Jessica Lyons Hardcastle reports: IN BRIEF The BlackCat ransomware gang, said to be the first-known ransomware group to successfully break into networks with Rust-written malware, has attacked at least 60 organizations globally as of March, according to the FBI. BlackCat, also known as ALPHV, is a relatively new group of cybercriminals that operates a Windows ransomware-as-a-service….
Search Results for: ransomware
Lewis and Clark Community College sends out notifications concerning ransomware incident
As reported previously, Lewis and Clark Community College was hit with a ransomware attack in November, 2021. They announced it immediately due to impact on the functioning of their systems, but it appears that they are just now issuing breach notification letters to individuals. Their notification letter says that information was encrypted but that there…
REvil ransomware group’s infrastructure comes back online hinting at fresh campaign
Connor Jones reports: ….. Some researchers noted the return of REvil’s ‘happy blog’ – the place where it announced its hacks – on 19 April, returning an Nginx 404 error. Others said the signs of a return started as far back as December, one month after law enforcement made the original arrests of the gang members. Using the…
Learning Opportunities from Ransomware and Redline Infostealer Events Inside America’s Universities
Britton White writes: After a university was recently hit with Ransomware, I decided to research the university’s domain name searching for any users who might have been hit with Redline Infostealer/Malware. To no surprise, I found many students had unknowingly had their saved browser credentials scraped (stolen/exfiltrated). It didn’t take long to find a student…
Conti’s Ransomware Toll on the Healthcare Industry
Brian Krebs reports: Conti — one of the most ruthless and successful Russian ransomware groups — publicly declared during the height of the COVID-19 pandemic that it would refrain from targeting healthcare providers. But new information confirms this pledge was always a lie, and that Conti has launched more than 200 attacks against hospitals and other…
LockBit ransomware gang lurked in a U.S. gov network for months
Bill Toulas reports: A regional U.S. government agency compromised with LockBit ransomware had the threat actor in its network for at least five months before the payload was deployed, security researchers found. Logs retrieved from the compromised machines showed that two threat groups had compromised them and were engaged in reconnaissance and remote access operations….