CISA, FBI and NSA Advise Organizations on BlackMatter Ransomware
A cybersecurity advisory was published by the Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) with detailed information about the BlackMatter ransomware group targeting numerous U.S. critical infrastructure companies including U.S. food and agriculture sector companies. Included in the cybersecurity advisory are the technical details, analysis, […]
Ransomware Groups Collected $590m in First Half of 2021
According to the US government’s Financial Crimes Enforcement Network (FinCEN), cybercriminals who created and distribute the ransomware strains were paid at least $590 million in ransom payments in the first half of 2021, which is more than the $416 million tracked in 2020. The total amount due to the ransomware-related financial activity may have […]
Enterprises Targeted by New Yanluowang Ransomware
Researchers have discovered a newly developed ransomware variant called Yanluowang (named after one of the ten Chinese kings of hell, Yanluo Wang), targeting a high-profile enterprise. Yanluowang ransomware was discovered during an incident involving an unnamed large organization after detecting suspicious activity involving the legitimate AdFind command line Active Directory query tool. Threat actors commonly […]
Olympus IT Systems Hit Offline after Second Attack in Two Month
According to BleepingComputer, Olympus, a leading medical technology company, was forced to take down IT systems in the Americas (U.S., Canada, and Latin America) following a cyberattack that hit its network Sunday, October 10, 2021. “Upon detection of suspicious activity, we immediately mobilized a specialized response team including forensics experts, and we are currently working […]
BlackMatter Ransomware Breaches Iowa Farm Services Provider
BlackMatter Ransomware Breaches Iowa Farm Services Provider New Cooperative, a farm service provider in Iowa, was breached by the BlackMatter ransomware group impacting some of its devices and systems. Allan Liska, a ransomware expert, revealed that the group’s leak page contained financial documents, network information for companies involved with New Cooperative, employee’s social security numbers […]
Olympus Investigating BlackMatter Attack on EMEA IT Systems
Olympus Investigating BlackMatter Attack on EMEA IT Systems An investigation is currently underway on a potential cybersecurity breach of a leading medical technology company, Olympus, that impacted some IT systems in Europe, the Middle East, and Africa. Olympus has been developing medical, life sciences, and industrial equipment for the medical industry for over 100 years […]
Ragnar Locker Threatens Victims with New Extortion Tactic
Ragnar Locker Threatens Victims with New Extortion Tactic A ransomware group, Ragnar Locker, is threatening to publish data on their dark web leak site if victims attempt to contact the FBI, any law enforcement authorities, or investigative agencies. This threat also includes data recovery experts attempting to decrypt the data and conducting the negotiation process. […]
LockFile Evades Security with Intermittent File Encryption
LockFile Evades Security with Intermittent File Encryption Last month, a new ransomware strain called, LockFile, appeared using its own creative technique called “intermittent encryption” to bypass ransomware protection. LockFile operators have been breaching Windows servers by exploiting disclosed vulnerabilities including ProxyShell and PetitPotam and evading ransomware defense by using a file-encrypting malware to scramble every […]
White House Cybersecurity Summit: Insurance Raising the Bar
At the White House cybersecurity summit, three major cyber insurance companies, Travelers, Coalition, and Resilience, major tech companies, and Biden administration officials were among those attending and contributing insight to the growing cyber threats on US business. The White House stated at the summit that the federal government can’t face the challenge alone and that […]
FBI Issues Warning About OnePercent Ransomware Group
The FBI’s cyber division issued a warning regarding a cyber-criminal group known as the “OnePercent Group” stating that they have been targeting U.S. companies in ransomware attacks since November 2020. They also shared information regarding the tactics, techniques, procedures (TTP), mitigation measures and indicators of compromise. OnePercent group’s infection process begins in the victim’s inbox […]
