February 28, 2023

Ransomware confirmed to be the cause behind the Dish Network outage

On Tuesday 28th of February 2023, the satellite broadcast provider and TV giant Dish Network confirmed that a ransomware attack was the cause of a network and service outage over the weekend. Originally, Dish Network had blamed the outage on VPN issues. But in an 8-K form filed with the U.S. Securities and Exchange Commission (SEC), Dish Network stated it […]
February 23, 2023

Dole Fruit giant impacted by a ransomware attack

On Wednesday 22nd of February 2023, one of the world’s largest producers and distributors of fresh fruit and vegetables, Dole Food company announced that they have suffered a ransomware attack that disrupted their operations that have involved them being forced to shut down its production plants in North America and have halted its shipments to grocery stores. They stated in […]
February 13, 2023

Technion university targeted by new ransomware group “DarkBit”

This week, Technion Institute of Technology, one of Israel’s leading research universities was attacked by a new ransomware group going by the name ‘DarkBit’. The ransom note left on the university’s systems, demanded 80 Bitcoin or roughly US$ 1,745,200 to release the decryptor to the university while mentioning current events going on in the world like the recent layoffs in […]
February 10, 2023

3.3 million patients were impacted by a data breach from a ransomware attack on Heritage Provider Network

On Friday 10th of February 2023, the Heritage Provider Network in California confirmed that multiple medical groups within the network suffered a ransomware attack which exposed the data of 3,300,638 patients. In the data breach notification on the U.S. Department of Health and Human Services breach portal, the Heritage Provider Network stated that the ransomware attack occurred on Thursday 1st […]
February 10, 2023

A10 Networks confirms Play ransomware attack

Earlier this week, A10 Networks, a USA-based networking hardware manufacturer confirmed that the Play ransomware gang briefly gained access to its IT infrastructure and compromised data. A10 Networks stated that the incident occurred on Monday 23rd of January 2023, which lasted for a few hours before its IT team managed to stop the intrusion. Following an investigation into the incident, […]
February 10, 2023

The City of Oakland confirms systems are offline after a ransomware attack

On Wednesday 8th of February 2023, the local government of the City of Oakland was hit by a ransomware attack that resulted in them having to take all systems offline until the network is secured and affected services are brought back online. Even though they had to take all systems offline, the city has confirmed that the attack has not […]
February 10, 2023

CISA releases cybersecurity advisory against North Korean ransomware activity

On Thursday 9th of February 2023, the U.S. Cybersecurity & Infrastructure Security Agency (CISA) released a new cybersecurity advisory that describes recently observed tactics, techniques, and procedures (TTPs) observed with North Korean ransomware operations against public health and other critical infrastructure sectors. The advisory also noted that the funds that were extorted, were being used to support the North Korean […]
February 9, 2023

US and UK announce sanction against TrickBot and Conti ransomware members

On Thursday 9th of February 2023, the United States and the United Kingdom sanctioned seven individuals for their involvement in the TrickBot malware operation. This sanction is the first of its kind for the UK to disrupt Russian cybercrime and ransomware. As a result of these sanctions, all property and funds in the United States and the United Kingdom belonging […]
February 8, 2023

Pharmaceutical distributor AmerisourceBergen confirms subsidiary data breach

This week, the Pharmaceutical distributor AmerisourceBergen confirmed that they suffered a cyber attack against one of its subsidiaries following the Lorenz ransomware gang listing AmerisourceBergen with allegedly stolen data on its extortion site. AmerisourceBergen also confirmed that the threat actors compromised the IT system of the targeted subsidiary which could have given the ransomware group a chance to exfiltrate data […]