July 25, 2022

St. Marys, a small Canadian town hit by LockBit ransomware

On Wednesday 20th of July 2022, the Canadian town of St. Marys in Ontario experienced a ransomware attack that locked staff out of internal systems and encrypted data. The incident has been claimed by the LockBit ransomware group who posted a listing on their data leak site as well as provided some of the screenshots of the stolen files as […]
July 22, 2022

Ransomware gang breaches digital security giant Entrust

On Wednesday 6th of July 2022, Entrust, a digital security giant confirmed that it experienced a cyberattack that occurred on Saturday 18th of June 2022, where threat actors breached their network and stole corporate data from internal systems. The confirmation of the incident was announced to Entrust’s customers via a security notice. The customers who could be affected by the […]
July 21, 2022

New Redeemer ransomware version promoted on hacker forums

Recently, the author of the ‘Redeemer’ ransomware has been seen promoting the latest version of the free-to-use C++ ransomware on hacker forums which provides amateur and unskilled threat actors with the opportunity to enter the market of ransomware. In the post by the author, the new version 2.0 works on Windows Vista, 7, 8, 10, and 11, and has many […]
July 20, 2022

Kaspersky reveals new Luna ransomware can encrypt Windows, Linux, and ESXi systems

On Wednesday 20th of July 2020, Kaspersky security researchers revealed a new ransomware family named Luna which can be used to encrypt devices running several operating systems, including Windows, Linux, and ESXi systems. The new ransomware family was discovered via a dark web ransomware forum ad which revealed that the Luna ransomware appears to be specifically tailored to be used […]
July 20, 2022

U.S. Department of Justice announces the seizure of $500,000 ransom payments made to Maui ransomware

On Tuesday 19th of July 2022, the U.S. Department of Justice announced the seizure of paid ransom payments totalled at approximately $500,000 in Bitcoin. These ransoms was paid by American health care providers to the operators of the Maui ransomware strain. It was revealed that as soon as the discovery of the ransomware strain was found, a Kansas hospital reported a […]
July 19, 2022

Black Basta ransomware gang claim responsibility for cyberattack against building materials giant Knauf

Recently, the Knauf Group announced they had experienced a cyberattack which resulted in disruptions to their business operations, and ultimately led to its global IT team being forced to shut down all IT systems to isolate the incident. The announcement revealed that the cyberattack took place on the night of Wednesday 29th of June 2022. “We are currently working heavily […]
July 14, 2022

Holy Ghost ransomware operation linked to North Korean threat actors by Microsoft

On Thursday, 14th of July 2022, researchers at Microsoft Threat Intelligence Center (MSTIC) released a report which revealed they had been tracking the Holy Ghost ransomware gang which they have connected with North Korea. The Holy Ghost ransomware gang has been active for over a year but it has struggled to be as successful as other gangs. While Microsoft has […]
July 13, 2022

Japanese Game publishing giant Bandai Namco confirms hack after BlackCat ransomware data leak posting

On Wednesday 13th of July 2022, the Japanese Game publishing giant Bandai Namco confirmed that they experienced a cyberattack on Sunday 3rd of July 2022 where the threat actors breached internal systems for offices in Asian regions, other than Japan. Bandai Namco also stated there is a possibility that customer information has been stolen by the threat actors. On Monday […]
July 13, 2022

New C/C++ ransomware operation emerges

On Tuesday 12th of July 2022, researchers at Cyble released a report that revealed a series of new ransomware operations including the ‘Lilith’ ransomware operation who has already posted its first victim on a data leak site. Based on the analysis by the Cyble researchers, Lilith is C/C++ console-based ransomware which is designed for 64-bit versions of Windows. The operation […]