Brian Krebs reports: A week ago, KrebsOnSecurity broke the news that someone was attempting to disrupt the Trickbot botnet, a malware crime machine that has infected millions of computers and is often used to spread ransomware. A new report Friday says the coordinated attack was part of an operation carried out by the U.S. military’s Cyber Command. Read more…
Category: Malware
Lake George Land Conservancy reports they recovered from a ransomware attack by use of a backup, no ransom paid
Chad Arnold reports: The Lake George Land Conservancy is in the process of upgrading its servers after experiencing a ransomware attack last month. The organization, which works to preserve land surrounding Lake George, announced the Sept. 23 security breach in a letter posted to its website Wednesday. Read more on The Post-Star. It sounds like…
Ryuk’s Return
From The DFIR Report: The Ryuk group went from an email to domain wide ransomware in 29 hours and asked for over $6 million to unlock our systems. They used tools such as Cobalt Strike, AdFind, WMI, vsftpd, PowerShell, PowerView, and Rubeus to accomplish their objective. Ryuk has been one of the most proficient ransomware…
Software AG falls prey to ransomware attack
Earlier this week, Catalin Cimpanu reported Software AG, one of the largest software companies in the world, has suffered a ransomware attack over the last weekend, and the company has not yet fully recovered from the incident. A ransomware gang going by the name of “Clop” has breached the company’s internal network on Saturday, October…
Hackers Share Fairfax County Schools Employees’ SSNs Online
Yesterday, Drew Wilder reported an update to the Fairfax County Public School ransomware incident previously noted on this site: Hackers are sharing more private information after hacking a Virginia public school system’s computer system. Several hundred Fairfax County Public Schools employees’ names and Social Security numbers are now floating around the dark web. That was…
Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work
Brian Krebs reports: There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in. But judging from the proliferation of…