January 28, 2022

QNAP forces automatic update after DeadBolt ransomware encrypts thousands of devices

On Tuesday 25th of January 2022, a new ransomware variant called “DeadBolt” was observed targeting devices from Network Attached Storage vendor QNAP. The ransomware variant has been observed demanding a ransom of 0.03BTC (equivalent to $1,100) to unlock the victim’s device. On the ransom note that is attached, there is a link titled “important message for QNAP,” which displays a […]
January 28, 2022

UK’s leading double-glazing installer Safestyle is hit by ransomware attack

On Friday 28th of January 2022, Safestyle, the UK’s leading retailer and manufacturer of PVCu replacement windows and doors announced that it has recently been the subject of a ransomware attack which resulted in part of their website and IT systems being taken offline. Although they have stated that they have remained operational, continuing to sell, survey, manufacture, install and […]
January 19, 2022

Leading marketing giant, RR Donnelley confirms data theft occurred during ransomware attack by Conti in December 2021

On the 18th of January 2022, RR Donnelley, a leading integrated services company offering communications, commercial printing, and marketing to enterprise clients confirmed that data was stolen during the ransomware attack they have experienced back in December 2021. RR Donnelley stated they were not aware that any data from their networks was stolen back in December 2021 but they were […]
January 18, 2022

Fashion giant, Moncler releases statement confirming data breach after Christmas Eve ransomware attack

On Tuesday 18th of January 2022, Moncler, an Italian luxury fashion giant announced that they received a ransom demand related to a cyber-attack they had experienced on Friday 24th of December 2021. Originally, the incident was labelled as a malware assistance attack which resulted in a temporary outage of Moncler’s IT services to stop the spread of the attack. Therefore, […]
January 10, 2022

Ransomware attack against FinalSite results in thousands of schools being impacted

On Tuesday 4th of January 2022, FinalSite, a leading school website services provider who provides solutions to over 8,000 schools and universities across 115 different countries suffered a ransomware attack which resulted in websites and critical messaging services hosted by FinalSite being brought down. “This impact may include, but is not limited to, Groups Manager, Constituent Manager, Login, Forms Manager (old), […]
January 7, 2022

FBI release flash alert against FIN7’s use of BadUSB devices to deploy ransomware

Recently the US Federal Bureau of Investigation (FBI) released a flash alert about the financially motivated cybercrime group FIN7 that has been targeting the US companies over the past few months with packages containing malicious USB devices to deploy ransomware. Since August, FBI has been getting reports that have detailed how FIN7 has been impersonating Amazon and the US Department […]
December 29, 2021

Vietnamese crypto platform suffers Log4j-related ransomware attack

On Tuesday 28th of December 2021, ONUS, one of the largest Vietnamese crypto trading platforms announced they suffered a ransomware attack that targeted their payment system. It was discovered that the payment system was running a vulnerable Log4j version that was exploited by threat actors between 11th and 13th of December and resulted in the threat actors installing backdoors on their Cyclos […]
December 28, 2021

Shutterfly services interrupted by Conti ransomware attack

On Sunday 26th of December 2021, Shutterfly, a personalized photography giant disclosed they had recently experienced a ransomware attack on parts of their network. Although they have stated that the incident has not impacted their Shutterfly.com, Snapfish, TinyPrints or Spoonflower sites. However, portions of their Lifetouch and BorrowLenses business, Groovebook, manufacturing and some corporate systems have been experiencing interruptions because of […]
December 21, 2021

Health Ministry of Brazil experiences two ransomware attacks within four days of each other

Brazil’s Health Ministry is experiencing extended downtime after experiencing two ransomware attack, one on 10th of December 2021 and 14th of December 2021. It is believed that these attacks are linked to an act of activism related to Covid-19 vaccination data and Brazil’s digital inoculation certificates. A group called Lapsus$ Group has claimed responsible for these attacks. The first ransomware attack resulted […]
Prev page
1234567891011121314151617
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.