Maze/Egregor ransomware cartel estimated to have made $75 million
The group behind the Maze and Egregor ransomware operations are believed to have earned at least $75 million worth of Bitcoin from ransom payments following intrusions at companies all over the world.
New Cring ransomware deployed via unpatched Fortinet VPNs
Unpatched Fortinet VPN devices are being hacked to deploy a new strain of ransomware inside corporate networks, Russian security firm Kaspersky said today.
Ransomware tracker: Schools, hospitals face a surge in attacks
After experiencing a brief dip at the beginning of the year, ransomware attacks are showing signs of a resurgence with
DHS chief lays out a cybersecurity vision with a focus on ransomware and infrastructure
The top official at the Department of Homeland Security announced today a series of 60-day cybersecurity-focused “sprints” aimed at focusing the department’s efforts on ransomware, industrial control systems, and other priorities. Alejandro Mayorkas, who was sworn in as DHS Secretary last month, said during a virtual talk hosted by the RSA Conference that his department is working on a proposal for a “Cyber Response and Recovery Fund” to provide assistance to state, local, tribal and territorial governments dealing with cyberattacks….
Malware uses underground call centers to trick users into infecting themselves
The operators of the BazarLoader malware are working together with underground call centers to trick the victims of their spam campaigns into opening malicious Office documents and infecting themselves with malware.
London’s biggest school trust hit by ransomware
London’s biggest multi-academy school trust, the Harris Federation, was hit by ransomware, bringing down IT systems, email servers, and phone lines at primary and secondary academies across London.
Australian TV station Channel 9 misses broadcasts after cyber-attack
A mysterious cyber-attack, believed to have been a ransomware infection, has hit Australian TV station Channel 9 over the weekend and prevented the network from airing some of its normal shows on Sunday.
Ransomware gang leaks data from US military contractor the PDI Group
A major supplier of military equipment to the US Air Force and militaries across the globe appears to have fallen victim to a ransomware attack. The victim is the PDI Group, an Ohio-based company that manufactures a wide range of ground support equipment for military needs, such as dollies, trollies, and platforms for transporting weapons, engines, and airplane parts during servicing operations.
FBI sends out private industry alert about Mamba ransomware
The US Federal Bureau of Investigations has sent out this week a private industry notification to US organizations warning about attacks carried out by the Mamba ransomware gang, along with basic instructions about how organizations could recover from an attack if the intrusion was caught in its early stages.
Microsoft Exchange servers targeted by second ransomware group
In the midst of a patching frenzy, Microsoft Exchange email servers are under attack from a new ransomware gang. Going by the name of Black Kingdom, this ransomware gang was first spotted last year in June, when they used vulnerabilities in Pulse Secure VPN products to breach corporate networks and install their file-encrypting payload.