On November 10-11, Kisters AG in Germany was hit by a ransomware attack. Because the firm is a critical infrastructure supplier for energy systems and with the potential for downstream compromise, this one has raised significant concerns. The following are some translated snippets from energie.blog, which has been providing updates on the attack: Update: 11/21/2021:…
Search Results for: ransomware
Double Extortion Ransomware Victims Soar 935%
Phil Muncaster reports: Researchers have recorded a 935% year-on-year increase in double extortion attacks, with data from over 2300 companies posted onto ransomware extortion sites. Group-IB’s Hi-Tech Crime Trends 2021/2022 report covers the period from the second half of 2020 to the first half of 2021. During that time, an “unholy alliance” of initial access brokers and…
Planned Parenthood’s Los Angeles clinics hit by ransomware; patient data stolen
Reuters reports: Planned Parenthood’s Los Angeles clinics suffered a ransomware attack in October and personal information of 400,000 patients was stolen, a spokesperson for the women’s reproductive healthcare organization said on Wednesday. Spokesperson John Erickson said an “unauthorized person” gained access to the Los Angeles affiliate’s network between Oct. 9 and 17 and installed ransomware…
FBI seized $2.2M from affiliate of REvil, Gandcrab ransomware gangs
Lawrence Abrams reports: The FBI seized $2.2 million in August from a well-known REvil and GandCrab ransomware affiliate, according to court documents seen by BleepingComputer. In a complaint unsealed today, the FBI seized 39.89138522 bitcoins worth approximately $2.2 million from an Exodus wallet on August 3rd, 2021. Read more on BleepingComputer.
Medsurant Health discloses ransomware incident, but not yet notifying patients
Medsurant Health in Pennsylvania recently notified HHS that 45,000 patients were impacted by a breach. The patients are not yet being notified, however, because it seems Medsurant is still trying to figure out who needs to be notified. In a statement published November 29, Medsurant stated that they received an email from a threat actor…
Recovering from ransomware: One organization’s inside story
Yann Serra reports: On Sunday 21 February 2021, Manutan, a large office equipment distributor, discovered that two-thirds of its 1,200 servers had succumbed to a cyber attack by the DoppelPaymer ransomware crew. Commercial activity at the France-headquartered company – which has 25 subsidiaries spread across Europe – would be frozen for 10 days and did not resume fully until…