ransomware

Which companies pay the buyout first and how much are they willing to pay? A new study by Dutch specialist Tom Moers from the University of Twente has identified factors that affect the likelihood that victims of ransomware will pay ransom to attackers. For the analysis, data from the Dutch...

Southern Water's actions will show how reliable the updated cryptographer is. A major British firm, Southern Water, responsible for water supply and sanitation in the south of England, including the counties of Hampshire, the Isle of Wight, West and East Sussex, as well as parts of Kent, was...

75% of organizations have been affected by at least one ransomware attack in the last 12 months. According to Veeam's Data Protection Trends report, three-quarters (75%) of organizations were affected by at least one ransomware attack in the past year. A survey was conducted among managers and...

CISA warns of a new threat after publishing an exploit to an old vulnerability. Researchers report a serious threat: criminals involved in the distribution of ransomware viruses have obtained a working exploit for a vulnerability in the Microsoft SharePoint system. This bug, which is almost a...

Участники угроз, связанные с программой-вымогателем Medusa, активизировали свою деятельность после запуска в феврале 2023 года специального сайта по утечке данных в dark web для публикации конфиденциальных данных жертв, которые не желают соглашаться с их требованиями. "В рамках своей стратегии...

The Royal and Akira victims were subjected to repeated extortion attacks from a benevolent security researcher. The Arctic Wolf Labs team has discovered a new fraud scheme targeting victims of ransomware. According to Arctic Wolf, those affected by the actions of the Royal and Akira groups were...

Cisco Talos выпустила дешифратор для версии Babuk-вымогателя Tortilla, позволяющий жертвам, на которые нацелено вредоносное ПО, восстановить доступ к своим файлам. Компания по кибербезопасности заявила, что разведданные об угрозах, которыми она поделилась с правоохранительными органами...

All affected users can restore their data without paying a ransom. Specialists of the Cisco Talos division, together with the Dutch police, have made significant progress in the fight against cybercrime, providing decryption of a variation of the Babuk ransomware virus, known as Tortilla. This...

Experts attribute this activity to the termination of QakBot in August. Trend Micro has recorded an active distribution of the PikaBot malware by the Water Curupira group. Operations began in the first quarter of 2023 and continued until the end of June, before resuming in September. PikaBot...

Four cybercriminals in China were arrested for developing and using ChatGPT ransomware, marking the first such case in the country. And this despite the fact that the popular chatbot from OpenAI is not officially available in China, and Beijing is tightening measures against foreign AI. The...

Despite all its shortcomings, the tool allows you to restore the most valuable files without paying a ransom. Security Research Labs (SRLabs) specialists have created a decryptor that exploits a vulnerability in the encryption algorithm of the Black Basta ransomware program and allows victims...

Will hackers fulfill their conditions if you pay them $ 50? Patients at Integris Health in Oklahoma are receiving blackmail emails saying that their data was stolen in a cyberattack on the health care network, and if they do not pay the ransom, the data will be sold to other cybercriminals...

The company's shares are falling, but the employees themselves are optimistic. Indian IT company HCL Technologies informed local regulators about the cyberattack that occurred on December 20. In its appeal to the National Stock Exchange of India, the company notified about the case of...

The international operation helped the victims save $68 million, and the group's competitors attract new customers. The US Department of Justice announced the successful penetration of the FBI into the infrastructure of the ALPHV ransomware group (BlackCat). The operation allowed agents to...

Paris police have arrested a Russian citizen on charges of involvement in the Hive ransomware hacker group. He was found to have more than 570,000 euros in various cryptocurrencies. Hive encrypts the data of infected computers, and hackers extort funds in cryptocurrencies for decrypting the...

The organization's systems got off with little blood, but this is not the case with patient and employee data. A large network of clinics, Norton Healthcare, was subjected to a large-scale cyber attack, which resulted in data leakage of more than two million people. The organization, which...

The Twisted Spider group actively uses the DanaBot Trojan as a delivery channel for dangerous malware. Microsoft has announced a new wave of CACTUS ransomware attacks that use malicious advertising to deploy the DanaBot tool as an initial access vector. Just a few days ago, Arctic Wolf already...

Microsoft предупредила о новой волне атак CACTUS ransomware, которые используют вредоносные приманки для развертывания DanaBot в качестве начального вектора доступа. Заражение DanaBot привело к "практической активности на клавиатуре оператора программ-вымогателей Storm-0216 (Twisted Spider...

How can I protect my computer from a new threat and protect myself from the consequences? Cybereason security researchers have discovered a new version of the "DJVU" ransomware, which is distributed under the guise of free software. According to security expert Ralph Villanueva, the attackers...

The developers refused to pay the ransom, but promised players exclusive pets. On the morning of November 24, hackers attacked the servers of the popular online role-playing game Ethyrial: Echoes of Yore using ransomware. As a result of the incident, the data of about 17,000 game accounts was...