Sergiu Gatlan reports: The Dutch National Police, in collaboration with cybersecurity firm Responders.NU, tricked the DeadBolt ransomware gang into handing over 155 decryption keys by faking ransom payments. DeadBolt is a ransomware operation active since January and known for demanding 0.03 bitcoin ransoms after encrypting thousands of QNAP and Asustor Network Attached Storage (NAS) devices (20,000…
Category: Malware
Bits ‘n Pieces (Trozos y Piezas)
Es-CT: Update on Consorci Sanitari Integral Attack by RansomExx Last week, DataBreaches reported an attack on the Consorci Sanitari Integral (CSI) system of hospitals and health centers in Catalonia. Since then, RansomExx claimed responsibility for the attack and claims to have 54 GB of files that include DNI and medical information of patients and employees….
Magniber Ransomware Adopts JavaScript to Attack Individual Users
Beth Maundrill reports: Recent analysis shows that Magniber ransomware has been targeting home users by masquerading as software updates. A ransomware campaign isolated by HP Wolf Security in September 2022 saw Magniber ransomware spread. The malware is known as a single-client ransomware family that demands $2,500 from victims. Previously Magniber was primarily spread through MSI and EXE files, but…
Interview with Hardbit Ransomware, a new group with great ambitions
Marco A. DeFelice (@amvinfe) interviewed a relatively new ransomware group called “Hardbit.” At one point in the interview, the exchange went: SF – Do you have a specific target regarding the victims? Do you pay more attention to a particular sector such as education, health, construction or is a victim “just a business” for you? (Support): It’s…
Update from CommonSpirit confirms ransomware attack
…. but doesn’t say much else in the way of details. Here’s their full update of October 12: Over the course of this past week, we have been managing a response to a cyberattack that has impacted some of our facilities. Patients continue to receive the highest quality of care, and we are providing relevant…
Public housing assistance tenants in Indianapolis fear eviction, compromised bank accounts after cyber attack
Russ McQuaid reports: Public housing residents, Section 8 tenants, landlords and vendors all fear the loss of sensitive personal and financial information and discontinued funding or support as a result of the hack of the Indianapolis Housing Agency’s information system last week by cyber thieves. [..] The personal information of approximately 25,000 IHA residents plus the…