11 Jun 2021

‘Fancy Lazarus’ Cyberattackers Ramp up Ransom DDoS Efforts

APT group “Fancy Lazarus” has been ramping up its ransom DDoS efforts in several new campaigns against US entities. The group is known for masquerading as various APT groups to distract security researchers. Researchers state the APT group is launching a new series of attacks using a combination of the

Read More
10 Jun 2021

JBS Paid $11M to REvil Gang Even After Restoring Operations

Following a cyberattack that forced JBS Foods to take some of its systems and services offline, the company allegedly paid $11 million in ransom to the ransomware gang REvil. The CEO of JBS stated that the decision was made to avoid any further issues or potential problems for its customers.

Read More
08 Jun 2021

Department of Justice Seizes $2.3 Million in Cryptocurrency Paid to the Ransomware Extortionists Darkside

Yesterday, the Department of Justice announced that it had seized roughly $2.3 million of the $4 million paid in ransom to the DarkSide ransomware gang by Colonial Pipeline following an attack against the latter’s networks. The seizure warrant was announced yesterday by Laurel Beeler, US Magistrate Judge for the Northern

Read More
07 Jun 2021

There’s been another spike in attacks on schools and universities

In the UK and US, ransomware attacks targeting schools, colleges, universities, and other academic institutions are on the rise again. The UK’s National Cyber Security Centre (NCSC) recently released an advisory that comes amid the aftermath of significant ransomware attacks across the world last month, including those targeting the US’s

Read More
04 Jun 2021

Hackers use Colonial pipeline ransomware news for phishing attack

Cyberattackers are using the Colonial Pipeline ransomware attack to their advantage by leveraging further phishing attacks. Cybersecurity firm INKY reported that it recently received multiple helpdesk emails about the campaign, which follows a typical phishing trend of using widely-covered news events to lure victims into clicking malicious emails and links.

Read More
03 Jun 2021

Ransomware Disrupts Largest Ferry Service in Massachusetts

Ransomware actors have launched an attack on the largest ferry service in Massachusetts, disrupting traffic and passengers. The Steamship Authority, which transports passengers to Martha’s Vineyard and Nantucket, announced on Twitter that they were targeted by a cyberattack early on Wednesday morning. The attack resulted in customers being unable to

Read More
03 Jun 2021

Scripps Notifying 147K People of Data Breach

California healthcare provider Scripps is currently informing more than 147,000 individuals that their personal data may have been exposed in a recent cyber-attack against the organizations. Scripps operates five hospitals in San Diego, along with other facilities. The organization took most of its network offline after discovering suspicious activity such

Read More
02 Jun 2021

The Executive’s Guide To Mitigating The Ransomware Threat

This is the second part of our special series on Ransomware. The first provided an update on the nature of the threat, including an anatomy of a modern attack. This post, produced with inputs from real world cybersecurity practitioners Matt Devost, Bob Flores, Junaid Islam and Bob Gourley, provides information for Corporate Board of Directors and the CEO. In our experience, the guidance provided here can mitigate the existential risks of a ransomware infection to a low level. 

Read More
01 Jun 2021

Ransomware: The Present we Deserve?

The scourge of ransomware is the inevitable result of decades of schizophrenia about our relationship with information technology and security. Treating this problem in the same fashion as we have those that came before it will only prolong our suffering. Clarity, creativity, and will are required if we are to have any hope of a future where ransomware is an annoyance and not a plague.

Read More
28 May 2021

Feds Warn DarkSide May Not Stay Dark

DarkSide, a cybercriminal gang that allegedly disbanded following the Colonial Pipeline ransomware attack, may not stay out of the hacking game for long, according to a new report. Key government cybersecurity and counterintelligence officials stated that while DarkSide may have actually halted its operations, the group could re-emerge under a

Read More