January 14, 2022

German defense contractor, Hensoldt confirms ransomware attack by Lorenz ransomware group

Early this week, Hensoldt, a multinational defense contractor based in Germany confirmed that it experienced a ransomware attack back in December 2021 where some of their UK subsidiary’s systems were compromised. Currently, no public announcement has been made regarding the incident but the ransomware group who are responsible for the incident is the Lorenz ransomware group who claimed responsible on […]
December 29, 2021

Vietnamese crypto platform suffers Log4j-related ransomware attack

On Tuesday 28th of December 2021, ONUS, one of the largest Vietnamese crypto trading platforms announced they suffered a ransomware attack that targeted their payment system. It was discovered that the payment system was running a vulnerable Log4j version that was exploited by threat actors between 11th and 13th of December and resulted in the threat actors installing backdoors on their Cyclos […]
December 24, 2021

Ransomware attack targets global IT services provider Inetum

On Sunday 19th of December 2021, Inetum, French IT services company with a revenue of almost $2 billion suffered a ransomware attack that affected some of their operations in France although the ransomware did not spread to larger infrastructures used by the customers. “None of the main infrastructures, communication, collaboration tools or delivery operations for Inetum clients has been affected,” – Inetum. […]
December 21, 2021

Health Ministry of Brazil experiences two ransomware attacks within four days of each other

Brazil’s Health Ministry is experiencing extended downtime after experiencing two ransomware attack, one on 10th of December 2021 and 14th of December 2021. It is believed that these attacks are linked to an act of activism related to Covid-19 vaccination data and Brazil’s digital inoculation certificates. A group called Lapsus$ Group has claimed responsible for these attacks. The first ransomware attack resulted […]
December 10, 2021

80,000 Australian government employees impacted by ransomware attack on Frontier Software

On Thursday 9th of December 2021, South Australian government disclosed that the sensitive personal information belonging to up to 80,000 Australian government employees have been compromised following a ransomware attack that targeted the systems of Frontier Software who are responsible for the South Australian government’s payroll software. “The ongoing forensic investigation and other response activities conducted by Frontier Software and CyberCX has now […]
December 6, 2021

Hundreds of SPAR stores across northern England closed after ransomware attack

On Sunday 5th of December 2021, approximately 330 SPAR stores in northern England experienced a ransomware attack that has led to many of the stores having to close or switch to cash-only payments. The affected stores experienced a total IT outage which resulted in tills, credit card payment processing systems, and emails being impacted. Currently, it is unknown which ransomware gang is responsible […]
December 3, 2021

FBI releases flash alert against the Cuba ransomware gang

On Thursday 2nd of December 2021, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE flash alert which revealed the Cuba ransomware gang have compromised at least 49 organizations in five critical infrastructure sectors, including the financial, government, healthcare, manufacturing, and information technology sectors. The FBI also revealed that the Cuba ransomware variant is commonly distributed through […]
November 30, 2021

Australian government-owned energy company, CS Energy confirms they were a target of a ransomware attack

On Tuesday 30th of November 2021, CS Energy, an Australian government-owned energy generator in the Queensland confirmed they had suffered a ransomware attack on Saturday, 27th of November 2021 which occurred on their corporate network but did not impact the electricity generation at either of their power stations in Callide and Kogan Creek. CS Energy CEO Andrew Bills stated they were […]
November 25, 2021

Singapore offshore vessel operator, Swire Pacific Offshore experiences ransomware attack by CL0P ransomware group

On Thursday 25th of November 2021, Swire Pacific Offshore (SPO), a Singapore offshore vessel operator confirmed they had suffered a cyber-attack might have resulted in the loss of confidential proprietary commercial information and personal information. They have not disclosed any specifics of the attack but the ransomware group, CL0P have released a listing on their leak blog where they have claimed […]
Prev page
1234567891011121314151617
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.