Radixx, a subsidiary of Sabre Corporation, provides an air passenger ticket reservation system for low-cost airline carriers. On April 22, Radixx announced that Radixx Res™ had experienced a malware incident on April 20 that impacted its reservation system. The incident reportedly did not impact Sabre systems, and the customer database was not compromised. The incident…
Category: Malware
De: Suspected ransomware: “Cyber attack” on the Madsack publishing group
The publishing company Madsack GmbH & Co. KG (and Madsack Media Group) is a German publishing and media group based in Hanover. The core business consists of 15 regional daily newspapers. Axel Kannenberg reports (translation): The Madsack publishing group has apparently been attacked by ransomware. According to a media report, an internal mail from the…
Yale New Haven Health impacted by data breach at radiation software vendor
ABC17 reports: A data breach has impacted Yale New Haven Health. On Friday, the healthcare system announced that Smilow Cancer Hospital at Yale New Haven is among many hospitals nationwide that were impacted by software issues at Elekta. Elekta is the company that provides the software to run linear accelerators for radiation treatment of cancer…
The Case For and Against Criminalizing Ransomware Payments
Stuart Reed, UK Director, Orange Cyberdefense, writes: … Let’s first look at the reasons why ransomware payments should be made illegal. First, the obvious. Ransomware payments essentially fund cybercrime, and this is why ransomware attacks are becoming more common. There is no doubt that paying out leads to more attacks. […] On the other hand,…
New Qlocker ransomware is hitting hundreds of QNAP NAS devices per day
Catalin Cimpanu reports: A new ransomware strain named Qlocker is on a rampage and infecting hundreds of QNAP network-attached storage (NAS) devices every day, taking over hard drives, moving users’ files inside password-protected 7zip archives, and asking for a $550 ransom payment. The first cases were reported on Tuesday, April 20, and the number of…
ToxicEye: Trojan abuses Telegram platform to steal your data
Charlie Osborne reports: Operators of a new Remote Access Trojan (RAT) are exploiting the Telegram service to maintain control of their malware. Dubbed ToxicEye, the RAT abuses Telegram as part of command-and-control (C2) infrastructure in order to conduct rampant data theft. On Thursday, Omer Hofman from Check Point Research said in a blog post that the new…