Updated March 7, 2022: On March 6, Logansport Community School Corp. reported the incident to the Maine Attorney General’s Office as impacting 2,750 people. Previous post: This week, two sets of threat actors dumped data from K-12 school districts in Indiana and Oregon. Both districts had disclosed ransomware incidents in April. Logansport Community School Corp…
Category: Malware
Japanese Manufacturer Yamabiko Targeted by Babuk Ransomware
Phil Muncaster reports: A ransomware group that claimed to be retiring after an audacious attack on Washington DC’s police department appears to be back in action after reportedly targeting a Japanese firm. Yamabiko, a Tokyo-headquartered manufacturer of power tools and agricultural and industrial machinery, was apparently added to the data leak site used by the…
No: Volue ASA hit by Ryuk ransomware
Volue is Norwegian software company. On May 5, they reportedly became a victim of a ransomware attack. In a statement on their site, they explained: Volue ASA was today subject to a cyber-attack impacting operation in some of the company’s business areas. Mitigating actions were immediately implemented. Currently, there seems to be limited impact on…
“We are apolitical” — DarkSide threat actors
By now, probably everyone has heard about the Colonial Pipeline security incident that has been linked to threat actors known as DarkSide. On April 12, this site published an email chat with DarkSide. If you missed that chat write-up, you can read it here. On May 8, after the mainstream media reported that the Colonial…
Tulsa, Oklahoma and Rensselaer Polytechnic Institute disclose ransomware incidents
No sector has been spared from ransomware incidents. In this report, we have one from the education sector and one from the government sector. Neither report specifies what type of ransomware or who the threat actors are. And neither one reports how much ransom has been demanded or whether the victim is refusing to pay….
Es: IT services of the Oviedo City Council knocked out
Gonzalo Diaz-Rubin reports that all of the IT services of the Oviedo City Council have been crippled. Machine translation: A malicious program blocked access to servers and data and the municipal contractor has been forced to pull the rest of the support to stop the invasion. It is, according to municipal sources, a ransomware cyber-attack, of…