Dev Kundaliya reports: Russian-speaking ransomware gang OldGremlin, which unusually targets Russian entities, is now using file-encrypting malware to target Linux machines. That’s according to the cybersecurity company Group-IB which on Thursday published what it claims to be the first comprehensive report on OldGremlin ransomware group, also referred to as TinyScouts. Read more at Computing.
Category: Malware
BlackByte ransomware uses new data theft tool for double-extortion
Bill Toulas reports: A BlackByte ransomware affiliate is using a new custom data stealing tool called ‘ExByte’ to steal data from compromised Windows devices quickly. Data exfiltration is believed to be one of the most important functions in double-extortion attacks, with BleepingComputer told that companies are more commonly paying ransom demands to prevent the leak…
Sonic Settles Data Breach Negligence Case
David Herman reports: Judge James Gwin has approved a class-action settlement between Sonic Corporation and a number of financial institutions. Sonic has agreed to pay $5.73 million to settle claims that their negligence led to a 2017 data breach, which compromised customers’ payment information. Court documents recount that in 2017, Sonic suffered a data breach…
French maternity hospital hit by ransomware attack by Vice Society; attackers claim to have 150 GB of files
Le Journal du Dimanche reports that a private maternity hospital in France, Hôpital Pierre Rouquès – Les Bluets was the victim of a cyberattack by Vice Society on October 9. A notice on the hospital’s home page alerts people to the attack and that their email system does not work. [Note: there is also a…
Health insurer Medibank enters trading halt after cyberattack, says it received communication from alleged hackers (UPDATED)
Nino Bucci reports: Private health insurer Medibank has entered a trading halt after telling customers it had received messages from a group claiming to have accessed the data of its customers in a cyber-attack. In a statement to the Australian stock exchange on Wednesday, the company said it had received messages from a group that…
In Germany, ransomware attack halts circulation of some newspapers; country’s cybersecurity chief fired over possible ties to Russian intelligence
Bill Toulas reports: German newspaper ‘Heilbronn Stimme’ published today’s 28-page issue in e-paper form after a Friday ransomware attack crippled its printing systems. On Saturday, the newspaper issued an “emergency” six-page edition while all planned obituaries were posted on the website. Phone and email communication remained offline during the weekend. Read more at Bleeping Computer….