Incidents involving malware or ransomware. In some cases, incidents called “ransomware” do not involve any locking but merely hack, exfiltrate, and attempt to extort.
KnowTechie reports: Two former cybersecurity professionals have admitted they were secretly running ransomware attacks on the side. According to an announcement this week from the US Department of Justice, Ryan Goldberg, 40, and Kevin Martin, 36, pleaded guilty to orchestrating a string of ransomware attacks in 2023 that netted them about $1.2 million in Bitcoin. Here’s the […]
Bleeping Computer reports: An Interpol-coordinated initiative called Operation Sentinel led to the arrest of 574 individuals and the recovery of $3 million linked to business email compromise, extortion, and ransomware incidents. Between October 27 and November 27, the investigation, which involved law enforcement in 19 countries, took down more than 6,000 malicious links and decrypted […]
The Record reports: A cyberattack on the library system of Pierce County, Washington exposed the information of more than 340,000 people. The Pierce County Library System published breach notifications this week on its website and with regulators in several states. The letters concern a cybersecurity incident that was first discovered on April 21 and required the library system to shut down […]
Fox25 in Oklahoma reports: The Cleveland County Sheriff’s Office (CCSO) is the victim of a cybersecurity attack, and now a hacking group claiming to be responsible is demanding a hefty ransom. On November 20, CCSO made a post on social media saying it was recently impacted by a ransomware attack. The group Rhysida is taking […]
On December 4, the U.S. Department of the Treasury Financial Crimes Enforcement Network (FinCEN) issued a Financial Trend Analysis of ransomware incidents since January 2022: FinCEN
Cyber Security News reports that LockBit 5.0’s infrastructure was leaked on X.com on December 5 by Rakesh Krishnan: LockBit 5.0 key infrastructure exposed, revealing the IP address 205.185.116.233, and the domain karma0.xyz is hosting the ransomware group’s latest leak site. According to researcher Rakesh Krishnan, hosted under AS53667 (PONYNET, operated by FranTech Solutions), a network frequently […]
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued another warning last week:
Bitdefender reports: A ransomware attack on Crisis24, the vendor behind the CodeRED emergency alert system, has left towns and cities across the United States without a core public-warning tool. CodeRED is widely used to push urgent notifications for severe weather, public safety incidents, missing persons and other critical situations. In the aftermath of the intrusion, […]
The Register reports: The number of successful cyber insurance claims made by UK organizations shot up last year, according to the latest figures from the industry’s trade association. The Association of British Insurers (ABI) said £197 million ($259 million) in cyber insurance payouts were made to victimized organizations in 2024, up from £59 million ($77 […]
The Economic Times reports: Cybersecurity firm Sophos has released its fifth annual State of Ransomware in Retail report, highlighting how visibility gaps across retail networks continue to leave businesses vulnerable. The survey of 361 IT and security leaders across 16 countries found that 46% of ransomware attacks in the sector originated from previously unknown security […]
