the hotel chain Nordic Choice found a creative solution that could become a standard to reduce the damage of a ransomware attack against corporate servers. In a press release, the company informs that it switched the infected devices, which used Windows as an operating system, to an infrastructure entirely based...
We have already seen in the past how some hackers carry out ransomware-type attacks on hospitals, hijacking computers, locking them remotely, asking for money in exchange for unlocking. Companies and public institutions have also been victims of this type of attack, but when it is carried out in hospitals, each...
The Bernalillo detention center in the United States suffered a ransomware attack on January 5th. The entire New Mexico prison system went offline between midnight and five in the morning, disabling security cameras and door opening and closing mechanisms. The database with information on crimes and records on prisoners was...
Since the beginning of its malicious campaign, the group has demanded a total of $ 74 million from its victims and received more than $ 40 million. FBI USA reported that in November 2021, Cuba ransomware compromised the networks of at least 49 critical infrastructure organizations in the United States,...
All indications are that the company has fallen victim to ransomware. Colorado’s Delta-Montrose Electric Association (DMEA) is painfully recovering from a devastating cyberattack that destroyed all of its data over the past 25 years. An attack last month forced the company to shut down 90% of its internal computer systems....
All members of the group have been active for some time on popular hacker forums. Juan Antonio Velasco, cybersecurity analyst at Spanish financial services giant Santander Group, spoke about the recent career changes of four alleged members of the REvil ransomware group, using the pseudonyms Orange, MRT, Kajit and 999....
After the release of the free decryptor from Trustwave, several new versions of BlackByte have appeared. The BlackByte ransomware group hacks into corporate networks through ProxyShell vulnerabilities in Microsoft Exchange servers. ProxyShell is the name of a bundle of three vulnerabilities in Microsoft Exchange, the combined exploitation of which makes...
The cyber ransomware group Hive attacked the American Supernus Pharmaceuticals. American biopharmaceutical company Supernus Pharmaceuticals confirmed that she became the victim of a ransomware cyberattack, as a result of which cybercriminals stole huge amounts of data from her network. Apparently, the incident took place in mid-November 2021. The attackers gained...
The REvil ransomware put heavy pressure on JBS during the attack. At a Special Hearing in the U.S. Congress on Counter-Hacking Strategies, there was made public information about a cyberattack that halted the production processes of the world’s largest meat food producer JBS in the United States and Australia. As...
Hackers compromised company employee data and commercial information. Singapore Freight Shipping Company Swire Pacific Offshore (SPO) underwent attack by the operators of the ransomware Clop. As a result of the attack, cybercriminals stole company data. Swire Pacific Offshore detected unauthorized network intrusion into its IT systems, which resulted in the...
The owner Kirill Kharibi told about the hacker attack on Rossyuvelirtorg on his Instagram page. The co-owner of the Omsk company “Rossyuvelirtorg” Kirill Kharibi spoke about an unpleasant incident that happened at the end of the week. In the early morning of November 11, hackers attacked the Rossyuvelirtorg office network...
The grouping moves files to WinRAR archives, sets the wrong password, encrypts this key, and deletes the original files. A new ransomware group called Memento applies an unusual approach to blocking files in password-protected archives after their encryption method is detected by antivirus software. Ransomware operators exploit a vulnerability (CVE-2021-21971)...
Buyers should hurry as the group wants to empty out BTC-Alpha wallets. The specialists of the DarkTracer company, which provides a platform of the same name for searching data (leaked files, hacked accounts, etc.) on the darknet, drew attention to an unusual announcement on the site of leaks of the...
Someone regularly creates malicious copies of the noblox.js package and gives them names that are very similar to the real one. Since the beginning of September this year, Josh Muir, along with five other developers of the noblox.js package, has been trying hard to prevent cybercriminals from spreading ransomware through...
Cyber ransomware posted dozens of victims simultaneously on their website. The cyber ransomware group Pysa (also known as Mespinoza) simultaneously posted dozens of victims on its site of leaks, immediately after the US government announced a series of measures against cyber ransomware groups. There are currently 50 companies, universities and...
The authorities of the United States and Israel have agreed to mutually counter hackers using extortion software. The US and Israeli authorities have reached agreements on cooperation in the fight against hackers using ransomware viruses, as well as in the field of ensuring the security of financial infrastructure. This was...
