Jake Holland reports: Colonial Pipeline Co. and its owners acted negligently by employing lax cybersecurity standards that left the company vulnerable to a massive ransomware attack, a proposed Georgia federal court class action alleges. The company breached its duty to employ industry security standards, and that failure translated into system outages that harmed consumers by raising…
Category: Malware
NZ: New Zealand, hacker attack: Zeppelin ransomware blocks patient care at Waikato DHB
Marco A. De Felice writes: More than a week after the May 18 cyber attack, the computer systems of the Waikato District Health Board (Waikato DHB) have not yet been restored. Some scheduled surgeries in DHB’s five hospitals have been postponed, while non-urgent cases are postponed until all IT systems are back in operation. From…
A former DarkSide listing shows up on REvil’s leak site
On May 15, Chum1ng0 reported that German furniture retailer Möbelstadt Sommerlad had been hit by DarkSide threat actors. By then DarkSide’s leak site was down and it had not been possible to confirm whether DarkSide had ever listed the retailer as a victim or dumped any proof of claim, but given the time frame of…
NZ: Volunteer Service Abroad targetted by ‘sophisticated’ ransomware attack
Matthew Tso reports: Ransomware attackers have targeted New Zealand’s largest volunteer agency working in international development. On Wednesday Volunteer Service Abroad (VSA) announced it had been the victim of a “sophisticated” ransomware attack. Chief executive Stephen Goodman said the non-governmental organisation was hit last week, with attackers locking its computer systems and demanding a ransom….
Ransomware Unmasked: Dispute Reveals Ransomware TTPs
Two of the more well-known Russian-language forums have “arbitration” or “complaint” sections where members can present complaints and evidence against other members involving financial disputes or claims. Those disputes, with evidence provided non-publicly to the moderators/arbitrators, often provide interesting insights into threat actors’ methods or relationships. In the past few weeks, there have been two…
Mercy University Hospital secures court injunction against ransomware hackers
Aodhan O’Faolain reports: A Cork-based hospital has secured injunctions from the High Court restraining any sharing, processing, selling or publishing of data believed stolen from its computer systems in the cyberattack. The orders were made in favour of the Mercy Hospital Cork against “persons unknown” responsible for accessing the hospital’s IT system, that is separate…