James Swift reports: On May 6, 2019, the City of Cartersville alerted residents that the local government had fallen prey to a ransomware attack. Yet since then, details on the size, scope and severity of the cybersecurity breach have remained scarce. City officials broke their nearly yearlong silence on the cyberattack, however, in the wake of…
Category: Malware
Meet the white-hat group fighting Emotet, the world’s most dangerous malware
Catalin Cimpanu reports: For more than a year, a group of security researchers and system administrators have banded together to fight back against Emotet, today’s most active and dangerous malware operation. By working together, the Cryptolaemus group has seriously hindered Emotet operations. Daily, the group publishes updates on its website and Twitter account. They share so-called indicators of…
Irish IT group Ergo foils major ransomware attack
Charlie Taylor reports: Irish IT services group Ergo is forecasting further growth as it reported revenues of €85.2 million last year as the company said it recently foiled a major ransomware attack. Ergo said it immediately moved to lock down servers late last Wednesday after becoming aware of a serious security incident. It was able to recover…
US Railroad Contractor Reports Data Breach After Ransomware Attack
Sergiu Gatlan reports: RailWorks Corporation, one of North America’s leading railroad track and transit system providers, disclosed a ransomware attack that led to the exposure of personally identifiable information of current and former employees, their beneficiaries and dependents, as well as that of independent contractors. Read more on BleepingComputer.
IL: La Salle County: We’re still open for business
News Tribune reports: La Salle County officials Friday morning affirmed workers continue to restore the county’s computer network “with its first priority being public safety” after a ransomware attack this week. “All county offices remain open and are operating in lieu of their limited ability to access certain documents and records,” the statement read. “The…
Sodinokibi Ransomware Posts Alleged Data of Kenneth Cole Fashion Giant
Sergiu Gatlan reports: The operators behind Sodinokibi Ransomware published download links to files containing what they claim is financial and work documents, as well as customers’ personal data stolen from giant U.S. fashion house Kenneth Cole Productions. Sodinokibi (aka REvil) is a Ransomware-as-a-Service operation where the operators manage development of the ransomware and the payment portal used…