September 16, 2021

Bitdefender releases a universal REvil decryptor for past victims

The cyber security firm, Bitdefender has just released a universal decryptor for the REvil ransomware which will work for any victims who were attacked before the 13th of July. The decryptor was made in collaboration with an unidentified “trusted law enforcement partner.” This decyptor will enable victim who didn’t pay or couldn’t pay after REvil went offline following their attack […]
September 15, 2021

South Africa’s Justice Ministry experiences delays to their services after ransomware attack

On 9th of September 2021, justice ministry of the South African government released a statement that the Department of Justice and Constitutional Development had experienced a security breach which was caused by ransomware on the evening of 6th September 2021. This attack led to all their information systems being encrypted and therefore unavailable to both internal employees as well as […]
September 15, 2021

Grief ransomware gang threatens to delete decryption keys for stolen data if victims hire negotiators

On Monday 13th, an announcement has been released by Grief ransomware gang. They warn that they will delete their victims’ decryption keys if they are found to be hiring any negotiation firm which would lead to it being impossible to recover encrypted files. ” We wanna play a game. If we see professional negotiator from Recovery Company™ – we will […]
September 14, 2021

Olympus experiences disrupts due to potential BlackMatter Ransomware attack

On the 11th of September 2021, Olympus released a statement detailing they are currently investigating some suspicious activity. Olympus also stated that they had “immediately mobilized a specialized response team including forensics experts, and we are currently working with the highest priority to resolve this issue.” The statement also highlighted the fact that the attack affected areas of their EMEA […]
September 7, 2021

Ragnar Locker ransomware group threatens to publish stolen data if victims contact authorities

This week, an announcement has been made by The Ragnar Locker ransomware group on their data leak site, warning that they will leak stolen data from their victims that contact any law enforcement authorities. This warning also stated that hiring any recovery companies for negotiations will be seen as a hostile move against them and therefore they will publish the […]
September 7, 2021

The return of REvil? REvil servers are suddenly back online

The operation servers of the REvil ransomware gang, aka Sodinokibi, have just been turned on for the first time since July after their large-scale attack against Kaseya when they used a zero-day vulnerability in the Kaseya VSA remote management software to encrypt around 60 managed service providers (MSPs) and over 1,500 of their business customers. Their disappearance was noticed when […]
August 24, 2021

Accenture attacked by LockBit Ransomware

Accenture attacked by LockBit Ransomware The LockBit Ransomware gang have now targeted Accenture which is one of the major consultancy firms with over $40 billion revenue and more than 550,000 employees worldwide. The gang has threatened the firm by leaking the stolen data online (ransomware double extortion) if the company is not willing to pay the required ransom. $50 million […]
August 23, 2021

Italy’s Lazio region’s vaccination registration system down after IT systems were disabled by ransomware attack

On Sunday 1st of August 2021, one of Italy’s largest regions, Lazio region experienced a ransomware attack that caused the region’s IT systems to be disabled. It meant Lazio residents were not able to book new vaccination appointments through the region’s COVID-19 vaccination registration portal as it was also taken down by the attack. Nicola Zingaretti, the region’s president confirmed […]
August 18, 2021

Tokio Marine Holdings announce ransomware attack against their Singapore branch

This week, Tokio Marine Holdings, one of the largest property and casualty insurance group in Japan, announced that their Singapore branch, Tokio Marine Insurance Singapore (TMiS) had experienced a ransomware attack. Very little information about the incident has been released apart from their actions in response to the incident. Tokio Marine Holdings have state that the ransomware attack only affected […]
Prev page
12345678910111213141516171819202122232425262728293031
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.