Alexander Quon reports: New information has emerged about the recent cyberattack that targeted Regina Public Schools, forcing it to shut down all internet-based systems such as email and other education tools. CBC News has reviewed a copy of a note that has appeared on computers that were part of the school district’s network. The note says it…
Category: Malware
IL: Cyberattack costs City of Quincy $650,000
J. Robert Gough reports: Quincy Mayor Mike Troup said the city has spent about $150,000 on outside consultants and $500,000 for an encryption key to regain access to the city’s information services systems. In other words, $500,000 in ransomware. In a news conference Tuesday morning, Troup gave a timeline of events that have taken place…
Food For Files: GoodWill Ransomware demands food for the poor to decrypt locked files
Waqas reports: GoodWill ransomware attackers share a three-page ransom note asking the victim to perform three tasks to get the decryption key- they want them to donate to the homeless, feed poor kids, and provide financial assistance to a patient in need. CloudSEK Threat Intelligence Research team has warned about new ransomware dubbed GoodWill Ransomware that can…
Fake Windows exploits target infosec community with Cobalt Strike
Lawrence Abrams reports: A threat actor targeted security researchers with fake Windows proof-of-concept exploits that infected devices with the Cobalt Strike backdoor. Whoever is behind these attacks took advantage of recently patched Windows remote code execution vulnerabilities tracked as CVE-2022-24500 and CVE-2022-26809. Read more at BleepingComputer.
K-12 school districts in New Mexico, Ohio crippled by cyberattacks
Jonathan Grieg reports: Cyberattacks on K-12 schools across the U.S. continued this week with both the Fort Sumner Municipal Schools in New Mexico and Washington Local Schools in Ohio suffering from incidents. The Cl0p ransomware group’s leak site this week displayed sensitive information from students, faculty members and parents from Fort Sumner Municipal Schools. The…
DisCONTInued: The End of Conti’s Brand Marks New Chapter For Cybercrime Landscape
Yelisey Bogusalvskiy & Vitali Kremez write: On May 19, 2022, the admin panel of the Conti ransomware gang’s official website, Conti News, was shut down. The negotiations service site was also down, while the rest of the infrastructure: from chatrooms to messengers, and from servers to proxy hosts was going through a massive reset. Conti…