I’m not sure if you need to be a threat analyst, a drama critic, or a bit of both these days. But Yelisey Boguslavskiy & Anastasia Sentsova of AdvIntel dive in to some of the recent goings on: On September 7, 2021, a representative of the newly-formed Groove ransomware syndicate decided to share their insights…
Category: Malware
Za: Justice Department victim of latest security breach
First it was South Africa’s Space Agency that was attacked. Now it’s their justice department. Dan Meyer reports: The Department of Justice and Constitutional Development has confirmed that it has become the victim of a malicious cyber security hack, with all electronic services provided by the Department – including the issuing of letters of authority,…
Mass data leak after Bar Ilan University refuses to pay hacker $2.5m
After an attack on Bar Ilan University in Israel, it appears that the university refused to pay ransom, and threat actors have dumped some data and may be offering more for sale. The Times of Israel reports: Hundreds of thousands of documents and lists containing personal details of students and lecturers at Bar Ilan University…
REvil ransomware’s servers reappear without fanfare or explanation
Brett Callow of Emsisoft broke the unpleasant news on Twitter last night — REvil’s dedicated leak site, “The Happy Blog,” which had disappeared after the Kaseya supply chain attack, had reappeared at its old onion address. Unfortunately, the Happy Blog is back online #REvil pic.twitter.com/vMr9qTOht2 — Brett Callow (@BrettCallow) September 7, 2021 There were no…
WV: Bridgeport city government hacked, residents put on notice
Mike Nolting reports: Residents of Bridgeport have been notified city government was hacked in late May of this year. A five-page letter to residents said city IT systems were encrypted by ransomware that lets hackers hold data until a ransom is paid. […] There is no proof hackers were able to access information, but information…
Th: Hacker steals 40,000 patients’ data from kidney hospital
It is the second hospital report in as many days. This one, however, is clearly a ransomware attack and unlike the first hospital attack, no one is making any attempt to minimize this one as the theft of patient data is impacting treatment. The Bangkok Post reports: The personal details of more than 40,000 patients…