No matter how many times law enforcement tried to caution people not to believe promises by criminals that they would delete stolen data if only you paid them, some victims still paid or will pay. Today, the NCA drove their point home more forcefully: As you know, we were able to fully compromise LockBit’s platform…
Category: Malware
LockBit affiliate ‘Beverley’ is Evil Corp’s Aleksandr Ryzhenkov
As posted by Operation Cronos today: Aleksandr Ryzhenkov DOB 26/05/1993 has been unmasked by the NCA as the specific member of Evil Corp who is a LockBit affiliate. Ryzhenkov used the affiliate name Beverley, made over 60 LockBit ransomware builds and sought to extort at least $100 million from victims in ransom demands. Ryzhenkov additionally…
Russian National Indicted for Series of Ransomware Attacks
Indictment Unsealed Charging Aleksandr Ryzhenkov with Attacks Against Multiple Victims in the United States The Justice Department today unsealed an indictment charging Russian national Aleksandr Viktorovich Ryzhenkov (Александр Викторович Рыженков) with using the BitPaymer ransomware variant to attack numerous victims in Texas and throughout the United States and hold their sensitive data for ransom. According to the indictment,…
White House Pledges Major Deliverables at Ransomware Summit
Chris Riotta reports: The White House is launching a weeklong series of events focused on tackling global ransomware attacks, with a top federal cyber official promising “significant, major new deliverables” to address the rising threats. The International Counter Ransomware Initiative kicked off its fourth annual summit Monday in Washington, bringing together representatives from 68 member…
New developments — and arrests — in law enforcement pursuit of LockBit
It looks like we will find out more tomorrow but law enforcement has reactivated a seized LockBit site to make more announcements:
Richmond Community Schools reports ransomware attack; Scranton School District paid ransom in March
One new attack on a k-12 district and an update on a previous one. WHIO reports that Richmond Community Schools in Indiana posted to social media that student and staff information in the PowerSchool software system was breached in a ransomware attack on Friday. “While there is no current evidence of misuse, RCS has shut…