February 8, 2022

Vodafone Portugal experiences country-wide service outage after cyberattack

On Monday 7th of February 2022, Swissport, Vodafone Portugal suffered a cyberattack which resulted in country-wide service outages, and the disruptions to their 4G/5G data networks, SMS texts, and television services. Vodafone Portugal stated that the incident occurred last on Monday night and was “a deliberate and malicious attack intended to cause damage.” Currently only the 3G network is available […]
February 7, 2022

Free decryptor released by Avast for TargetCompany ransomware victims

On Monday 7th of February 2022, Avast, a Czech cybersecurity software firm released a free decryption tool for TargetCompany ransomware victims. Although Avast has warned that the decryptor can only be used under certain circumstances as the process of using this decryptor is resource intensive and time-consuming. The TargetCompany ransomware decryptor works by cracking the password after comparing an encrypted […]
February 5, 2022

FBI releases flash alert against LockBit 2.0 ransomware

On Friday 4th of February 2022, the US Federal Bureau of Investigation (FBI) released a flash alert about indicators of compromise associated with LockBit 2.0 ransomware. The flash alert details the advances to the LockBit 2.0 since the LockBit ransomware gang became active in September 2019. LockBit 2.0 is the second iteration of the original LockBit ransomware which was released […]
February 4, 2022

Flights suffer delays after ransomware attack hit Swissport

On Thursday 3rd of February 2022, Swissport, one of the largest aviation services companies in the world, announced that it had experienced a ransomware attack which resulted in their IT infrastructure and services being impacted and causing flights to be delayed. The attack was believed to have occurred at 6 AM on Thursday morning and led to minor delays between […]
February 2, 2022

Energy giant, Shell forced to reroute supplies after cyber-attack on two German oil suppliers

On Saturday 29th of January 2022, Shell, the energy giant had to re-routing oil supplies due to a cyber-attack against two subsidiaries of two German oil suppliers, Oiltanking GmbH Group and Mabanaft GmbH & Co. KG Group. The incident resulted in disruptions to their IT systems and therefore caused disruptions to their supply chains. There have been concerns around shortages […]
February 2, 2022

Conti ransomware targets KP Snacks, resulting in long shortages

On Friday 28th of January 2022, KP Snacks, a major producer of popular British snacks, experienced a ransomware attack which led to disruptions to their supply chain that distributes to leading supermarkets. The expect impact of this incident is due to delayed and cancelled deliveries, the supply shortage can last until the end of March. This incident has already been […]
January 30, 2022

Ransomware attack results in Curo Fund Services being locked out of systems for five days

On Wednesday 19th of January 2022, Curo Fund Services, South Africa’s biggest provider of investment administration services suffered a ransomware attack resulted in the company being locked out of their IT system for 5 days. This impacted some of their operations including the daily valuation for their clients. Although their clients’ investments were kept safe from the threat actors. Curo […]
January 28, 2022

QNAP forces automatic update after DeadBolt ransomware encrypts thousands of devices

On Tuesday 25th of January 2022, a new ransomware variant called “DeadBolt” was observed targeting devices from Network Attached Storage vendor QNAP. The ransomware variant has been observed demanding a ransom of 0.03BTC (equivalent to $1,100) to unlock the victim’s device. On the ransom note that is attached, there is a link titled “important message for QNAP,” which displays a […]
January 28, 2022

UK’s leading double-glazing installer Safestyle is hit by ransomware attack

On Friday 28th of January 2022, Safestyle, the UK’s leading retailer and manufacturer of PVCu replacement windows and doors announced that it has recently been the subject of a ransomware attack which resulted in part of their website and IT systems being taken offline. Although they have stated that they have remained operational, continuing to sell, survey, manufacture, install and […]