June 28, 2022

Chip manufacturing giant AMD investigating claims of stolen data

On Monday 27th of June 2022, the RansomHouse extortion group added AMD to their list of victims on their darknet site where they claimed to have stolen more than 450 GB in the January attack. There were some rumours earlier this year that AMD was hit by ransomware, but they were never confirmed officially confirmed. Based on an examined sample […]
June 27, 2022

Sensitive health data leaked after ransomware attack against Fitzgibbon Hospital

On Saturday 25th of June 2022, information pointing to an attack on Fitzgibbon Hospital in Missouri was discovered. The group “Daixin Team” have claimed responsibility for the attack via their onion site which contained files allegedly stolen from Fitzgibbon. Based on the leaked files, the Daixin Team had claimed to have exfiltrated 40 GB of data which contained numerous files […]
June 24, 2022

Conti ransomware finally closes the book on their operations

On Wednesday 20th of June 2022, the Conti ransomware gang finally closed the book on their operation after taking down the last two Tor servers which were used to leak data and negotiate with victims. It was first reported in May, that Conti had started to shut down their operations and had told its members that the operations were going […]
June 7, 2022

Mandiant confirms no evidence of an attack from the LockBit ransomware group

On Monday 6th of June, the LockBit ransomware gang published a new page on their data leak website that named Mandiant, a major American cybersecurity firm as the victim where they claimed to have stolen 356,841 files from Mandiant. On further investigation of the new page, there is a 0-byte file named ‘mandiantyellowpress.com.7z’ displayed on the page which appears to […]
June 6, 2022

The municipality of Palermo suffers major disruptions due to a ransomware attack

On Friday 3rd of June, the municipality of Palermo in Southern Italy suffered a cyberattack which resulted in a wide range of operations and services used by both citizens and visiting tourists being impacted. The systems have remained offline for the past three days even though local IT experts have been trying to restore the systems. According to multiple local […]
June 2, 2022

Evil Corp attempts to evade sanctions by switching to LockBit ransomware

On Thursday 2nd of June 2020, Mandiant revealed that the Evil Corp cybercrime group has now switched to deploying LockBit ransomware on targets’ networks to evade sanctions imposed by the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC). The cybercrime group has been active since 2007 and was originally known for using the Dridex malware but in more recent […]
June 2, 2022

Victim’s website hacked to display ransom note in a new extortion strategy

A new extortion strategy which is being used by the Industrial Spy has been identified where they gain access to their victim’s corporate websites to publicly display ransom notes. The first incident of this new strategy was seen on Thursday 2nd of June 2020, when Industrial Spy started to sell data, which they claim was stolen from the French company, […]
June 2, 2022

Foxconn confirms disruptions to production in Mexico as a result of a ransomware attack

Recently, the electronics manufacturer, Foxconn has confirmed that one of its production plants in Tijuana, Mexico has been impacted by a ransomware attack in late May. The plant is considered a key plant for Foxconn as it acts as a critical supply hub for the U.S. state of California which is a significant electronics consumer. A Foxconn spokesperson also revealed […]
May 31, 2022

Costa Rica’s public health suffers Hive ransomware attack

On Tuesday, 31st of May, the Costa Rican Social Security Fund (CCCS), Costa Rica’s public health service suffered a ransomware attack which resulted in all the computers on their network being taken offline. The impact of the incident was revealed by employees who had reported on social media that they were told to shut down their computers and unplug them […]
Prev page
12345678910111213141516
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.