This may make it a bit harder for those legitimately seeking jobs on LinkedIn. Daryna Antoniuk reports: Cybercriminals from the long-running FIN6 group are posing as job seekers on platforms like LinkedIn to infect recruiters with malware delivered through fake resumes, according to a new report. Recruitment scams are common among cybercrime gangs, but this…
Category: Malware
AMI Group – Travel & Tours notice of ransomware attack
The following notice was posted June 3 on Facebook.ย As of publication, there is no notice on their website, and although AMI indicates that APT73 is responsible for the attack, there is nothing on Bashe’s leak site or any other leak site.ย ๐จ๐ฅ๐๐๐ก๐ง ๐ฃ๐จ๐๐๐๐ ๐ก๐ข๐ง๐๐๐ โ ๐๐ฌ๐๐๐ฅ๐ฆ๐๐๐จ๐ฅ๐๐ง๐ฌ ๐๐๐๐ฅ๐ง ๐ง๐ผ ๐ผ๐๐ฟ ๐๐ฎ๐น๐๐ฒ๐ฑ ๐ฐ๐น๐ถ๐ฒ๐ป๐๐, ๐ฝ๐ฎ๐ฟ๐๐ป๐ฒ๐ฟ๐, ๐๐๐ฎ๐ธ๐ฒ๐ต๐ผ๐น๐ฑ๐ฒ๐ฟ๐, ๐ฎ๐ป๐ฑ…
Rewards for Justice offers $10M reward for info on RedLine developer or RedLine’s use by foreign governments
The government’s Rewards for Justice program has announced a $10 million reward for information on Maxim Alexandrovich Rudometov (ะะฐะบัะธะผ ะะปะตะบัะฐะฝะดัะพะฒะธั ะ ัะดะพะผััะพะฒ), born in 1999 in the Luhansk region of Ukraine. Rudometov allegedly developed and has sold the infostealer malware known as RedLine. “Rudometov has regularly accessed and managed the technical infrastructure of RedLine , is…
Ransomware group Gunra claims to have exfiltrated 450 million patient records from American Hospital Dubai (1)
A relatively new ransomware group calling themself “Gunra”ย has shown it has no compunction about attacking hospitals. They have reportedly locked — and have started leaking information from — the American Hospital in Dubai (AHD). In its first listing concerning this attack, Gunra claimed to have exfiltrated the entire Cerner Millenium database (now known as…
Texas gastroenterology and surgical practice victim of ransomware attack
The InterLock ransomware leak site recently added Texas Digestive Specialists to its listings, claiming to have exfiltrated (and leaked) 263 GB of data consisting of 16,920 folders with 215,245 files. Finding no indication of anything amiss or any breach disclosure on the medical group’s website, DataBreaches sampled selectively from the data tranche. We noticed evidence…
Lyrix Ransomware Targets Windows Users with Advanced Evasion Techniques
Aman Mishra reports: A formidable new strain of ransomware, dubbed Lyrix, has recently surfaced, posing a significant threat to Windows users worldwide. […] Lyrix ransomware stands out due to its ability to bypass traditional antivirus solutions by employing polymorphic code, which constantly mutates to avoid signature-based detection. Once infiltrated, the malware stealthily maps the target…