Debby Woodin reports: A July 7 network security incident that caused the Joplin city government’s computer system to shut down is believed to be the result of ransomware, the city said Thursday in a statement amid an ongoing investigation. An insurer has paid an unknown person $320,000 to keep any sensitive information obtained as a…
Category: Malware
Motherboard vendor GIGABYTE hit by RansomExx ransomware gang
Catalin Cimpanu reports: Taiwanese computer hardware vendor GIGABYTE has suffered a ransomware attack, and hackers are currently threatening to release more than 112 GB of business data on the dark web unless the company agrees to their ransom demands. The Taiwanese company, primarily known for its high-performance motherboards, confirmed the attack in a phone call…
Judson ISD says it paid hackers more than $500K to protect sensitive information
Well, Brandon Lingle predicted this. Andres Picon reports: The ransomware attack that hit Judson Independent School District in June resulted in a payment to the hackers of more than half a million dollars to keep sensitive information from being uploaded to the dark web, officials said. The ransom payment of $547,045 will keep “identifiable information”…
Secrets and Lies: The Games Ransomware Attackers Play
Mathew J. Schwartz reports: If you’re a criminal, practicing good operational security would seem to preclude granting tell-all news media interviews. And yet we’ve seen a spate of attackers who wield ransomware – including MountLocker, LockBit, REvil and DarkMatter – sharing insights into their inclinations, motivations and tactics. One perhaps inadvertent takeaway from their interviews…
Disgruntled ransomware affiliate leaks the Conti gang’s technical manuals
Catalin Cimpanu reports: A disgruntled member of the Conti ransomware program has leaked today the manuals and technical guides used by the Conti gang to train affiliate members on how to access, move laterally, and escalate access inside a hacked company and then exfiltrate its data before encrypting files. Leaked on an underground cybercrime forum…
ND: Sanford Health target of attempted cyber attack
Patrick Springer reports: Sanford Health sustained an attempted “cyber security incident” and is working to contain its impact, the health care provider’s top executive said Wednesday, Aug. 4. “Sanford Health has experienced an attempted cyber security incident, and we are taking aggressive measures to contain the impact,” Sanford president and CEO Bill Gassen said in…