Cybersecurity
Ransomware Gang Deploys Proxy Malware to 1,570+ Victims
Threat actors associated with The Gentlemen ransomware‑as‑a‑service (RaaS) operation have been observed attempting to deploy a known proxy malware called System
#ransomware
15 articles
Cybersecurity
Ransomware Negotiator Guilty in BlackCat Attack Scheme
A third individual who was employed as a ransomware negotiator has pleaded guilty to conducting ransomware attacks against U.S. companies in 2023. Angelo Martin
Cybersecurity
Trigona Ransomware Gang Deploys Custom Tool for Rapid Data Theft
Recently observed Trigona ransomware attacks are using a custom, command-line tool to steal data from compromised environments faster and more efficiently. [...
Cybersecurity
Kyber Ransomware Gang Adopts Post-Quantum Encryption
A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant implementing Kyber1024 post-quantum
Cybersecurity
Ransomware Negotiator Admits to Leading BlackCat Attacks
41-year-old Angelo Martino, a former employee of cybersecurity incident response company DigitalMint, has pleaded guilty to targeting U.S. companies in BlackCat
Cybersecurity
Gentlemen Ransomware Gang Deploys SystemBC Botnet in Corporate Attacks
A SystemBC proxy malware botnet of more than 1,570 hosts, believed to be corporate victims, has been discovered following an investigation into a Gentlemen rans
Cybersecurity
Backups Alone Won't Save Your Business From Downtime
Backups protect data, but don't keep your business running during downtime. Datto shows why BCDR is essential to keep operations running during ransomware and o
Cybersecurity
NAKIVO Backup v11.2 Adds Ransomware Defense and Platform Support
NAKIVO Inc. announced the general availability of NAKIVO Backup & Replication v11.2, focused on fast, reliable, and proactive data protection. [...]
Cybersecurity
Ransomware Gangs Exploit Vulnerable Drivers to Disable EDR Tools
Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BY
Cybersecurity
Payouts King Ransomware Deploys Hidden VMs to Evade Security
The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on compromised systems and bypass endpoint secur
Science & Tech
Anodot Breach Impacts Major Companies in Data Theft
The data breach at Anodot, which affects customers like Rockstar Games, is the latest hack aimed at stealing data from a large number of corporate giants.
Cybersecurity
Canvas Platform Faces Major Breach Affecting Millions of Students
An ongoing data extortion attack targeting the widely-used education technology platform Canvas disrupted classes and coursework at school districts and univers
Cybersecurity
China-Linked Hackers Exploit Zero-Days to Deploy Medusa Ransomware
A China-based threat actor known for deploying Medusa ransomware has been linked to the weaponization of a combination of zero-day and N-day vulnerabilitie
Cybersecurity
German Police Identify REvil Ransomware Leaders Behind 130 Attacks
Germany's Federal Criminal Police Office (aka BKA or the Bundeskriminalamt) has unmasked the real identities of two of the key figures associated with the now-d
Cybersecurity
Dutch Healthcare Vendor ChipSoft Crippled by Ransomware
Dutch healthcare software vendor ChipSoft has been impacted by a ransomware attack that forced the company to take offline its website and digital services for