November 15, 2021

Israeli organisations are being targeted and disrupted by Moses Staff with ransomless encryptions

In the recent weeks, a new hacker group called Moses Staff has been recently claiming responsibility for multiple attacks against Israeli entities, where they have gaining access to networks and systems owned by Israeli organisations and encrypt the files on the systems before leaking copies of the stolen files to the public. Based on the attacks that they have conducted […]
November 12, 2021

Customers urged to change passwords after German medical software vendor Medatixx experiences ransomware attack

On Friday 12th of November 2021, Medatixx, a German medical software vendor who provides medical software to over 21,000 health institutions, announced they had experienced a ransomware attack which has led to their operations being shut down. Shortly after the attack, they urged their customers and users to change their application passwords and passwords to all their workstations and servers […]
November 9, 2021

Europe’s largest consumer electronics retailer, MediaMarkt suffers ransomware attack

On Monday 8th of November 2021, MediaMarkt, Europe’s largest consumer electronics retailer experienced a ransomware attack which has led to IT systems being shut down and disrupts to stores in Netherlands, Germany, Belgium and Luxembourg. No ransomware gang has been named yet. Although a MediaMarkt spokesperson has confirmed that the company had been hit by a cyber-attack on the morning […]
November 3, 2021

BlackMatter affiliates move to LockBit to continue extortion of BlackMatter ransomware victims after BlackMatter shutdown

With the threat actors behind BlackMatter Ransomware announcing they were shutting down on Monday 1st of November 2021, the remaining affiliates have been moving their victims to the competing ransomware gang. LockBit to continue the extortion of their victims. This has been proven by the fact that in existing BlackMatter negotiation chats to victims, affiliates are now providing victims links […]
November 3, 2021

UK Labour Party announce data breach after being informed of ransomware attack

On Wednesday 3rd of November 2021, the Labour Party, a political party in the United Kingdom released a statement that revealed on 29th October 2021, they were contacted by a third party about a cyber incident that had resulted in a large volume of the Party’s data being made inaccessible. “We were informed of the cyber incident by the third […]
November 3, 2021

BlackMatter ransomware gang announce the shutdown of operations due to pressure from authorities

On Monday 1st of November 2021, the threat actors behind the BlackMatter Ransomware released an announcement on their ransomware-as-a-service (RaaS) website which is used by their affiliates to communicate with the core ransomware operators and receive support during operations. The announcement stated that the operation was going to shut down after 48 hours of the release of the announcement. Due […]
November 2, 2021

FBI warn ransomware gangs are targeting companies during time-sensitive financial events

On Monday 1st of November 2021, the United States Federal Bureau of Investigation (FBI) released a TLP: WHITE private industry notification where they warned that threat actors from ransomware gangs are starting to target companies that involved in significant, time-sensitive financial events like corporate mergers and acquisitions in the hope that these events will encourage these target companies to pay […]
November 1, 2021

Handa Hospital in Tokushima Prefecture disrupted heavily by ransomware attack

On Sunday 31st of October 2021, Tsurugi municipal Handa Hospital in Tokushima Prefecture suffered a ransomware attack which disrupted the operations of the hospital and involved electronic records of over 85,000 patients being made inaccessible. Indications of the incident were noticed at 12:30 a.m. when many of hospital’s printers started to print out messages that stated the hospital’s data had […]
November 1, 2021

HelloKitty ransomware gang expend their extortion tactics to DDoS attacks

On Thursday 28th of October 2021, the United States Federal Bureau of Investigation (FBI) released a TLP: WHITE flash alert where they warned that threat actors behind the Hello Kitty/FiveHands ransomware are now using distributed denial-of-service (DDoS) attacks as a measure to apply pressure to their victims who does not respond quickly to their demands or does not pay the […]