May 14, 2021

Reports suggest that DarkSide had involvement with Toshiba subsidiary ransomware attack

On May 14th, 2021, European subsidiaries of the Toshiba Tec Group companies experienced a ransomware attack from the DarkSide ransomware group. After discovering the attack, the Toshiba Tec Group immediately shut down the networks and systems operating between Japan and Europe and its other subsidiaries in the hope of preventing the spread of the ransomware while deploying recovery measures after […]
May 13, 2021

Chemical distributor Brenntag pays $4.4 million to DarkSide ransomware Group

In May 2021, Chemical distribution company Brenntag suffered a ransomware attack that targeted their North American division. The attack was claimed by the DarkSide ransomware gang who states they have stolen 150GB worth of data. To prove their claims, DarkSide had published a private data leak page containing a description of the types of data stolen and screenshots of some […]
May 10, 2021

The US colonial pipeline attacked by a Ransomware

On the 8th of May 2021, Colonial Pipeline, the largest fuel pipelines in the United States, released a statement confirming they suffered a ransomware attack on the 7th of May 2021 and had taken the decision to shut down the operations in order to stop the malware being propagated to other machines on the network. The impact of the attack […]
April 28, 2021

DC Police confirms cyberattack after ransomware gang leaks confidential data

In April 2021, Metropolitan Police Department had confirmed that they experienced a cyberattack after the Babuk ransomware gang leaked screenshots of data they had stolen from the department. The DC Police stated that they are aware of a breached server and that the FBI is investigating the matter. “We are aware of unauthorized access on our server. While we determine […]
April 12, 2021

Ireland’s health service forced to drop up to 80% of appointment due to Conti ransomware attack

On the 14th of March 2021, Health Service Executive of Ireland, which is responsible for the provision of health and personal social services in the Republic of Ireland had to take all its IT systems offline after experiencing a Conti ransomware attack early in the morning that left Ireland’s health system paralyzed as up to 80% of appointments had to […]
March 26, 2021

Insurance companies becoming a common target – CNA Ransomware Attack

In March 2021, one of the biggest Insurance companies in the US, CNA suffered a ransomware attack from the ransomware, Phoenix CryptoLocker that has possible links to the Evil Corp hacking group. The company’s overall services and business was impacted which led to network disruption and impacting certain systems in the CNA environment. It is said that more than ten […]
March 20, 2021

REvil ransomware attack hits Computer giant Acer hit for $50 million

On the 18th of March 2021, the infamous ransomware gang, REvil announced on their data leak site that they had breached Acer. The group also provided evidence of the attack by publishing images of allegedly stolen files, these documents included financial spreadsheets, bank balances, and bank communications. The threat actors are demanding for $50,000,000, according to BleepingComputer, which is the […]
March 18, 2021

DoppelPaymer ransomware group demands $20 Million from Kia Motors America

On February 13th, 2021, Kia Motors America experienced a ransomware attack by the DoppelPaymer ransomware group which led to outages over their nationwide network. The effect of the attack was noticed when customers discovered the Kia Owners Portal was offline and displayed an error message that said:    “We are currently experiencing an IT service outage that has impacted some […]
December 15, 2020

The Role of Admin Credentials in the SolarWinds Attack

I wanted to share my thoughts on the SolarWinds attack that has been used to target government agencies as well as other private/public companies. FireEye has an excellent write-up ( Highly Evasive Attacker Leverages SolarWinds Supply Chain to CompromiseMultiple Global Victims With SUNBURST Backdoor ) and I encourage everyone to read it to familiarize yourself with the exploit and attack paths. […]
Prev page
1234567891011121314151617181920212223242526272829
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.