How much does incident response cost following a ransomware attack? Would you believe $12 million and counting? Rackspace’s costs from last year’s ransomware infection continue to mount: the cloud hosting biz told America’s financial watchdog, the SEC, its total expenses to date regarding that cyberattack have reached $12 million – so far. The extortionware raid…
Category: Malware
CISA Advisory: Scattered Spider
TLP:CLEAR Product ID: AA23-320A November 16, 2023 SUMMARY The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory (CSA) in response to recent activity by Scattered Spider threat actors against the commercial facilities sectors and subsectors. This advisory provides tactics, techniques, and procedures (TTPs) obtained through…
Is a new ransomware group’s listing for Decatur Independent School District linked to an attack in September?
Decatur Independent School District in Texas was added to Inc Ransomware’s leak site on Wednesday. There is no summary or description of what the threat actors claim to have done or acquired. There is no countdown clock or timer, and there is no indication of how much money is being demanded. There is a proofpack….
NoEscape gang adds two more medical entities to their leak site
The NoEscape ransomware gang claims to have attacked two more medical entities. The first one is Southeastern Orthopaedic Specialists, P.A. in North Carolina. According to the threat actors, the network was locked on October 25, and 3 GB of files were exfiltrated. From the expanded listing (not shown here), it also appears that Southeastern…
LockBit ransomware group assemble strike team to breach banks, law firms and governments.
Kevin Beaumont writes: Recently, I’ve been tracking LockBit ransomware group as they’ve been breaching large enterprises: I thought it would be good to break down what is happening and how they’re doing it, since LockBit are breaching some of the world’s largest organisations — many of whom have incredibly large security budgets. Read more at…
Property management firm Homeland, Inc. allegedly hacked, hackers claim to have hundreds of thousands of SSN of tenants
Hunters International has added a property management firm in Kentucky to their leak site. They provide a description of what they claim to have acquired from Homeland, Inc.: Over 200Gb of data – tenants info (ssn, income, family members, phone numbers, etc) – service management info (move-in/move-out files, agreements, expenses, etc) – financial data (payments,…