Executive Summary Trinity ransomware is a relatively new threat actor, known for employing a double extortion strategy. This method involves exfiltrating sensitive data before encrypting files, thereby increasing pressure on victims to pay the ransom. This ransomware uses the ChaCha20 encryption algorithm, and encrypted files are tagged with the “.trinitylock” file extension. Trinity operates a…
AUSTIN, Texas– A Ukrainian national pleaded guilty in federal court in Austin today to one count of conspiracy to commit computer intrusion. According to court documents, Mark Sokolovsky, 28, conspired to operate the Raccoon Infostealer as a malware-as-a-service or “MaaS.” Individuals who deployed Raccoon Infostealer to steal data from victims leased access to the malware…
CSO reports: India’s hill state of Uttarakhand’s entire IT infrastructure came to a standstill on Friday after malware was detected on systems at the State Data Center. The shutdown impacted several critical services, including government websites, the Chief Minister’s helpline, and land registration services. Officials, suspecting a cyberattack, launched an investigation into the breach, while…
Inside Croydon provides an update on the devastating ransomware attack by Qilin that targeted an NHS service provider: Four months after a malicious cyber attack on IT systems serving major hospitals in south London, the NHS says that it is in “the final stages of recovery” and “nearly all services are now up and running”….
Alexander Martin reports: Insurance companies must stop issuing policies that incentivize making extortion payments in ransomware attacks, a senior White House official said on Friday. The call for the practice to end, which was made without any indication the White House was formally proposing to ban the practice, follows the fourth annual International Counter Ransomware…
Ross Jones reports: Wayne County government fell victim to a cyberattack Wednesday, according to sources, bringing some services to a standstill. It was not clear Wednesday who was behind the hack, but a source says the hacker made a financial demand of the county through ransomware. “The county information technology team is aware of a…