While the headlines blare about REvil offering to decrypt all victims of the Kaseya attack if they are paid $70 million, some companies have apparently already taken to individual negotiations with the threat actors. Over on SuspectFile, Marco A. De Felice is careful not to name the victim, but describes one such set of negotiatons…
Category: Malware
Moroccan hacker Dr HeX arrested for phishing attacks, malware distribution
Catalin Cimpanu reports: Moroccan authorities arrested a suspect known in underground hacking circles as “Dr HeX” on accusations of orchestrating a 12-year-old cybercrime spree that included website defacements, phishing attacks, and malware distribution, Interpol announced today. The arrest took place in May this year and was announced today as part of Interpol’s Operation Lyrebird. In a blog…
AL: No data compromised in ransomware attack against electric cooperative
WTVY reports: While a ransomware attack was launched against Wiregrass Electric Cooperative this weekend, officials have verified that no data have been compromised. “We at Wiregrass Electric Cooperative hold member information in the highest regard, and we always do everything we can to protect our members’ information,” says Brad Kimbro, WEC’s chief operating officer. “We…
NY: “Grief” claims to have breached Rehabilitation Support Services
A rehabilitation and support services agency that provides services to more than 3,000 individuals with psychiatric and substance abuse disorders each year has been the victim of a cyberattack by threat actors call themselves “Grief.” Rehabilitation Support Services, Inc. (RSS) operates in 13 upstate New York counties through 5 service divisions. According to their web…
Sodinokibi hackers demand $70 mln to restore data held by companies hit in Kaseya cyberattack
Raphael Satter reports: Hackers suspected to be behind a mass extortion attack that affected hundreds of companies worldwide late on Sunday demanded $70 million to restore the data they are holding ransom, according to a posting on a dark web site. The demand was posted on a blog typically used by the REvil cybercrime gang,…
Hackety hack hack…
There are so many breach reports that it’s hard to even find all the notices and reports about them these days. These days, there are many breaches that I log in worksheets I compile for Protenus’s Breach Barometer annual report but never even post on this blog. Just today, for example, I found: a notice…