Splunk Threat Research Team reports: As ransomware campaigns continue, malicious actors introduce different modus operandi to target their victims. In this blog, we’ll be taking a look at the Clop ransomware. This crimeware was discovered in 2019 and is said to be used for an attack that demanded one of the highest ransom amounts in recorded history…
Category: Malware
Houston Rockets Hit by “Babuk” Ransomware
Bill Toulas reports: The ransomware group known as “Babuk” has added Houston Rockets to its victim list, warning about the imminent leak of 500GB of stolen data if their payment demands aren’t met. The threat actors present screenshots of the exfiltrated files as proof of possession, showing what appears to be contracts, non-disclosure agreements, customer…
Two Somerset County school districts report cyber attacks
Mike Deak reports: Two Somerset County school districts were the targets of suspected cyber attacks in the past week. Schools in both Hillsborough and Bernards were closed for a day after cyber attacks were suspected. Hillsborough schools were closed on Monday and Bernards schools were closed April 7. Schools in both districts were open the following…
CH: Griesser AG victim of ransomware attack
A Swiss firm that manufactures sun protection window treatments such as blinds, shutters, and awnings has fallen prey to a ransomware attack. Stefan Borkert reports that Griesser AG is currently only reachable by phone and email. (translation): One or more unknown perpetrators attacked the servers of Aadorfer Griesser AG in Switzerland with ransomware, a so-called…
IT: Threat actors attack ATC website, demand ransom
Alessia Gaglianese reports (translation): The Turin Territorial Housing Agency (ATC) website has been hacked. The criminals demanded a ransom of $ 700,000. It was the agency’s IT technicians who discovered that something was wrong with the telematic system. According to the first reconstructions, these are professional foreign hackers. Read more: sicurezza.net According to its web…
CZ: Asbis hit by ransomware, working to recover
Matěj Čuchna reports (translation): The Czech branch of Asbis is recovering from a ransomware attack in which data was stolen and internal systems were paralyzed. The ransomware attack was carried out by a group of hackers organized in early April. It has managed to steal and encrypt internal data and now threatens to publish it…