Recherche : [Ransomware]

The untold history of today’s Russian-speaking hackers https://archive.ph/SypyC

07/08/2023 10:15:51

Clop, a Russian-speaking hacking group specialising in ransomware, has its own website. Yes, this is a thing — criminals openly encouraging their victims to negotiate a ransom for the return of their data as though it were a legitimate commercial deal.

Les données de hooligans ayant sévi en Suisse publiées sur le darknet (update) | ICTjournal https://www.ictjournal.ch/news/2023-07-12/les-donnees-de-hooligans-ayant-sevi-en-suisse-publiees-sur-le-darknet-update

13/07/2023 00:22:17

Différentes données ultra sensibles pour la sécurité de la Suisse font partie des données volées au prestataire Xpl

The five-day job: A BlackByte ransomware intrusion case study https://www.microsoft.com/en-us/security/blog/2023/07/06/the-five-day-job-a-blackbyte-ransomware-intrusion-case-study/

08/07/2023 11:31:41

In a recent investigation by Microsoft Incident Response of a BlackByte 2.0 ransomware attack, we found that the threat actor progressed through the full attack chain, from initial access to impact, in less than five days, causing significant business disruption for the victim organization.

FBI digital sting against Hive cybercrime group shows the promise — and limits — of hacking hackers https://www.politico.com/news/2023/07/04/fbi-digital-sting-shows-the-promise-and-limits-of-hacking-hackers-00104545

06/07/2023 14:42:46

The bureau is trying to take the fight to foreign ransomware gangs, even if it means giving up on bringing some of them behind bars.

Clop Ransomware: History, Timeline, And Adversary Simulation https://fourcore.io/blogs/clop-ransomware-history-adversary-simulation

05/07/2023 10:30:44

The infamous Clop ransomware, mainly known as Cl0p, targets various industries and organizations, extorting data for a huge amount of ransom. It advances actively with new emerging campaigns. This blog walks through the Clop timeline, Mitre TTPs and their emulation.

BlackCat Operators Distributing Ransomware Disguised as WinSCP via Malvertising https://thehackernews.com/2023/07/blackcat-operators-distributing.html

05/07/2023 09:30:26

Threat actors associated with the BlackCat ransomware have been observed employing malvertising tricks to distribute rogue installers of the WinSCP file transfer application.

Campagne MOVEit : Cl0p divulgue une grande quantité de données volées à Cegedim https://www.lemagit.fr/actualites/366542375/Campagne-MOVEit-Cl0p-commence-a-divulguer-les-donnees-volees-a-Cegedim

05/07/2023 09:25:43

Le groupe Cl0p a poursuivi la diffusion des données volées à Cegedim à l’occasion de sa campagne de cyberattaques contre les instances MOVEit Transfer. Il met désormais à disposition plus de 1,5 To de données.

Decrypted: Akira Ransomware https://decoded.avast.io/threatresearch/decrypted-akira-ransomware/

03/07/2023 07:29:08

Researchers for Avast have developed a decryptor for the Akira ransomware and released it for public download. The Akira ransomware appeared in March 2023 and since then, the gang claims successful attacks on various organizations in the education, finance and real estate industries, amongst others.

TSMC Says Supplier Hacked After Ransomware Group Claims Attack on Chip Giant https://www.securityweek.com/tsmc-says-supplier-hacked-after-ransomware-group-claims-attack-on-chip-giant/

03/07/2023 07:20:09

The LockBit ransomware group claims to have hacked Taiwan Semiconductor Manufacturing Company (TSMC), but the chip giant says only one of its suppliers was breached.

The notorious cybercrime group announced on Thursday on its website that it targeted TSMC, suggesting — based on the $70 million ransom demand — that it has stolen vast amounts of sensitive information. The victim was initially given seven days to respond, but the deadline has been extended to August 6 at the time of writing.

TSMC confirms data breach after LockBit cyberattack on third-party supplier https://techcrunch.com/2023/06/30/tsmc-confirms-data-breach-after-lockbit-cyberattack-on-third-party-supplier/

01/07/2023 10:15:16

One of the world's biggest chipmakers confirmed a data breach after the LockBit ransomware gang targeted one of its third-party providers.

Tracing Ransomware Threat Actors Through Stylometric Analysis and Chat Log Examination https://medium.com/@callyso0414/tracing-ransomware-threat-actors-through-stylometric-analysis-and-chat-log-examination-23f0f84abba8

28/06/2023 21:24:41

I stumbled upon an intriguing concept presented by Will Thomas (BushidoToken) in his blog post titled “Unmasking Ransomware Using Stylometric Analysis: Shadow, 8BASE, Rancoz.” This concept revolves around utilizing stylometry to identify potential modifications in new ransomware variants based on existing popular strains. If you’re interested, you can read the blog post here. (Notably, Will Thomas also appeared on Dark Net Diaries, discussing his tracking of the Revil ransomware.)

Akira Ransomware Extends Reach to Linux Platform https://blog.cyble.com/2023/06/28/akira-ransomware-extends-reach-to-linux-platform/

28/06/2023 14:45:02

Cyble Research & Intelligence Labs examines the Linux variant of Akira Ransomware and assesses its impact on various sectors.

Siemens Energy confirms data breach after MOVEit data-theft attack https://www.bleepingcomputer.com/news/security/siemens-energy-confirms-data-breach-after-moveit-data-theft-attack/

27/06/2023 20:36:59

Siemens Energy has confirmed that data was stolen during the recent Clop ransomware data-theft attacks using a zero-day vulnerability in the MOVEit Transfer platform.

Suspected LockBit ransomware affiliate arrested, charged in US https://www.bleepingcomputer.com/news/security/suspected-lockbit-ransomware-affiliate-arrested-charged-in-us/

15/06/2023 21:43:01

Russian national Ruslan Magomedovich Astamirov was arrested in Arizona and charged by the U.S. Justice Department for allegedly deploying LockBit ransomware on the networks of victims in the United States and abroad.

Ransomware gang lists first victims of MOVEit mass-hacks, including US banks and universities | TechCrunch https://techcrunch.com/2023/06/15/moveit-clop-mass-hacks-banks-universities/

15/06/2023 13:53:44

The hackers responsible for exploiting a flaw to target users of a popular file transfer tool has begun listing victims of the mass-attacks

TAG Aviation: Black Basta pirate une compagnie romande https://www.watson.ch/fr/suisse/technologie/155927204-tag-aviation-black-basta-pirate-une-compagnie-romande

14/06/2023 17:05:24

La société TAG Aviation a été victime d'une attaque par ransomware. Les recherches de watson révèlent que Black Basta est à l'origine de cette attaque.

Switzerland under cyberattack https://www.helpnetsecurity.com/2023/06/14/swiss-government-ddos/

14/06/2023 14:11:04

The Swiss government is under DDoS attacks, but several ransomware gangs have also turned their sights on other Swiss organizations.

Unmasking the Darkrace Ransomware Gang https://blog.cyble.com/2023/06/08/unmasking-the-darkrace-ransomware-gang/

08/06/2023 14:14:32

Cyble analyses Darkrace Ransomware, a new ransomware group shares similarities with infamous LockBit Ransomware.

L’armée suisse et Fedpol touchés par une cyberattaque https://www.ictjournal.ch/news/2023-06-05/larmee-suisse-et-fedpol-touches-par-une-cyberattaque

05/06/2023 21:40:40

Des cyberpirates ont mis la main sur des données de plusieurs offices de l'administration fédérale et les ont

Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals - SecurityWeek https://www.securityweek.com/enzo-biochem-ransomware-attack-exposes-information-of-2-5m-individuals/

04/06/2023 22:38:10

Enzo Biochem says the clinical test information of roughly 2.47 million individuals was exposed in a recent ransomware attack.

Liens par page

Filtres