Kimberly Mersalas reports: Even as COVID-19 and its emphasis on telehealth have opened providers to greater cybersecurity risks, insurance policies that offer potential protection are becoming more expensive, and in some cases, harder to get. Insurers are issuing 25% to 50% premium increases this year, reflecting a large number of ransomware payouts over the last…
Search Results for: ransomware
Phone House Spain hit by Babuk ransomware, 3 million users affected.
Marco A. DeFelice reports: Before the news became public, SuspectFile had tried in vain to contact Phone House Spain already on Friday morning informing them that, in the event of non-payment of the ransom of 6 million dollars (just over 97 bitcoins at the exchange rate of Friday 16 April ed) and that the following day ( Saturday 17…
Adversary Dossier: Ryuk Ransomware Anatomy of an Attack in 2021
Vitali Kremez, Al Calleo, and Yelisey Boguslavskiy report: This report illustrates some of the new and existing Tactics, Techniques, and Procedures (TTPs) of the Ryuk ransomware variants that Advintel has witnessed throughout their investigations in 2021. Initial Attack Vector: RDP Brute Force / Other Means of Initial Attack Vector Ryuk operators gain initial access to…
BR: The National Library website falls victim to a ransomware attack and goes offline
Wellington Arruda reports (translation): Last Sunday [April 11], the National Library website was the target of a ransomware attack and needed to be taken down. The agency, linked to the Special Secretariat for Culture, opted to shut down the servers to alleviate the potential problems caused and new invasions. However, last Tuesday [April 13] the site was activated again, and…
UK: Latest on ransomware attack on 24 schools near Bristol
Harris Federation is not the only school academy trust hit by ransomware recently. Also hit in March was the Castle School Education Trust (CSET). As reported by Bristol Live, that attack affected not only CSET’s seven schools but 17 others maintained by the local authority who relied on the academy group’s IT infrastructure. While no ransom…
Detecting Clop Ransomware
Splunk Threat Research Team reports: As ransomware campaigns continue, malicious actors introduce different modus operandi to target their victims. In this blog, we’ll be taking a look at the Clop ransomware. This crimeware was discovered in 2019 and is said to be used for an attack that demanded one of the highest ransom amounts in recorded history…