Catalin Cimpanu reports: The group behind the attacks targeting SharePoint servers is a new ransomware operation that was first seen at the end of 2020. The group is tracked by security vendors under the codenames of Hello or the WickrMe ransomware—because of its use of Wickr encrypted instant messaging accounts as a way for victims to reach out and…
Category: Malware
Mean and median ransomware payments up in Q1, but number of victims paying ransom may be decreasing
A new report from Coveware indicates that the average ransom payment increased 43% to $220,298 in Q1 of this year from $154,108 in Q4 of 2020. The median payment in Q1 also increased to $78,398 from $49,450, a 58% increase. That’s the bad news. At the same time average payment was increasing, Coveware notes that…
OR: Centennial schools to close for 2 days after hackers breach school technology systems
Update of May 6: the district confirmed this as a ransomware attack. Their computers are still offline. Original post: Jayati Ramakrishnan reports: A Portland-area school district has canceled Tuesday and Wednesday classes as staffers work to fix a ransomware attack that may have affected the district’s technology systems. Centennial School District staff discovered Monday that certain…
NY: Guilderland Central Schools Hit with Malware Attack
Mike Goodwin reports: The Guilderland Central School District is the latest local organization victimized by a malware attack. District officials said the attack was discovered after technical interruptions occurred on Thursday, calling the incident a “cyber attack by a threat actor group which used malware to encrypt certain systems throughout the district.” Read more on…
Au: Queensland hospitals and aged care facilities crippled by cyber attack
Nathan Edwards reports: Multiple Queensland hospitals and aged care centres have been crippled by a cyber-attack, resulting in several disruptions to internal systems. 9News understands the entire UnitingCare Queensland internal IT system was attacked by ransomware software, with all UCQ hospitals and aged care homes working without IT systems until further notice. Among a number of aged care centres…
No: Ransomware attack on Nordlo knocked out Vakt og Alarm’s sick signal systems in several care institutions
Nordlo is a provider of digitalization and managed IT services in Norway and Sweden. VG reports that a ransomware attack on the firm’s office in Haugesund on Friday also affected Vakt og Alarm AS. Vakt og Alarm offers alarm, communication and security solutions for care and open institutions. Nordlo is in the Vakt og alarm…