Benjamin Freed reports: The company that operates a fiber optic network that supports statewide and local government entities across North Dakota was a victim of a recent ransomware attack that included some of the firm’s files being published on a website that attempts to shame victims into paying. Dakota Carrier Network is a consortium of…
Category: Malware
Update to Maze’s ransomware attack on Hammersmith Medicines Research
On March 21, this site reported that Maze Team had attacked Hammersmith Medicines Research (HMR) in London — a clinical testing firm that conducts early Phase 1 and Phase 2 pharmacological tests. Maze had attacked and locked up their data on March 14, but HMR was reportedly able to quickly restore their ability to function and…
Maze ransomware operators claim to have stolen millions of credit cards from Banco BCR
Lawrence Abrams reports on a new “press release” from the Maze ransomware operators. The release was posted yesterday and claims that the Maze Team had successfully attacked Banco BCR, the state-owned bank of Costa Rico in August, 2019 The attackers claim that the bank never complied with its obligations to notify other banks and regulators….
Clop ransomware leaks ExecuPharm’s files after failed ransom
Sergiu Gatlan reports: Clop ransomware leaked files stolen from U.S pharmaceutical company ExecuPharm after ransom negotiations allegedly failed. ExecuPharm is a contract research organization (CRO) that provides clinical research support services to companies from the pharmaceutical industry. The company has more than 18,000 global clinical operational specialists in its network and it is one largest…
Ca: NTPC website apparently hijacked in what looks like a ransomware attack
Walter Strong reports: The Northwest Territories Power Corporation’s (NTPC) website went down Thursday afternoon, but some pages show what appears to be a ransomware message from unknown hackers. Some visitors to the website myntpc.ntpc.com were greeted with a text page that begins with: “Hi! Your files are encrypted by Netwalker.” Read more on CBC.ca
Report Finds Ransomware Crews Don’t Leave After Being Paid
Organized crews of cybercriminals that attacked health care organizations and other critical services with ransomware this month kept their access to victims’ networks even after ransoms were paid, new research released by Microsoft Corp. says. In a blog post published Tuesday, Microsoft’s Threat Protection Intelligence Team said it had identified “dozens” of ransomware attacks in the…