hits Wayne County government; services affected as hacker demands ransom
Ross Jones reports: Wayne County government fell victim to a cyberattack Wednesday, according to sources, bringing some services to a standstill. It was not clear Wednesday who was behind the hack, but a source says the hacker made a financial demand of the county through ransomware. “The county information technology team is aware of a…
NZ: New Zealand hearing clinic Bloom warns of massive data theft in ransomware attack
Phil Pennington of RNZ reports: Thousands of customers of a hearing clinic chain in New Zealand have been warned about a ransomware attack that has stolen masses of sensitive data. Bloom Hearing Specialists said some or all of the stolen data had been, or soon will be, published on the dark web. In an online…
Did LockBit really delete your data if you paid them? Nope, and even the affiliates didn’t know that?!
No matter how many times law enforcement tried to caution people not to believe promises by criminals that they would delete stolen data if only you paid them, some victims still paid or will pay. Today, the NCA drove their point home more forcefully: As you know, we were able to fully compromise LockBit’s platform…
LockBit affiliate ‘Beverley’ is Evil Corp’s Aleksandr Ryzhenkov
As posted by Operation Cronos today: Aleksandr Ryzhenkov DOB 26/05/1993 has been unmasked by the NCA as the specific member of Evil Corp who is a LockBit affiliate. Ryzhenkov used the affiliate name Beverley, made over 60 LockBit ransomware builds and sought to extort at least $100 million from victims in ransom demands. Ryzhenkov additionally…