January 14, 2022

German defense contractor, Hensoldt confirms ransomware attack by Lorenz ransomware group

Early this week, Hensoldt, a multinational defense contractor based in Germany confirmed that it experienced a ransomware attack back in December 2021 where some of their UK subsidiary’s systems were compromised. Currently, no public announcement has been made regarding the incident but the ransomware group who are responsible for the incident is the Lorenz ransomware group who claimed responsible on […]
January 10, 2022

Ransomware attack against FinalSite results in thousands of schools being impacted

On Tuesday 4th of January 2022, FinalSite, a leading school website services provider who provides solutions to over 8,000 schools and universities across 115 different countries suffered a ransomware attack which resulted in websites and critical messaging services hosted by FinalSite being brought down. “This impact may include, but is not limited to, Groups Manager, Constituent Manager, Login, Forms Manager (old), […]
January 7, 2022

FBI release flash alert against FIN7’s use of BadUSB devices to deploy ransomware

Recently the US Federal Bureau of Investigation (FBI) released a flash alert about the financially motivated cybercrime group FIN7 that has been targeting the US companies over the past few months with packages containing malicious USB devices to deploy ransomware. Since August, FBI has been getting reports that have detailed how FIN7 has been impersonating Amazon and the US Department […]
January 3, 2022

Portugal’s largest media conglomerate, Impresa attacked by Lapsus$ ransomware gang

Over the New Year Holiday, Impresa, the largest media conglomerate in Portugal and the owner of SIC and Expresso, the country’s largest TV channel and weekly newspaper was hit ransomware which targeted their online IT server infrastructure. This incident resulted in the 2ebsites for the Impressa group, Expresso, and all the SIC TV channels being taken offline as well as […]
December 30, 2021

Amedia’s newspaper production paralyzed after ransomware attack

On Tuesday 28th of December 2021, Amedia, a Norway-based media company which publishes more than 70 newspapers for 2 million readers experienced a ransomware that resulted in their central information systems being encrypted. This led to Amedia having to shut down their presses although Amedia have confirmed they are looking to establish alternative solutions to produce about 20 of their newspapers as […]
December 29, 2021

Vietnamese crypto platform suffers Log4j-related ransomware attack

On Tuesday 28th of December 2021, ONUS, one of the largest Vietnamese crypto trading platforms announced they suffered a ransomware attack that targeted their payment system. It was discovered that the payment system was running a vulnerable Log4j version that was exploited by threat actors between 11th and 13th of December and resulted in the threat actors installing backdoors on their Cyclos […]
December 28, 2021

Shutterfly services interrupted by Conti ransomware attack

On Sunday 26th of December 2021, Shutterfly, a personalized photography giant disclosed they had recently experienced a ransomware attack on parts of their network. Although they have stated that the incident has not impacted their Shutterfly.com, Snapfish, TinyPrints or Spoonflower sites. However, portions of their Lifetouch and BorrowLenses business, Groovebook, manufacturing and some corporate systems have been experiencing interruptions because of […]
December 24, 2021

Ransomware attack targets global IT services provider Inetum

On Sunday 19th of December 2021, Inetum, French IT services company with a revenue of almost $2 billion suffered a ransomware attack that affected some of their operations in France although the ransomware did not spread to larger infrastructures used by the customers. “None of the main infrastructures, communication, collaboration tools or delivery operations for Inetum clients has been affected,” – Inetum. […]
December 21, 2021

Health Ministry of Brazil experiences two ransomware attacks within four days of each other

Brazil’s Health Ministry is experiencing extended downtime after experiencing two ransomware attack, one on 10th of December 2021 and 14th of December 2021. It is believed that these attacks are linked to an act of activism related to Covid-19 vaccination data and Brazil’s digital inoculation certificates. A group called Lapsus$ Group has claimed responsible for these attacks. The first ransomware attack resulted […]