Curious about the new kids on the ransomware block and whether they are really new kids or just old hands forming a new group? Read this great interview by Dmitry Smilyanets on The Record.
Category: Malware
Decryptor released for Prometheus ransomware victims
Catalin Cimpanu reports: Taiwanese security firm CyCraft has released a free application that can help victims of the Prometheus ransomware recover and decrypt some of their files. Available on GitHub, the decryptor effectively works by brute-forcing the encryption key used to lock the victim’s data. Read more on The Record.
Hacker attack on the Lazio Region. Vaccine reservations suspended, shadow ransomware
Arcangelo Ròciola reports: AGI – Unprecedented hacker attack on the IT systems of the Lazio Region. A virus has taken offline the Region’s website, that of the Regional Council and the booking portal for vaccines against Covid-19. Systems went haywire about shortly after midnight today. From what AGI learned shortly after the attack, the virus…
Suspect File updates the Blackbaud incident tally for the education sector
Courtesy of Suspect File, this update to the list of educational entities impacted by the 2020 Blackbaud ransomware incident: UPDATE (5) of 31.07.2021 (June / July 2021) Total number of people involved 7,984,697 (+5,907) In the update of 07/31/2021, 3 new Institutions affected by the Blackbaud Data Breach are added. As of 30.05 2021, the…
Wawa Customers Win Initial Settlement Approval in Data Suit
Maeve Allsup reports: More than 22 million Wawa Inc. customers were granted preliminary class status Friday in a suit stemming from a data breach that led to the sale of their payment information on the dark web. [See previous coverage here, here, and here] Hackers accessed Wawa’s point-of-sale systems and installed malware targeting in-store payment…
Health insurer notifies members after third-party vendor suffers ransomware attack
It appears that a third-party vendor has quietly paid ransom to unidentified threat actors. In a press release yesterday, Renaissance Life & Health Insurance Company of America says they were notified on June 1 by their vendor, Secure Administrative Solutions LLC (“SAS”), of a ransomware incident that involved unauthorized access to its systems occurred between…