Incidents involving malware or ransomware. In some cases, incidents called “ransomware” do not involve any locking but merely hack, exfiltrate, and attempt to extort.
Two Russians are on trial in Brussels for infecting tens of thousands of computers with ransomware and raking in more than 3 million euros. Belga News Agency reports: The couple allegedly used the highly malicious Crylock ransomware to remotely lock computer files and hold some 400,000 victims for ransom. Crylock first appeared in Belgium in […]
Court-Authorized Operation Removes PlugX Malware from Over 4,200 Infected U.S. Computers Note: View the affidavit here. The Justice Department and FBI today announced a multi-month law enforcement operation that, alongside international partners, deleted “PlugX” malware from thousands of infected computers worldwide. As described in court documents unsealed in the Eastern District of Pennsylvania, a group of […]
Governments have routinely urged ransomware victims not to pay ransom demands, as it only encourages them to attack even more victims. Now the UK government may prohibit government and public sector entities from paying. LBC reports: Security minister Dan Jarvis told LBC: “We want these cyber criminals who operate from Russia and elsewhere to look […]
The Hacker News reports that a notorious Russian cybercriminal wanted in the U.S. in connection with LockBit and Hive ransomware operations has been arrested: According to a news report from Russian media outlet RIA Novosti, Mikhail Pavlovich Matveev has been accused of developing a malicious program designed to encrypt files and seek ransom in return for a […]
Associated Press reports that a ransomware attack that hit Blue Yonder last week has caused disruptions for a number of companies in the U.S. and the U.K., including Starbucks and grocery giant Morrisons: Blue Yonder, which provides supply chain technology to a range of brands worldwide, said that it experienced disruptions to services it manages […]
When BlackCat pulled an exit scam in February after extorting Change Healthcare for $22 million, people started speculating how long it would be before they re-branded and re-emerged. We may have an answer now. The Register reports that both BlackCat (aka ALPHV) and Scattered Spider appear to be back: In October, security firm ReliaQuest responded […]
An announcement by Dutch police in conjunction with their law enforcement partners had cyberdefenders smiling yesterday. Law enforcement had seized the source code and network infrastructure for RedLine and META infostealers. In what has been called “Operation Magnus,” law enforcement warned cybercriminals that they got their data, too. In a “final update” video, law enforcement […]
Eight months after the biggest breach ever involving patient data, Change Healthcare informed the U.S. Department of Health & Human Services Office of Civil Rights (HHS OCR) that it has sent individual notifications to 100 million affected patients. This is the first time they have revealed any actual number since an April update where they […]
A costly lesson to learn, but it sounds like Merck learned it. Fortune reports: Cybersecurity has always been a priority, but got even more attention inside Merck after the company was stung by the NotPetya cyberattack in 2017, which reportedly damaged more than 30,000 of the company’s computers. It led to $1.4 billion in claims […]
The Change Healthcare ransomware attack that was first disclosed in February 2024 continues to cause problems and make headlines. HIPAA Journal reports on the financial impact: The cost of the Change Healthcare ransomware attack has risen to $2.457 billion, according to UnitedHealth Group’s Q3, 2024 earnings report. Revenues in the third quarter increased by 9% year-over-year […]
