In part of a three-part series, Andrew Brandt and Anand Ajjan of Sophos write: For the past several months, both SophosLabs and the Sophos Rapid Response team have been collaborating on detection and behavioral analysis of a ransomware that emerged last year and has undergone rapid growth. The ransomware, which calls itself Conti, is delivered…
Search Results for: ransomware
Ransomware attacks on medical entities continue: a laboratory in Italy and a health care service in New Mexico among latest victims
Ransomware attacks on medical entities continue. Today, we report on one attack in Italy and one in the U.S. And sadly, by the end of the day, there may well be more. Italy Marco De Felice (aka @amvinfe) reports that RagnarOK threat actors have attacked the Valdès Analysis Laboratory in Cagliari. The attack occurred on…
Could an ex-employee be planting ransomware on your firm’s network?
We’ve all seen too many instances where vengeful former employees have tried to sabotage their former employer’s network. Even when their employers remember to revoke access for the individual, they often find other ways in — like using a former colleague’s credentials or having previously created another user on the system with credentials. But would…
Egregor ransomware operators arrested in Ukraine
Catalin Cimpanu reports: Members of the Egregor ransomware cartel have been arrested this week in Ukraine, French radio station France Inter reported on Friday, citing law enforcement sources. […] According to the France Inter report, the arrested suspects are believed to some of these “affiliates” (or partners) of the Egregor gang, which help prop up…
NC: Central Piedmont Community College impacted by ransomware attack
Central Piedmont Community College experienced a ransomware attack that they first disclosed on February 10. Here is their most recent update: Central Piedmont Community College has experienced a ransomware attack, which was discovered Wednesday evening, Feb. 10. The college’s Information Technology Services (ITS) staff worked tirelessly through the night to take the college’s critical systems…
Free decrypter released for Avaddon ransomware victims… aaand, it’s gone!
Catalin Cimpanu reports: A Spanish student released a free decryption utility that can help victims of the Avaddon ransomware recover their files for free. Published on GitHub by Javier Yuste, a student at the Rey Juan Carlos University in Madrid, the AvaddonDecrypter works only in cases where victims have not powered off their computers. Unfortunately, the threat…