Lawrence Abrams reports: Threat actors are now installing a new ransomware called ‘DEARCRY’ after hacking into Microsoft Exchange servers using the recently disclosed ProxyLogon vulnerabilities. Since Microsoft revealed earlier this month that threat actors were compromising Microsoft Exchange servers using new zero-day ProxyLogon vulnerabilities, a significant concern has been when threat actors would use it to…
Category: Malware
Lot-et-Garonne firefighters victims of a cyber attack
LaDepeche.fr reports (translation): After the hospitals, the firefighters! Without faith or law, wherever they work, from France or abroad, the new IT thugs have no mercy by now attacking vital emergency and health services in our region. country. The Lot-et-Garonne firefighters have had a bitter experience since the start of the week. “We were victims of a” ransomware…
Another hospital hit by ransomware in France, Spain’s public employment service hit with Ryuk, and China’s Cosco Shipping allegedly hacked by LORDBR
Another French hospital, Centre Hospitalier Général d’Oloron, has fallen victim to a ransomware attack. France Bleu reports (translation): The Oloron Sainte-Marie hospital (Pyrénées-Atlantiques) was the victim of a cyberattack on Monday March 8 in the early afternoon. No application works and a message asking for a ransom of $ 50,000 to be transferred to a…
University of the Highlands and Islands working to recover from cyberattack
University of the Highlands and Islands in the U.K. suffered a cyberattack that resulted in classes being canceled today. They tweeted about it here, and posted a statement on their web site: The University of the Highlands and Islands partnership is experiencing an ongoing cyber incident which has caused disruption to our systems and networks…
JP: Consulting firm hit with ransomware; 350 households have info possibly leaked
Hokkaido Cultural Broadcasting reports that an unnamed consulting firm in Tokyo contracted by Asahikawa City as part of rebuilding a housing complex was compromised by ransomware, resulting in the compromise of personal information for about 350 households. Read about it on fnn.jp (Japanese). h/t, @Chum1ng0
Ransomware gang plans to call victim’s business partners about attacks
Lawrence Abrams reports: The REvil ransomware operation announced this week that they are using DDoS attacks and voice calls to journalists and victim’s business partners to generate ransom payments. Read more on BleepingComputer.