ransomware

Russian Ransomware Group REvil Back Online After 2-Month Hiatus

Sep 9, 2021 by iHash Leave a Comment

The operators behind the REvil ransomware-as-a-service (RaaS) staged a surprise return after a two-month hiatus following the widely publicized attack on technology services provider Kaseya on July 4. Two of the dark web portals, including the gang's Happy Blog data leak site and its payment/negotiation site, have resurfaced online, with the most recent victim added on July 8, … [Read more...] about Russian Ransomware Group REvil Back Online After 2-Month Hiatus

LockFile Ransomware Bypasses Protection Using Intermittent File Encryption

Aug 28, 2021 by iHash Leave a Comment

A new ransomware family that emerged last month comes with its own bag of tricks to bypass ransomware protection by leveraging a novel technique called "intermittent encryption." Called LockFile, the operators of the ransomware has been found exploiting recently disclosed flaws such as ProxyShell and PetitPotam to compromise Windows servers and deploy file-encrypting malware … [Read more...] about LockFile Ransomware Bypasses Protection Using Intermittent File Encryption

How to protect yourself from ransomware: five tips

Aug 28, 2021 by iHash Leave a Comment

Recent years have seen ransomware grow from an abstract curiosity into a major problem anyone can face — and that hundreds of thousands of people already have. Now a mass industry, ransomware even shows a division of labor, with some criminals writing malicious code and others selecting targets and using the code to infect them, earning a percentage of the ransom. In the past … [Read more...] about How to protect yourself from ransomware: five tips

Cybercrime Group Asking Insiders for Help in Planting Ransomware

Aug 24, 2021 by iHash Leave a Comment

A Nigerian threat actor has been observed attempting to recruit employees by offering them to pay $1 million in bitcoins to deploy Black Kingdom ransomware on companies' networks as part of an insider threat scheme. "The sender tells the employee that if they're able to deploy ransomware on a company computer or Windows server, then they would be paid $1 million in bitcoin, or … [Read more...] about Cybercrime Group Asking Insiders for Help in Planting Ransomware

Researchers Find New Evidence Linking Diavol Ransomware to TrickBot Gang

Aug 19, 2021 by iHash Leave a Comment

Cybersecurity researchers have disclosed details about an early development version of a nascent ransomware strain called Diavol that has been linked to threat actors behind the infamous TrickBot syndicate. The latest findings from IBM X-Force show that the ransomware sample shares similarities to other malware that has been attributed to the cybercrime gang, thus establishing … [Read more...] about Researchers Find New Evidence Linking Diavol Ransomware to TrickBot Gang

Threat Protection: The REvil Ransomware

Aug 11, 2021 by iHash Leave a Comment

The REvil ransomware family has been in the news due to its involvement in high-profile incidents, such as the JBS cyberattack and the Kaseya supply chain attack. Yet this threat carries a much more storied history, with varying functionality from one campaign to the next. The threat actors behind REvil attacks operate under a ransomware-as-a-service model. In this type of … [Read more...] about Threat Protection: The REvil Ransomware

Healthcare organizations are a focus of ransomware attacks

Aug 10, 2021 by iHash Leave a Comment

The adoption of electronic health records (EHRs) and even faster adoption of wireless medical devices and telemedicine has made patient information more accessible by more people. Over the past year and a half that’s been tremendously beneficial. The shift to remote care and the widespread adoption of EHR solutions by health systems have shaped digital transformation in … [Read more...] about Healthcare organizations are a focus of ransomware attacks

Phony Call Centers Tricking Users Into Installing Ransomware and Data-Stealers

Jul 30, 2021 by iHash Leave a Comment

An ongoing malicious campaign that employs phony call centers has been found to trick victims into downloading malware capable of data exfiltration as well as deploying ransomware on infected systems. The attacks — dubbed "BazaCall" — eschew traditional social engineering techniques that rely on rogue URLs and malware-laced documents in favor of a vishing-like method wherein … [Read more...] about Phony Call Centers Tricking Users Into Installing Ransomware and Data-Stealers

Beef up your ransomware defense with Cisco Secure Choice

Jul 22, 2021 by iHash Leave a Comment

Ransomware. Certainly not a new form of cybercrime, but one that has dominated mainstream headlines in recent months. High-profile cyberattacks on critical infrastructure and sectors in the global economy, such as government agencies, a major U.S. fuel pipeline, and one of the world’s largest meat processing plants have put a giant spotlight on ransomware. Ransomware has … [Read more...] about Beef up your ransomware defense with Cisco Secure Choice

Top Tips for Ransomware Defense

Jul 14, 2021 by iHash Leave a Comment

Ransomware is wreaking havoc. What can we do? Ransomware is making its way outside the cybersecurity space. It’s popping up everywhere from the nightly news to the G7 Summit. Indeed ransomware has entered the mainstream as threat actors increasingly focus their attention on critical infrastructure providers that can’t afford any downtime or disruption from a cyber incident – … [Read more...] about Top Tips for Ransomware Defense