Report: 202212121700 LockBit 3.0 Ransomware December 12, 2022 Executive Summary LockBit 3.0 is the newest version of the LockBit ransomware that was first discovered in September 2019. The ransomware family has a history of using the Ransomware-as-a-service (RaaS) model and typically targets organizations that could pay higher ransoms. Historically, this ransomware employs a double extortion…
Search Results for: ransomware
AirAsia’s parent company told to supply documents; government probes Daixin ransomware attack
John Bunyan reports: The Ministry of Communications and Digital has ordered Capital A, the parent of AirAsia, to submit supporting documents and data for the investigation into the breach of the airline’s networks that exposed the personal information of millions of passengers and staff. Communications and Digital Minister Fahmi Fadzil said the security breach affecting…
HC3: Analyst Note: Royal Ransomware
December 07, 2022 TLP:CLEAR Report: 202212071400 Executive Summary Royal is a human-operated ransomware that was first observed in 2022 and has increased in appearance. It has demanded ransoms up to millions of dollars. Since its appearance, HC3 is aware of attacks against the Healthcare and Public Healthcare (HPH) sector. Due to the historical nature of…
IL: Knox College president addresses ransomware incident as notorious group claims credit
Samuel Lisec reports: Hive Ransomware Group, a FBI-identified criminal organization, has appeared to claim credit for ongoing “disruptions” to Knox College’s computer systems. In an email sent to a number of Knox students on Wednesday, a group claiming to be Hive says it has encrypted “critical infrastructure and data,” compromised the college’s backup servers and mined sensitive…
Receivables Performance Management reveals ransomware attack in May 2021
Receivables Performance Management (RPM), a business associate to a number of businesses, including those in the healthcare sector, has been notifying regulators and individuals bout an incident in 2021 that reportedly impacted more than half a million Texans and an as-yet untold total number of individuals. The Washington state entity revealed that on May 12,…
WI: Adams-Friendship Area School District hit by ransomware
A statement on Adams-Friendship Area School District’s web site dated December 1 reads: 12/1/22 Internet & Network Outage Update Dear AFASD Families, On November 15th, 2022 we notified you that our network and internet services experienced a disruption. We have recently learned that unauthorized activity was detected within our environment on or about November 15,…