December 3, 2021

FBI releases flash alert against the Cuba ransomware gang

On Thursday 2nd of December 2021, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE flash alert which revealed the Cuba ransomware gang have compromised at least 49 organizations in five critical infrastructure sectors, including the financial, government, healthcare, manufacturing, and information technology sectors. The FBI also revealed that the Cuba ransomware variant is commonly distributed through […]
December 1, 2021

Planned Parenthood LA reveals data breach of 400,000 patients after ransomware

On Tuesday 30th of November 2021, Planned Parenthood Los Angeles disclosed they had experienced a ransomware attack in October that has led to the exposure of the personal information of approximately 400,000 patients. In a letter sent to affected patients, Planned Parenthood said that the ransomware attack was conducted against their network between October 9th and October 17th. But Planned Parenthood discovered the […]
November 30, 2021

Australian government-owned energy company, CS Energy confirms they were a target of a ransomware attack

On Tuesday 30th of November 2021, CS Energy, an Australian government-owned energy generator in the Queensland confirmed they had suffered a ransomware attack on Saturday, 27th of November 2021 which occurred on their corporate network but did not impact the electricity generation at either of their power stations in Callide and Kogan Creek. CS Energy CEO Andrew Bills stated they were […]
November 29, 2021

Vestas, Danish wind turbine manufacturer announces they suffered a ransomware attack

On Monday 29th of November 2021, Vestas, a Danish manufacturer, seller, installer, and servicer of wind turbines confirmed they had suffered a ransomware attack on Friday, 19th of November 2021 which resulted in Vestas shutting down their IT systems across multiple business units and locations in the hope to contain the ransomware. Vestas revealed they had been working with their external […]
November 28, 2021

A surge of eCh0raix ransomware attacks seen over the Christmas holidays, targeting QNAP NAS devices

Recently users of QNAP network-attached storage (NAS) devices have been reporting their systems are being attacked by the eCh0raix ransomware, also known as QNAPCrypt. The initial infection vector of these attacks is still unclear but some of the incidents are believed to be due to users not properly securing their devices. As soon as the threat actor is within the […]
November 25, 2021

Singapore offshore vessel operator, Swire Pacific Offshore experiences ransomware attack by CL0P ransomware group

On Thursday 25th of November 2021, Swire Pacific Offshore (SPO), a Singapore offshore vessel operator confirmed they had suffered a cyber-attack might have resulted in the loss of confidential proprietary commercial information and personal information. They have not disclosed any specifics of the attack but the ransomware group, CL0P have released a listing on their leak blog where they have claimed […]
November 24, 2021

The National Privacy Commission in the Philippines announces that S&R Membership Shopping suffered a ransomware attack

On Wednesday 24th of November 2021, S&R Membership Shopping, a membership-only retail warehouse club chain in the Philippines announced they had suffered a ransomware attack which resulted in data being compromised. The announcement was made via the National Privacy Commission in the Philippines when the Commission was informed of the extent of the compromised data. The National Privacy Commission revealed they […]
November 24, 2021

Lewis & Clark Community College Campuses in Illinois shutdown due to ransomware attack

On Wednesday 24th of November 2021, Lewis and Clark Community College, a public community college in Godfrey, Illinois announced that they had experienced a ransomware attack late on Tuesday 23rd which resulted in all of Lewis and Clark campuses having to be shut down on Wednesday 24th to prevent further spreading of the ransomware. The announcement came in the form of […]
November 22, 2021

Joint advisory released by FBI and CISA in preparation for the upcoming holiday season

On Monday 22nd of November 2021, Federal Bureau of Investigation (FBI), and the Cybersecurity and Infrastructure Security Agency (CISA), released a joint cybersecurity advisory where they warned of upcoming spikes in cyberattacks as the holiday season approaches. The advisory was aimed at all organisations although it had a heavy emphasis on critical networks, systems and infrastructure. The CISA and FBI also emphasised a caution […]