October 21, 2021

Ecuador’s largest bank’s system shut down for multiple days after cyber attack

During the weekend of the 10th of October 2021, Banco Pichincha, Ecuador’s largest private bank experienced a cyberattack that led to disruption to their operations and meant that their ATM and online banking portal was taken offline. Due to the shutdown of their IT system, employees are notified that bank applications, email, digital channels, and self-services will not be operational […]
October 19, 2021

Free BlackByte ransomware decryptor released after AES encryption key was reused

On Thursday 15th of October 2021, a free decryptor for the BlackByte ransomware and a SpiderLabs blog detailing the process of decrypting the ransomware was released to the public to allow past victims to recover their files for free. Researchers had found that the ransomware was downloading an image file called ‘forest.png’ from a remote malicious site under the control […]
October 18, 2021

Attacks on ten Israeli hospitals attributed to Chinese threat actors

On the 17th of October 2021, the Ministry of Health and the National Cyber Directorate in Israel released a joint announcement details a spike in ransomware attacks over the weekend of the 16th that has seen by targeting systems of nine health institutes in Israel. The Israeli government have stated that the attempts had resulted in no damage to the […]
October 17, 2021

REvil ransomware group’s Tor sites shut down after being hijacked

On the 17th of October 2021, the Tor sites of REvil ransomware gang went offline after an unknown person hijacked the Tor onion domains with the same private keys as REvil’s Tor sites and may have backups of the sites. One of the threat actors “0_neday”, affiliated with the REvil operation has confirmed that someone has hijack the ransomware gang’s […]
October 14, 2021

University of Sunderland experience long-term outage after cyber attack

On Wednesday 13th of October 2021, the University of Sunderland in the UK announced they were experience IT issues that had led to most of their IT systems being taken down. The university stated the IT issues all indicated that they were experiencing a cyber-attack. The first signs of the incident were seen on Tuesday morning but weren’t investigated straight […]
October 8, 2021

American media conglomerate, Cox Media Group disclose ransomware attack.

On Friday 8th of October 2021, Cox Media Group, an American media conglomerate disclosed that they experienced a ransomware attack that led to TV and radio broadcast streams to be taken down in June of 2021. The attack disclosed to the public via mail that was sent to over 800 individuals who have had their personal information exposed during the […]
October 8, 2021

Scottish engineering weir group hit by ransomware attack

​On Thursday 7th of October 2021, Weir Group, a Scottish multinational engineering firm disclosed they had experienced an attempted ransomware attack back in September 2021 that had led to significant temporary disruption due to the process of their cyber security systems being activated by the incident. The incident disclosed in the firm’s Q3 trade update, where they stated, “The Group […]
October 2, 2021

Sandhills Global experience disrupt to operations, caused by Conti ransomware attack

On Thursday 30th of September 2021, Sandhills Global, a US-based trade publication and hosting company catering to the transportation, agriculture, aircraft, heavy machinery, and technology industries, was hit by a Conti Ransomware attack that caused Sandhills Global to shut down all their IT systems to prevent the spread of the ransomware attack. “Sandhills Global is currently responding to a ransomware […]