October 19, 2021

Free BlackByte ransomware decryptor released after AES encryption key was reused

On Thursday 15th of October 2021, a free decryptor for the BlackByte ransomware and a SpiderLabs blog detailing the process of decrypting the ransomware was released to the public to allow past victims to recover their files for free. Researchers had found that the ransomware was downloading an image file called ‘forest.png’ from a remote malicious site under the control […]
October 18, 2021

Attacks on ten Israeli hospitals attributed to Chinese threat actors

On the 17th of October 2021, the Ministry of Health and the National Cyber Directorate in Israel released a joint announcement details a spike in ransomware attacks over the weekend of the 16th that has seen by targeting systems of nine health institutes in Israel. The Israeli government have stated that the attempts had resulted in no damage to the […]
October 17, 2021

REvil ransomware group’s Tor sites shut down after being hijacked

On the 17th of October 2021, the Tor sites of REvil ransomware gang went offline after an unknown person hijacked the Tor onion domains with the same private keys as REvil’s Tor sites and may have backups of the sites. One of the threat actors “0_neday”, affiliated with the REvil operation has confirmed that someone has hijack the ransomware gang’s […]
October 8, 2021

American media conglomerate, Cox Media Group disclose ransomware attack.

On Friday 8th of October 2021, Cox Media Group, an American media conglomerate disclosed that they experienced a ransomware attack that led to TV and radio broadcast streams to be taken down in June of 2021. The attack disclosed to the public via mail that was sent to over 800 individuals who have had their personal information exposed during the […]
October 8, 2021

Scottish engineering weir group hit by ransomware attack

​On Thursday 7th of October 2021, Weir Group, a Scottish multinational engineering firm disclosed they had experienced an attempted ransomware attack back in September 2021 that had led to significant temporary disruption due to the process of their cyber security systems being activated by the incident. The incident disclosed in the firm’s Q3 trade update, where they stated, “The Group […]
September 24, 2021

Disruptions to major European call center provider- Covisian after Conti Ransomware attack

On Saturday 18th of September 2021, GSS, the Spanish and Latin America division of Covisian was hit by a ransomware attack by the Conti ransomware gang. The attack led to them having to shut down a large portion of their IT systems and led to disruptions to call centers across its Spanish-speaking client base. Some of the impacted clients included […]
September 22, 2021

IT systems of Crystal Valley Cooperative brought down due to ransomware attack

On the 19th of September 2021, Crystal Valley experienced a ransomware attack that led to them having to shut down their IT systems and resulting in payments being paid to the farm supply and grain marketing cooperative via Visa, Mastercard and Discover Credit cards were stopped. Currently it is unknown which ransomware group are behind the attack. “On Sunday, September […]
September 21, 2021

BlackMatter Ransomware attacks New Cooperative for a ransom of $5.9 million

During the weekend of the 18th of September 2021, NEW Cooperative experienced a ransomware attack by the BlackMatter ransomware group. Currently the threat actors are demanding a 5.9-million-dollar ransom not to leak stolen data and provide a decryptor. The ransom will increase to $11.8 million if a ransom is not paid in five days. “New Cooperative recently identified a cybersecurity […]
September 16, 2021

Bitdefender releases a universal REvil decryptor for past victims

The cyber security firm, Bitdefender has just released a universal decryptor for the REvil ransomware which will work for any victims who were attacked before the 13th of July. The decryptor was made in collaboration with an unidentified “trusted law enforcement partner.” This decyptor will enable victim who didn’t pay or couldn’t pay after REvil went offline following their attack […]
Prev page
12345678910111213141516171819
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.