Sarah Rankin and Alan Suderman report: The information technology agency that serves Virginia’s legislature has been hit by a ransomware attack that has substantially affected its operations, state officials said Monday. Gov. Ralph Northam’s spokeswoman, Alena Yarmosky, confirmed the attack on Virginia’s Division of Legislative Automated Systems. Read more at AP
Search Results for: ransomware
Oregon anesthesiology group notifies 750,000 about ransomware incident; FBI seized threat actors’ account with their files
Like many other healthcare entities, Oregon Anesthesiology Group, P.C. (OAG) became the victim of a ransomware attack this year. But somewhat atypically, the FBI seems to have seized a threat actor’s account that had their patient data. According to OAG’s statement of December 6, the medical group experienced what they described as a cyberattack that…
Arrest in Romania of a ransomware affiliate scavenging for sensitive data
The following is a press release: Europol’s European Cybercrime Centre (EC3) has supported the Romanian National Police (Poliția Română) and the US Federal Bureau of Investigation (FBI) in arresting a ransomware affiliate targeting high-profile organisations and companies for their sensitive data. The suspect – a 41-year-old Romanian national – was arrested today at his home in Craiova, Romania, in the early hours…
More news items involving ransomware….
It’s gotten impossible to keep up with all the attacks, but here are some in the news today: North American food importer Atalanta revealed that employee information was involved in a ransomware attack. Their statement. Media coverage. Hellmann Worldwide Logistics in Germany was also hit by an attack that has impaired operations. Their statement and…
Ransomwared payroll provider leaks data on 38,000 Australian government workers
Simon Sharwood reports: Personal information describing names, addresses, bank account details, and taxation IDs of 38,000 Australian government employees has been leaked to the dark web after a ransomware attack. The treasurer of the Australian State of South Australia, Rob Lucas, today revealed the source of the leak: outsourced payroll provider Frontier Software. Read more at The…
Emotet now drops Cobalt Strike, fast forwards ransomware attacks
Lawrence Abrams reports: In a concerning development, the notorious Emotet malware now installs Cobalt Strike beacons directly, giving immediate network access to threat actors and making ransomware attacks imminent. […] Today, Emotet research group Cryptolaemus warned that Emotet is now skipping their primary malware payload of TrickBot or Qbot and directly installing Cobalt Strike beacons on infected…