Charlotte Regen reports: A Walsall construction business has fallen victim to a cybersecurity attack. RMD Kwikform, said it is investigating the security breach, which happened in November. Read more on BirminghamLive. The threat actors known as REvil (Sodinokibi) claim “Absolutely all servers and working computers of the company are hacked and encrypted. There was a…
Category: Malware
Police arrest two in data theft cyberattack on Leonardo defense corp
Lawrence Abrams reports: Italian police have arrested two people allegedly for using malware to steal 10 GB of confidential data and military secrets from defense company Leonardo S.p.A. Leonardo is one of the world’s largest defense contractors, with 30% of the company owned by the Italian Ministry of Economy and Finance. Read more on BleepingComputer.
Ransomware gangs are now cold-calling victims if they restore from backups without paying
Earlier this week, DataBreaches.net reported that a Georgia dental group was surprised to get a phone call from threat actors informing them that their files had been exfiltrated by the ransomware threat actors. It seems that when they had detected anomalies, they wiped the server and reinstalled from backup, and perhaps never noticed any “read…
A rough week in ransomware….
The following are just a few of the entities hit by ransomware attacks this week: USNR LLC is a manufacturing firm in Woodland, Washington. On their site, they describe themselves as “the world’s largest, most comprehensive supplier of equipment and technologies for the wood processing industry.” And according to a notification they sent, on September…
IT: Radio Azzurra hit by cyberattack, ransom demand
Luca Mattioli reports (translated): Yes, the virus has also hit… “Radio Azzurra”. We are certainly not talking about Covid, but much more simply – so to speak – of a real cyber attack that the historic Novara radio station was the victim of yesterday. «In forty-five years of activity I have seen many – admits…
Update on Dyras Dental ransomware attack
On September 24, DataBreaches.net contacted Dyras Dental in Lansing, Michigan to ask about Egregor threat actors’ claim that they had attacked them and exfiltrated data. Dyras Dental did not respond to that contact or to my subsequent DM to them on Twitter. On October 5, not seeing anything on Dyras Dental’s web site or Twitter…