Catalin Cimpanu reports that researchers claim to have spotted evidence of ongoing and increasing FIN8 activity: But in a report published today, cyber-security firm Morphisec said it detected and stopped new FIN8 attacks aimed at companies in the hospitality industry. These new attacks leveraged the same malware the group had used in the past but…
Category: Malware
Eight years later, the case against the Mariposa malware gang moves forward in the US
Catalin Cimpanu reports: Eight years after US law enforcement opened a first case in the operations of the Mariposa (Butterfly Bot, BFBOT) malware gang, officials are now moving forward with new charges and arrest warrants against four suspects. The original case started way back in May 2011, when US officials first filed a complaint against…
GandCrab ransomware operation says it’s shutting down
Does Hallmark have a card suitable for this? Catalin Cimpanu reports: The creators of the GandCrab ransomware announced yesterday they were shutting down their Ransomware-as-a-Service (RaaS) operation, ZDNet has learned. […] “We successfully cashed this money and legalized it in various spheres of white business both in real life and on the Internet,” the GandCrab…
Cyber attack could keep county servers down for days
Luzerne County’s administration has shut down some computer servers and work stations to address a cyber attack discovered last weekend, officials said. On Wednesday morning, county Administrative Services Division Head David Parsnik said the clean-up process may take several days to complete. By the afternoon, the administration sent workers an email indicating the servers may…
Checkers Drive-In Restaurants, Inc. Notifies Checkers and Rally Guests About Data Security Issue
TAMPA, Fla. May 29, 2019 /PRNewswire/ — Checkers Drive-In Restaurants, Inc. (“Checkers”) announced today that it is notifying guests about a data security issue involving malware at certain Checkers and Rally’s locations. After discovering the issue, Checkers quickly engaged leading data security experts to conduct an extensive investigation and coordinated with affected restaurants and federal law…
Hackers are scanning for MySQL servers to deploy GandCrab ransomware
Catalin Cimpanu reports: At least one Chinese hacking crew is currently scanning the internet for Windows servers that are running MySQL databases so they can infect these systems with the GandCrab ransomware. These attacks are somewhat unique, as cyber-security firms have not seen any threat actor until now that has attacked MySQL servers running on…