April 12, 2021

Ireland’s health service forced to drop up to 80% of appointment due to Conti ransomware attack

On the 14th of March 2021, Health Service Executive of Ireland, which is responsible for the provision of health and personal social services in the Republic of Ireland had to take all its IT systems offline after experiencing a Conti ransomware attack early in the morning that left Ireland’s health system paralyzed as up to 80% of appointments had to […]
March 26, 2021

Insurance companies becoming a common target – CNA Ransomware Attack

In March 2021, one of the biggest Insurance companies in the US, CNA suffered a ransomware attack from the ransomware, Phoenix CryptoLocker that has possible links to the Evil Corp hacking group. The company’s overall services and business was impacted which led to network disruption and impacting certain systems in the CNA environment. It is said that more than ten […]
March 20, 2021

REvil ransomware attack hits Computer giant Acer hit for $50 million

On the 18th of March 2021, the infamous ransomware gang, REvil announced on their data leak site that they had breached Acer. The group also provided evidence of the attack by publishing images of allegedly stolen files, these documents included financial spreadsheets, bank balances, and bank communications. The threat actors are demanding for $50,000,000, according to BleepingComputer, which is the […]
March 18, 2021

DoppelPaymer ransomware group demands $20 Million from Kia Motors America

On February 13th, 2021, Kia Motors America experienced a ransomware attack by the DoppelPaymer ransomware group which led to outages over their nationwide network. The effect of the attack was noticed when customers discovered the Kia Owners Portal was offline and displayed an error message that said:    “We are currently experiencing an IT service outage that has impacted some […]
December 15, 2020

The Role of Admin Credentials in the SolarWinds Attack

I wanted to share my thoughts on the SolarWinds attack that has been used to target government agencies as well as other private/public companies. FireEye has an excellent write-up ( Highly Evasive Attacker Leverages SolarWinds Supply Chain to CompromiseMultiple Global Victims With SUNBURST Backdoor ) and I encourage everyone to read it to familiarize yourself with the exploit and attack paths. […]
July 6, 2020

Capcom hit by Ragnar Locker ransomware with 1TB of data stolen

On 2nd of November, Japanese game developer Capcom experienced a ransomware attack where the company had to shut down portions of their corporate network to prevent the spread of the attack and threat actors claim to have stolen 1TB of sensitive data from their corporate networks in the US, Japan, and Canada. At the time of compromise, Capcom displayed notices […]
March 20, 2020

UK Fintech Firm Finastra announces they were attacked by ransomware.

On the 20th of March 2020, Finastra, a leading financial technology provider from the UK, announced that it had to take several servers offline in response to a security breach they had discovered earlier that day. The announce come out after sources at two different U.S. financial institutions had forwarded a notice, they received from Finastra to cybersecurity writer Brian […]
March 3, 2020

Legal service provider Epiq Global among the Ransomware attack victims

On February 29th, 2021, Epiq Global, a highly recognized provider of legal services, experienced a ransomware attack by the Ryuk ransomware. Epiq Global’s initial response to the detection of the attack was to take all their systems offline to contain the ransomware. Later that day, news came out that some of Epiq Global’s computers and systems were running older versions […]
January 27, 2018

Maersk reinstall 45,000 PCs and 4,000 Servers to bounces back from NotPetya ransomware attack

A.P. Møller – Mærsk A/S, or more commonly known as Maersk recently revealed a devastating result from the NotPetya ransomware attack that they experience in June 2017. The attack had led to delays and disruption to operations at Maersk terminals in four different countries. This caused many concerns with Maersk being the world’s largest container shipping line and vessel operator […]
Prev page
12345678910111213141516171819202122232425262728293031

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.