APT group “Fancy Lazarus” has been ramping up its ransom DDoS efforts in several new campaigns against US entities. The group is known for masquerading as various APT groups to distract security researchers. Researchers state the APT group is launching a new series of attacks using a combination of the
Following a cyberattack that forced JBS Foods to take some of its systems and services offline, the company allegedly paid $11 million in ransom to the ransomware gang REvil. The CEO of JBS stated that the decision was made to avoid any further issues or potential problems for its customers.
Department of Justice Seizes $2.3 Million in Cryptocurrency Paid to the Ransomware Extortionists Darkside
Yesterday, the Department of Justice announced that it had seized roughly $2.3 million of the $4 million paid in ransom to the DarkSide ransomware gang by Colonial Pipeline following an attack against the latter’s networks. The seizure warrant was announced yesterday by Laurel Beeler, US Magistrate Judge for the Northern
In the UK and US, ransomware attacks targeting schools, colleges, universities, and other academic institutions are on the rise again. The UK’s National Cyber Security Centre (NCSC) recently released an advisory that comes amid the aftermath of significant ransomware attacks across the world last month, including those targeting the US’s
Cyberattackers are using the Colonial Pipeline ransomware attack to their advantage by leveraging further phishing attacks. Cybersecurity firm INKY reported that it recently received multiple helpdesk emails about the campaign, which follows a typical phishing trend of using widely-covered news events to lure victims into clicking malicious emails and links.
Ransomware actors have launched an attack on the largest ferry service in Massachusetts, disrupting traffic and passengers. The Steamship Authority, which transports passengers to Martha’s Vineyard and Nantucket, announced on Twitter that they were targeted by a cyberattack early on Wednesday morning. The attack resulted in customers being unable to
California healthcare provider Scripps is currently informing more than 147,000 individuals that their personal data may have been exposed in a recent cyber-attack against the organizations. Scripps operates five hospitals in San Diego, along with other facilities. The organization took most of its network offline after discovering suspicious activity such
This is the second part of our special series on Ransomware. The first provided an update on the nature of the threat, including an anatomy of a modern attack. This post, produced with inputs from real world cybersecurity practitioners Matt Devost, Bob Flores, Junaid Islam and Bob Gourley, provides information for Corporate Board of Directors and the CEO. In our experience, the guidance provided here can mitigate the existential risks of a ransomware infection to a low level.
The scourge of ransomware is the inevitable result of decades of schizophrenia about our relationship with information technology and security. Treating this problem in the same fashion as we have those that came before it will only prolong our suffering. Clarity, creativity, and will are required if we are to have any hope of a future where ransomware is an annoyance and not a plague.
DarkSide, a cybercriminal gang that allegedly disbanded following the Colonial Pipeline ransomware attack, may not stay out of the hacking game for long, according to a new report. Key government cybersecurity and counterintelligence officials stated that while DarkSide may have actually halted its operations, the group could re-emerge under a