Translation: According to the information received, the hackers or hackers who infiltrated the computers of Kayseri OIZ Directorate last week, locked the files containing important information of the institution and demanded money from the OIZ management in return for giving the passwords. OSB officials reacted to the hackers’ demand for money and referred the issue…
Category: Malware
Hogeschool van Amsterdam and the University of Amsterdam hit in cyberattack
Emerce reports (translation): Unknown third parties have gained access to the ICT environments of the Hogeschool van Amsterdam and the University of Amsterdam, the Security and Operations Center has found. Measures are taken to limit the consequences and to ensure that education and research can proceed as undisturbed as possible. The schools have disabled several systems as…
First it was Blackbaud, now it’s Sodinokibi — Southern Arkansas University becomes a breach victim again
Marco De Felice reports: After being VICTIM OF THE BLACKBAUD DATA BREACH in May of last year, Southern Arkansas University is now facing a new data theft by the Sodinokibi (REvil) ransomware group. A few minutes ago, the Sodinokibi Ransomware group published a series of screenshots on its website regarding some data exfiltrated during the cyber attack against the…
When Cyber Gangs Disregard Ransomware Payments, Victims Can Be Hit Twice
David Bisson reports: Several digital gangs have gone back on their pledge to honor the ransomware payments made by victims. In its Quarterly Ransomware Report for Q3 2020, Coveware notes that nearly half of the ransomware attacks it had tracked during that quarter had included the threat to leak unencrypted data. Yet, multiple gangs did not always…
Conti ransomware: Evasive by nature
In part of a three-part series, Andrew Brandt and Anand Ajjan of Sophos write: For the past several months, both SophosLabs and the Sophos Rapid Response team have been collaborating on detection and behavioral analysis of a ransomware that emerged last year and has undergone rapid growth. The ransomware, which calls itself Conti, is delivered…
Ransomware attacks on medical entities continue: a laboratory in Italy and a health care service in New Mexico among latest victims
Ransomware attacks on medical entities continue. Today, we report on one attack in Italy and one in the U.S. And sadly, by the end of the day, there may well be more. Italy Marco De Felice (aka @amvinfe) reports that RagnarOK threat actors have attacked the Valdès Analysis Laboratory in Cagliari. The attack occurred on…