June 27, 2022

Sensitive health data leaked after ransomware attack against Fitzgibbon Hospital

On Saturday 25th of June 2022, information pointing to an attack on Fitzgibbon Hospital in Missouri was discovered. The group “Daixin Team” have claimed responsibility for the attack via their onion site which contained files allegedly stolen from Fitzgibbon. Based on the leaked files, the Daixin Team had claimed to have exfiltrated 40 GB of data which contained numerous files […]
May 31, 2022

Costa Rica’s public health suffers Hive ransomware attack

On Tuesday, 31st of May, the Costa Rican Social Security Fund (CCCS), Costa Rica’s public health service suffered a ransomware attack which resulted in all the computers on their network being taken offline. The impact of the incident was revealed by employees who had reported on social media that they were told to shut down their computers and unplug them […]
May 6, 2022

AGCO, US agricultural machinery maker announces they suffered a ransomware attack

On Thursday 5th of May 2022, AGCO, one of the leading US-based agricultural machinery producers suffered a ransomware attack which resulted in some of their production facilities being impacted. This incident was announced on Friday 6th of May 2022 in a press release where AGCO stated that their business operations will be affected for several days whilst they repair their […]
April 29, 2022

A Possible ransomware attack against the service provider of a popular online Library app, Onleihe led to problems

On Tuesday 26th of April 2022, Onleihe, a popular Library lending app announces they experienced problems which could have been related to their service provider, EKZ who suffered a cyber-attack on Monday 18th of April 2022. The incident led to the outage of EKZ systems which impacted the websites: ekz.de, ekz.at, ekz.fr, divibib.com, the divibib user forum, the divibib Pentaho […]
April 28, 2022

Austin Peay State University announces ransomware attack via Twitter

On Wednesday 27th of April 2022, Austin Peay State University (APSU) confirmed that they had suffered a ransomware attack via their official Twitter account. Since the initial announcement, APSU has reassured the public that the incident was in the process of being contained and that their Learning Management System, D2L had online backups. The incident hasn’t seemed to have an […]
April 26, 2022

New Black Basta ransomware gang attacks the American Dental Association

On Friday 22nd of April 2022, American Dental Association (ADA) suffered a ransomware attack that resulted in ADA having to take their affected systems offline, which disrupted various online services, telephones, email, and webchat. It has been detailed in an email sent to ADA members, that soon after the discovery of the attack, ADA immediately responded to the incident by […]
April 21, 2022

FBI releases flash alert against the BlackCat ransomware gang

On Tuesday 19th of April 2022, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE flash alert which revealed the BlackCat ransomware gang, also known as ALPHV, has breached the networks of at least 60 organizations worldwide as of March 2022. The FBI also stated the BlackCat ransomware gang has been the first ransomware group to have […]
April 20, 2022

FBI releases warning around ransomware attacks targeting US agriculture sector

On Wednesday 20th of April 2022, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE Private Industry Notification which warned the Food and Agriculture (FA) sector organizations that ransomware actors are likely to attack agricultural cooperatives during critical periods like the planting and harvest seasons which may cause disruptions to operations and therefore cause financial loss and […]
April 18, 2022

Kaspersky add new support to their free RannohDecryptor utility which allows for the decryption of files encrypted by the Yanluowang ransomware strain

On Monday 18th of April 2022, Kaspersky, a Russian cybersecurity firm announced that they had found a vulnerability in Yanluowang ransomware’s encryption algorithm, which makes it possible to recover files it encrypts. Kaspersky has stated they’ve added support for decrypting files locked by the Yanluowang ransomware strain to their free RannohDecryptor utility.  Yanluowang ransomware strain has been observed to encrypt […]