Mathew J. Schwartz reports: Not all ransomware groups wield crypto-locking malware. In their continuing quest for extortionate profits, some have moved away from encryption and pressure victims purely by threatening to leak stolen data unless they receive a ransom payment. This seems to have been the case for BianLian, a prolific ransomware group that emerged…
Search Results for: ransomware
Has Oakland been hit with a second ransomware attack? (1)
As the public knows by now, Oakland, California was hit with a ransomware attack by the Play ransomware gang on February 8, and has been struggling since then to recover. Data from the attack started to be leaked on March 4. Play leaked about 10 GB of files, compressed, and threatened to leak more if…
Dish Network updates on ransomware attack
Mike Robuk reports: Dish Network stated it reinstated the ability customers of its Boost Mobile brand to access account information as it provided an update on its bid to recover from a cyberattack in February. The operator last week explained Boost Mobile subscribers can pay their bills online, at stores and through apps. Dish Network remains tight-lipped…
MONTI ransomware gang leaks Donut Leaks (UPDATED)
In one of the more intriguing listings of this week, the MONTI ransomware group has added another group, Donut Leaks, to their leak site. The message reads: “stole 100,000 usd didn’t fulfill the terms of the deal” The listing then provides the login credentials to what is allegedly Donut Leaks’ admin cpanel. When tested on…
CISA Advisory: #StopRansomware: LockBit 3.0
Release Date: March 16, 2023 Alert Code: AA23-075A SUMMARY Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to…
Conti-based ransomware ‘MeowCorp’ gets free decryptor
Ionut Ilascu reports: A decryption tool for a modified version of the Conti ransomware could help hundreds of victims recover their files for free. The utility works with data encrypted with a strain of the ransomware that emerged after the source code for Conti was leaked last year in March [1, 2]. Researchers at cybersecurity company Kaspersky…