December 16, 2021

Coombe Hospital take precaution measures after ransomware attack

On Wednesday 15th of December 2021, the Coombe Hospital in Dublin suffered a ransomware attack during the night. The incident resulted in the hospital having to isolate and lock down their IT services as a precaution measure. The Coombe Hospital has confirmed that their services are continuing as normal despite the incident that occurred on Wednesday. “We can confirm that the Coombe […]
December 13, 2021

Ransomware attack against Ultimate Kronos Group might result in weeks of downtime for HR solutions

On Monday 13th of December 2021, Ultimate Kronos Group (UKG), one of the most popular and widely used payroll and workforce tracking systems for public finance entities disclosed that they suffered a ransomware attack on Saturday 11th of December 2021, that resulted in the Kronos Private Cloud being taken down and it may take several weeks before system will be available to […]
December 10, 2021

Research and development information stolen from Volvo Cars during ransomware attack

On Friday 10th of December 2021, Volvo Cars, a Swedish carmaker disclosed that they discovered that threat actors have stolen research and development information from one of their file repositories. Volvo Cars have concluded that there is an expected impact on the company’s operations.   “Investigations so far confirm that a limited amount of the company’s R&D property has been stolen during […]
November 30, 2021

Australian government-owned energy company, CS Energy confirms they were a target of a ransomware attack

On Tuesday 30th of November 2021, CS Energy, an Australian government-owned energy generator in the Queensland confirmed they had suffered a ransomware attack on Saturday, 27th of November 2021 which occurred on their corporate network but did not impact the electricity generation at either of their power stations in Callide and Kogan Creek. CS Energy CEO Andrew Bills stated they were […]
November 30, 2021

FBI name known affiliate of REvil ransomware gang in court documents that revealed they had seized $2.3 million in Bitcoins

On Tuesday 30th of November 2021, the FBI revealed they had seized $2.3 million in Bitcoins on August 3rd, 2021, from a well-known REvil and GandCrab ransomware affiliate Aleksandr Sikerin, in a “complaint for forfeiture” court documents that were filed. The FBI didn’t disclose how they had gained access to the Exodus wallet where the 39.89138522 Bitcoins were originally being […]
November 28, 2021

A surge of eCh0raix ransomware attacks seen over the Christmas holidays, targeting QNAP NAS devices

Recently users of QNAP network-attached storage (NAS) devices have been reporting their systems are being attacked by the eCh0raix ransomware, also known as QNAPCrypt. The initial infection vector of these attacks is still unclear but some of the incidents are believed to be due to users not properly securing their devices. As soon as the threat actor is within the […]
November 20, 2021

Personal information leaked after Pacific City Bank hit by AvosLocker Ransomware

This week, Pacific City Bank, one of the largest Korean American community banking service providers in America, has disclosed that they experienced a ransomware attack that occurred on the 30th of August 2021. The bank informed their clients of an incident and disclosed that the threat actors had obtained information from their systems including Loan application forms, Tax return documents, […]
November 19, 2021

US federal bank regulators approve new rule ordering banks to report cyberattacks within 36 hours

On Thursday 18th of November 2021, US federal bank regulatory agencies approved a new rule that requires banks to notify their primary federal regulators of significant computer-security incidents within 36 hours. Currently banks are only required to report major cyberattacks if they have or will likely impact their operations, the ability to deliver banking products and services, or the US financial […]
November 17, 2021

US releases joint advisory warning companies of Iranian APT group that has been involved in ransomware attacks

On Wednesday 17th of November 2021, Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), and the United Kingdom’s National Cyber Security Centre (NCSC) released a joint cybersecurity advisory where they warned of ongoing malicious cyber activity that FBI, CISA, ACSC, and NCSC have observed and associated with an advanced persistent threat (APT) group that is […]