April 21, 2022

FBI releases flash alert against the BlackCat ransomware gang

On Tuesday 19th of April 2022, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE flash alert which revealed the BlackCat ransomware gang, also known as ALPHV, has breached the networks of at least 60 organizations worldwide as of March 2022. The FBI also stated the BlackCat ransomware gang has been the first ransomware group to have […]
April 20, 2022

FBI releases warning around ransomware attacks targeting US agriculture sector

On Wednesday 20th of April 2022, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE Private Industry Notification which warned the Food and Agriculture (FA) sector organizations that ransomware actors are likely to attack agricultural cooperatives during critical periods like the planting and harvest seasons which may cause disruptions to operations and therefore cause financial loss and […]
April 18, 2022

Kaspersky add new support to their free RannohDecryptor utility which allows for the decryption of files encrypted by the Yanluowang ransomware strain

On Monday 18th of April 2022, Kaspersky, a Russian cybersecurity firm announced that they had found a vulnerability in Yanluowang ransomware’s encryption algorithm, which makes it possible to recover files it encrypts. Kaspersky has stated they’ve added support for decrypting files locked by the Yanluowang ransomware strain to their free RannohDecryptor utility.  Yanluowang ransomware strain has been observed to encrypt […]
March 22, 2022

IT systems of top Russian meat producer, Miratorg encrypted by threat actors using the Windows BitLocker feature

On Thursday 17th of March 2022, an announcement by Rosselkhoznadzor, the Russian federal veterinary and phytosanitary supervision service revealed that Miratorg Agribusiness Holding, Moscow-based meat producer and distributor has experienced a cyberattack which resulted in their IT systems being encrypted using the Windows BitLocker feature to encrypt files and therefore having a similar impact of a ransomware attack. Rosselkhoznadzor stated […]
March 22, 2022

Greece’s state-own provider of postal services brought offline due to ransomware attack

On Sunday 20th of March 2022, ELTA, the state-owned provider of postal services in Greece suffered ransomware attack which has resulted in most of the organization’s services being taken offline. ELTA disclosed the incident on Monday 21st of March 2022 where they stated the cause of the disruption to their services was in response to a cyber-attack that occurred on […]
March 21, 2022

RansomExx ransomware group conducts ransomware attack against the Scottish Association for Mental Health

On Thursday 17th of March 2022, Scottish Association for Mental Health (SAMH), a Scottish mental health charity suffered a ransomware attack which resulted in their email system at both national and local offices being affected as well as some of their phone lines being taken down. In an announcement on Monday 21st March 2022, Chief Executive Billy Watson released an […]
March 9, 2022

Updated Conti ransomware alert by CISA announce Conti’s involvement in over 1000 attacks

On Wednesday 9th of March 2022, CISA, the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), and the United States Secret Service (USSS) have re-released an advisory on Conti ransomware. The initial advisory was released on Wednesday 22nd of September 2021 and stated that they had observed Conti ransomware being used in more than 400 attacks on U.S. […]
March 7, 2022

FBI releases flash alert against RagnarLocker ransomware

On Monday 7th of March 2022, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE flash alert revealed that RagnarLocker ransomware gang has breached the networks of at least 52 organizations across 10 critical infrastructure sectors. These affected sectors include “entities in the critical manufacturing, energy, financial services, government, and information technology sectors”. This flash alert was […]
March 3, 2022

Avast releases free HermeticRansom ransomware decryptor based on weakness in crypto schema

On Thursday 3rd of March 2022, Avast, a Czech cybersecurity software firm announced that they had released a free decryption tool for HermeticRansom ransomware which has been observed being used in targeted attacks against Ukrainian systems. Avast first observed the ransomware strain on the 24th of February 2022 as it was found accompanying the data wiper HermeticWiper. Based on analysis […]
Prev page
123456789101112131415161718192021
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.