January 20, 2023

LAUSD reveals Vice Society ransomware gang stole contractors’ personal information

This week, the Los Angeles Unified School District (LAUSD) revealed that the Vice Society ransomware gang had stolen files containing contractors’ personal information, including Social Security Numbers (SSNs) during a cyber attack that spanned over two months, between the 31st of July 2022, and the 3rd of September 2022. “Through our ongoing investigation, we determined that between July 31, 2022, […]
January 12, 2023

Cyber attack on Fire Rescue Victoria claimed by Vice Society ransomware gang

On Thursday 15th of December 2022, an Australian fire and rescue service operating in the state of Victoria, Fire Rescue Victoria experienced a cyber attack that caused several internal servers to be affected. However, the agency’s emergency response services were not impacted as they were able to operate through mobile phones, pagers, and radio. The agency has also confirmed that […]
November 26, 2022

Ragnar Locker ransomware gang claims to target Belgian municipality, hits police instead

On Wednesday 16th of November 2022, the Ragnar Locker ransomware gang released a posting on their TOR data leak site where they claimed to have stolen data from the municipality of Zwijndrecht. However, it was discovered that the stolen data was from Zwijndrecht police, a local police unit in Antwerp, Belgium. The leaked data reportedly exposed thousands of car number plates, […]
October 17, 2022

German newspaper stops circulation after a ransomware attack

On Friday 14th of October 2022, the german newspaper ‘Heilbronn Stimme’ experienced a ransomware attack that crippled its printing systems as well as phone and email services. On Saturday, the newspaper released an “emergency” six-page edition while all planned obituaries were posted on the website and today, they published a 28-page issue in an e-paper format. The Editor-in-chief Uwe Ralf […]
October 14, 2022

Microsoft reveals new Prestige ransomware campaign against Ukraine and Poland

On Friday 14th of October 2022, Microsoft released an article where they stated that the new novel ransomware campaign, Prestige ransomware is being used to target transportation and logistics organizations in Ukraine and Poland in ongoing attacks. This ransomware campaign was first Tuesday 11th of October 2022 when a series of attacks were detected within an hour of each other. […]
October 5, 2022

Avast releases free ransomware decryptor for the variants of the MafiaWare666 ransomware

On Wednesday 5th of October 2022, Avast announced that they had released a free decryption tool for variants of the MafiaWare666 ransomware known as ‘Jcrypt’, ‘RIP Lmao’, and ‘BrutusptCrypt,’ allowing victims to recover their files for free. Avast stated they discovered a flaw in the encryption scheme of the MafiaWare666 strain, that allowed some of the variants to be unlocked. […]
October 2, 2022

Vice Society Ransomware gang releases stolen data from the LAUSD school system

On Sunday 2nd of October 2022, the Vice Society Ransomware gang published data and documents that were stolen from the Los Angeles Unified School District during a ransomware attack at the start of September. The release of the stolen data was confirmed by LAUSD superintendent Alberto M. Carvalho in a statement posted to Twitter. “Unfortunately, as expected, data was recently […]
September 29, 2022

Lesser-known Royal Ransomware ramps up operations with multi-million dollar attacks

Recently, a lesser-known ransomware operation named Royal has been observed ramping up its attacks against serval corporations with ransom demands ranging from $250,000 to over $2 million. The Royal ransomware operation was launched in January 2022 and is believed to be a private group without affiliates that consist of vetted and experienced ransomware actors from previous operations. It was reported […]
September 15, 2022

Cyberattack against Bell Canada subsidiary claimed by Hive ransomware gang

The Hive ransomware gang claimed responsibility for an attack that hit the systems of Bell Canada subsidiary Bell Technical Solutions (BTS). Within the data leak entry, Hive claims that they encrypted BTS’ systems almost a month ago, on Saturday 20th of August 2022. Even though BTS hasn’t disclosed when its network was breached or how the attack occurred, Bell Canada […]