The Sodinokibi/REvil ransomware team that attacked the entertainment law firm of Grubman Shire Meiselas & Sacks have certainly gotten media attention for this attack. In their first notice of the attack, they listed some of the celebrity clients, showed screenshots of some directory of files, and provided snippets from some celebrity-related files. But then negotiations…
Category: Malware
FBI: ProLock ransomware gains access to victim networks via Qakbot infections
Catalin Cimpanu reports: The FBI has issued a security alert earlier this month about a new ransomware strain named ProLock that has been deployed in intrusions at healthcare organizations, government entities, financial institutions, and retail organizations. First spotted in March 2020, ProLock is part of the category of “human-operated ransomware.” Read more on ZDNet.
REvil responds to Grubman Shire law firm: “We will get the money”
A ransomware team that locked up the files of entertainment law firm Grubman Shire Meiselas & Sacks after stealing copies of the files has responded to reactions to their demand for $42 million to unlock the files and to prevent the attackers from releasing the firm’s files about President Trump. The attackers claim that the…
Personal info on over 12,000 people leaked after Nikkei comes under cyberattack
Mainichi reports: TOKYO — Nikkei Inc., the publisher of the business daily The Nikkei and other media, announced on May 12 that personal information on a total of 12,514 people had been leaked after a computer used by a group company employee was infected with a virus in an apparent cyberattack. Read more on Mainichi….
Hackers preparing to launch ransomware attacks against hospitals arrested in Romania
Some good news for a change. Catalin Cimpanu reports: Romanian law enforcement has cracked down today on a hacker group that was preparing to launch ransomware attacks on Romanian hospitals. Three hackers were arrested and had their homes searched in Romania and a fourth in the Republic of Moldova. Romanian authorities said the four were…
Multi-millions: Sodinokibi attackers demand $42 million of celebrity law firm, threaten to publish dirt they claim to have on President Trump
I honestly cannot think of a more ironic name for a blog than the Sodinokibi (REvil) ransomware operators calling their website “Happy Blog.” Reading their updates today, they certainly didn’t seem happy, especially with Coveware, a firm that has assisted numerous ransomware victims. The firm’s services include helping negotiate ransom amounts and payment. But something…