Ransomware News 2020 October -  Úvod  2020  2019  2018  0  1  2  3 


2020 -  January February March April May June July August September October November December


H  Ransomware  Jak útočí  Klany  Techniky  Obrana  Popisky  Anti-Ramson Tool  Rescue plan  Anti-ransomware vaccine  RansomFree  Prevence  Video  Vývoj 

DATE

NAME

INFO

CATEGORY

SUBCATE

31.10.20

UHS restores hospital systems after Ryuk ransomware attack

Universal Health Services (UHS), a Fortune 500 hospital and healthcare services provider, says that it has managed to restore systems after a September Ryuk ransomware attack.

RANSOM RANSOM

31.10.20

New Bondy variant

Siri found another Bondy Ransomware variant that appends the .Connect extension.

RANSOM RANSOM

31.10.20

New Hentai OniChan Version King Engine ransomware

Siri found a new ransomware that calls itself 'Hentai OniChan Version King Engine' and appends the .docm extension to encrypted files.

RANSOM RANSOM

31.10.20

New RansomKart ransomware

0x4143 found a new in-development ransomware called Ransomkart that appends the .ransomkart extension.

RANSOM RANSOM

31.10.20

New CCE ransomware variant

Siri found a variant of the CCE ransomware that appends the .aieou extension to encrypted files.

RANSOM RANSOM

31.10.20

New Wanna Scream variant

Michael Gillespie found a new Wanna Scream variant that appends the .Bang extension to encrypted files.

RANSOM RANSOM

31.10.20

New STOP ransomware variant

Michael Gillespie found a new STOP ransomware variant that appends the .jdyi extension to encrypted files.

RANSOM RANSOM

31.10.20

New Bondy ransomware

Siri found the Bondy Ransomware that appends the .bondy extension and drops a ransom note named HELP_DECRYPT_YOUR_FILES.txt.

RANSOM RANSOM

31.10.20

New MyRansom ransomware

GrujaRS found a new ransomware called MyRansom that does not append an extension but drops a ransom note named README.TXT.

RANSOM RANSOM

31.10.20

Georgia county voter information leaked by ransomware gang

The DoppelPaymer ransomware gang has released unencrypted data stolen from Hall County, Georgia, during a cyberattack earlier this month.

RANSOM RANSOM

31.10.20

Brooklyn & Vermont hospitals are latest Ryuk ransomware victims

Wyckoff Heights Medical Center in Brooklyn and the University of Vermont Health Network are the latest victims of the Ryuk ransomware attack spree covering the healthcare industry across the U.S.

RANSOM RANSOM

31.10.20

Hacking group is targeting US hospitals with Ryuk ransomware

In a joint statement, the U.S. government is warning the healthcare industry that a hacking group is actively targeting hospitals and healthcare providers in Ryuk ransomware attacks.

RANSOM RANSOM

31.10.20

REvil ransomware gang claims over $100 million profit in a year

REvil ransomware developers say that they made more than $100 million in one year of extorting large businesses across the world from various sectors.

RANSOM RANSOM

31.10.20

Maze ransomware is shutting down its cybercrime operation

​The Maze cybercrime gang is shutting down its operations after rising to become one of the most prominent players performing ransomware attacks.

RANSOM RANSOM

31.10.20

New RegretLocker ransomware

MalwareHunterTeam found the RegretLocker ransomware that appends the .mouse extension and drops a ransom note named HOW TO RESTORE FILES.TXT.

RANSOM RANSOM

31.10.20

New Ragnar Locker ransomware variant

GrujaRS found a new Ragnar Locker ransomware variant that appends the .__r4gN4r__XXXXXXX extension and drops a ransom note named !!!_READ_ME_XXXXXXX_!!!.txt.

RANSOM RANSOM

31.10.20

Fake COVID-19 survey hides ransomware in Canadian university attack

In recent weeks, we’ve observed a number of phishing attacks against universities worldwide which we attributed to the Silent Librarian APT group. On October 19, we identified a new phishing document targeting staff at the University of British Columbia (UBC) with a fake COVID-19 survey.

RANSOM RANSOM

31.10.20

New Wanna Scream variant

0x4143 found a new Wanna Scream variant that appends the .H@RM@ extension and drops ransom notes named info.hta and ReadMe.txt.

RANSOM RANSOM

31.10.20

New SnapDragon ransomware

0x4143 found a new ransomware called SnapDragon that appends the .SNPDRGN extension to encrypted files.

RANSOM RANSOM

31.10.20

New Ransomware COVID

MalwareHunterTeam found 'Ransomware COVID' that appends the .crypt extension to encrypted files.

RANSOM RANSOM

31.10.20

New Mars ransomware

Michael Gillespie found a new ransomware that appends the .mars extension to encrypted files and drops a ransom note named !!!MARS_DECRYPT.TXT.

RANSOM RANSOM

31.10.20

Steelcase furniture giant hit by Ryuk ransomware attack

Office furniture giant Steelcase has suffered a ransomware attack that forced them to shut down their network to contain the attack's spread.

RANSOM RANSOM

31.10.20

Enel Group hit by ransomware again, Netwalker demands $14 million

Networks of giant energy company Enel have been hit by a ransomware attack for the second time this year. This time, it's Netwalker asking $14 million ransom for the decryption key.

RANSOM RANSOM

31.10.20

New Ransomware32 ransomware

Karsten Hahn found ransomware written in Rust called Ransomware32 that appends the ._encrypted extension and drops a ransom note named README_encrypted.txt.

RANSOM RANSOM

31.10.20

New TheDMR ransomware variant

Amigo-A found a new variant of TheDMR Ransomware that calls itself 'Alvin Ransomware' and appends the .ALVIN extension and drops a ransom note named HOW TO RECOVER ENCRYPTED FILES.txt.

RANSOM RANSOM

31.10.20

Mineral Technologies Inc discloses a ransomware attack in SEC filings

Minerals Technologies Inc. (the “Company”) today announced that on October 22, 2020, it detected a ransomware attack impacting certain of its information technology systems. Immediately upon its detection of the security incident, which prevented access to certain systems and data within the Company’s network, the company implemented its cyber security emergency response plan. As part of that plan, Company took steps to restore its network and resume normal operations as quickly as possible. The Company launched an investigation working with industry-leading cybersecurity firms, engaged legal counsel, notified law enforcement and is in the process of notifying appropriate governmental authorities.

RANSOM RANSOM

31.10.20

New Xorist ransomware variant

Michael Gillespie found a new Xorist ransomware variant that appends the .ZaLtOn extension to encrypted files.

RANSOM RANSOM

31.10.20

New STOP Djvu ransomware variant

Michael Gillespie found a new STOP ransomware variant that appends the .iiss extension to encrypted files.

RANSOM RANSOM

31.10.20

Sopra Steria confirms being hit by Ryuk ransomware attack

French enterprise IT services company Sopra Steria confirmed today that they were hit with a Ryuk ransomware attack on October 20th, 2020.

RANSOM RANSOM

31.10.20

State and Local Cybersecurity: Defending Our Communities from Cyber Threats Amid COVID-19

In late September, Coveware’s CEO, Bill Siegel, was invited to testify before the Federal Spending Oversight Subcommittee of the Committee on Homeland Security and Governmental Affairs. The topic: Defending Our State & Local Communities from Cyber Threats Amid COVID-19. The committee hearing was postponed after the passing of Ruth Bader Ginsberg, and while we look forward to the hearing be rescheduled, we figured would publish our submitted testimony anyway. The testimony explains the market dynamics of ransomware, and our thoughts on how to most efficiently and effectively protect our state & local communities from cyber threats.

RANSOM RANSOM

31.10.20

New Russian Ransomware

dnwls0719 found a new ransomware targeting Russia that appends the .pizhon-(Random) extension to encrypted files.

RANSOM RANSOM

24.10.20

New #Szymekk #Ransomware

GrujaRS found a new Syzmekk ransomware variant that appends the .Szymekk extension.

RANSOM RANSOM

24.10.20

New Yatron Decrypt0r 2.0

GrujaRS found a new Yatron Decrypt0r variant that appends the .Down_With_Usa extension to encrypted files.

RANSOM RANSOM

24.10.20

New Clay ransomware

xiaopao found the new Clay Ransomware.ransomware called Clay.

RANSOM RANSOM

24.10.20

New Dharma ransomware variant

xiaopao found a new Dharma ransomware variant that appends the .Acuf2 extension.

RANSOM RANSOM

24.10.20

New ransomware discovered

Siri found a new HiddenTear ransomware variant that pretends to be a GTA V instaler, but encrypts your files with the .AnoymouS extension.

RANSOM RANSOM

24.10.20

New RAT malware gets commands via Discord, has ransomware feature

The new 'Abaddon' remote access trojan may be the first to use Discord as a full-fledged command and control server that instructs the malware on what tasks to perform on an infected PC. Even worse, a ransomware feature is being developed for the malware.

RANSOM RANSOM

24.10.20

WastedLocker ransomware hits Boyne Resorts ski resort operator

US-based ski and golf resort operator Boyne Resorts has suffered a cyberattack by the WastedLocker operation that has impacted company-wide reservation systems.

RANSOM RANSOM

24.10.20

Venom RAT adds ransomware module

Karsten Hahn discovere that Venom RAT has added a ransomware module that appends the .Venom extension.

RANSOM RANSOM

24.10.20

French IT giant Sopra Steria hit by Ryuk ransomware

French IT services giant Sopra Steria suffered a cyberattack on October 20th, 2020, that reportedly encrypted portions of their network with the Ryuk ransomware.

RANSOM RANSOM

24.10.20

New Dharma ransomware variant

Marcelo Rivero found a new Dharma ransomware variant that appends the .bH4T extension.

RANSOM RANSOM

24.10.20

Montreal's STM public transport system hit by ransomware attack

Montreal's Société de transport de Montréal (STM) public transport system was hit with a RansomExx ransomware attack that has impacted services and online systems.

RANSOM RANSOM

24.10.20

LockBit ransomware moves quietly on the network, strikes fast

LockBit ransomware takes as little as five minutes to deploy the encryption routine on target systems once it lands on the victim network.

RANSOM RANSOM

24.10.20

New ransomware discovered

Siri found a new ransomware that appends the .32aa extension to encrypted files.

RANSOM RANSOM

24.10.20

New Black Heart ransomware variant

Siri found a new Black Heart ransomware variant that appends the .Viper extension to encrypted files.

RANSOM RANSOM

24.10.20

New STOP Djvu ransomware variant

Michael Gillespie found a new STOP ransomware variant that appends the .nypg extension to encrypted files.

RANSOM RANSOM

24.10.20

New Dharma ransomware variant

Jakub Kroustek found a new Dharma ransomware variant that appends the .259 extension to encrypted files.

RANSOM RANSOM

24.10.20

Barnes & Noble hit by Egregor ransomware, strange data leaked

The Egregor ransomware gang is claiming responsibility for the cyberattack on U.S. Bookstore giant Barnes & Noble on October 10th, 2020. The attackers state that they stole unencrypted files as part of the attack.

RANSOM RANSOM

24.10.20

Darkside ransomware donates $20K of extortion money to charities

The operators of Darkside ransomware have donated some of the money they made extorting victims to nonprofits Children International and The Water Project.

RANSOM RANSOM

24.10.20

New Vaggen Ransomware

Marcelo Rivero found a new ransomware named Vaggen that appends the .VAGGEN extension and drops ransom notes named ABOUT_UR_FILES.txt and AboutYourFiles.txt.

RANSOM RANSOM

24.10.20

US indicts Russian GRU 'Sandworm' hackers for NotPetya, worldwide attacks

The U.S. Department of Justice has charged six Russian intelligence operatives for hacking operations related to the Pyeongchang Winter Olympics, the 2017 French elections, and the notorious NotPetya ransomware attack.

RANSOM RANSOM

24.10.20

New STOP Djvu ransomware variant

Michael Gillespie found a new STOP ransomware variant that appends the .efji extension to encrypted files.

RANSOM RANSOM

24.10.20

New Pransomware ransomware

@Glacius_ found a copy of BlackKingdom ransomware that was renamed to Pransomware.

RANSOM RANSOM

24.10.20

New Dharma ransomware variants

Jakub Kroustek found new Dharma ransomware variants that append the .Crypt and .LCK extension to encrypted files.

RANSOM RANSOM

18.10.20

New MadDog Ransomware

Michael Gillespie found a new HiddenTear ransomware named MadDog that appends the .id-.[maddogteam@airmail.cc].MadDog to encrypted files.

RANSOM RANSOM

18.10.20

MaMoCrypt Ransomware Decryption Tool

We’re happy to announce the availability of a new decryptor for MaMoCrypt, a strain of ransomware that appeared in December last year.

RANSOM RANSOM

18.10.20

Fanduel, Draftkings Data Provider Stats Perform Hit By Ransomware Attack 

Sports data provider Stats Perform has been down for almost a week thanks to a ransomware hack, Legal Sports Report understands.

RANSOM RANSOM

18.10.20

ThunderX Ransomware rebrands as Ranzy Locker, adds data leak site

ThunderX has changed its name to Ranzy Locker and launched a data leak site where they shame victims who do not pay the ransom.

RANSOM RANSOM

18.10.20

Unknown ransomware found

Siri found a new ransomware that appends the .CRPTD extension.

RANSOM RANSOM

18.10.20

New Adhubllka Ransomware

xiaopao found the Adhubllka Ransomware that appends the .see_read_me and drops a ransom note named Read_Me.txt.

RANSOM RANSOM

18.10.20

New STOP Ransomware variant

Michael Gillespie found a new STOP Ransomware variant that appends the .mmpa extension.

RANSOM RANSOM

18.10.20

Crytek hit by Egregor ransomware, Ubisoft data leaked

The Egregor ransomware gang has hit game developer Crytek in a confirmed ransomware attack and leaked what they claim are files stolen from Ubisoft's network.

RANSOM RANSOM

18.10.20

New Scarab Ransomware variant

Amigo-A found a new variant of the Scarab Ransomware that appends the .Bioawards extension and drops ransom notes named Instruction.txt and DECRYPT FILES.TXT.

RANSOM RANSOM

18.10.20

New PewPew ransomware variant

Siri found a new PewPew ransomware variant that appends the .artemis extension.

RANSOM RANSOM

18.10.20

New Dharma Ransomware variant

xiaopao found the Dharma ransomware variant that appends the .zxcv extension.

RANSOM RANSOM

18.10.20

New Philadelphia Ransomware variant

xiaopao found a new Philadelphia Ransomware variant.

RANSOM RANSOM

18.10.20

Ransomware hits the Bureau of the Fire Department of Puerto Rico

RANSOM RANSOM

18.10.20

Barnes & Noble hit by cyberattack that exposed customer data

​U.S. Bookstore giant Barnes & Noble has disclosed that they were victims of a cyberattack that may have exposed customers' data.

RANSOM RANSOM

18.10.20

FIN11 hackers jump into the ransomware money-making scheme

FIN11, a financially-motivated hacker group with a history starting since at least 2016, has adapted malicious email campaigns to transition to ransomware as the main monetization method.

RANSOM RANSOM

18.10.20

New Badboymnb Ransomware

xiaopao found the Badboymnb Ransomware that appends the .Badboy extension and drops a ransom note named ReadME-BadboyEncryption.txt.

RANSOM RANSOM

18.10.20

London Borough of Hackney suffers ‘serious’ cyberattack

The city council systems for the London Borough of Hackney have been hit with a 'serious' cyberattack that impacts many of their services and IT systems.

RANSOM RANSOM

18.10.20

International law firm Seyfarth discloses ransomware attack

International law firm Seyfarth Shaw announced on Monday that it was the victim of a ransomware attack over the weekend.

RANSOM RANSOM

18.10.20

New Loki Stealer encrypts your files

Arkbird found a new Loki Stealer variant that steals files and then encrypts your computer. When encrypting, it appends the .loki extension to encrypted files.

RANSOM RANSOM

18.10.20

New Nephilim variant

Siri found a new Nephilim ransomware variant that appends the .MERIN extension.

RANSOM RANSOM

18.10.20

City of Mt. Pleasant falls victim to remote ransomware attack

The City of Mt. Pleasant has fallen victim to a ransomware attack, that is according to city officials.

RANSOM RANSOM

18.10.20

New STOP Ransomware variant

Michael Gillespie found a new STOP Ransomware variant that appends the .foqe extension.

RANSOM RANSOM

18.10.20

New Matrix Ransomware variant

Michael Gillespie found a new Matrix Ransomware variant that appends the .TG33 extension and drops the TG33_INFO.rtf ransom note.

RANSOM RANSOM

18.10.20

BazarLoader used to deploy Ryuk ransomware on high-value targets

The TrickBot gang operators are increasingly targeting high-value targets with the new stealthy BazarLoader trojan before deploying the Ryuk ransomware.

RANSOM RANSOM

18.10.20

TrickBot botnet targeted in takedown operations, little impact seen

TrickBot, one of the most active botnets on the planet, recently has suffered some strong blows from actors in the cybersecurity industry aiming at disrupting its operations.

RANSOM RANSOM

18.10.20

Tyler Technologies paid ransomware gang for decryption key

Tyler Technologies has paid a ransom for a decryption key to recover files encrypted in a recent ransomware attack.

RANSOM RANSOM

11.10.20

New in-development ransomware

S!Ri found a new in-development ransomware that appends .en extension to encrypted files.

RANSOM RANSOM

11.10.20

New Dharma Ransomware variants

Jakub Kroustek found new Dharma ransomware variants that append the .gtsc or .dme extension to encrypted files.

RANSOM RANSOM

11.10.20

Largest cruise line operator Carnival confirms ransomware data theft

Carnival Corporation, the world's largest cruise line operator, has confirmed that the personal information of customers, employees, and ship crews was stolen during an August ransomware attack.

RANSOM RANSOM

11.10.20

Software AG IT giant hit with $23 million ransom by Clop ransomware

The Clop ransomware gang hit the network of German enterprise software giant Software AG last Saturday, asking for a ransom of $23 million after stealing employee information and company documents.

RANSOM RANSOM

11.10.20

Ransomware gang now using critical Windows flaw in attacks

Microsoft is warning that cybercriminals have started to incorporate exploit code for the ZeroLogon vulnerability in their attacks. The alert comes after the company noticed ongoing attacks from cyber-espionage group MuddyWater (SeedWorm) in the second half of September.

RANSOM RANSOM

11.10.20

Massachusetts school district shut down by ransomware attack

The Springfield Public Schools district in Massachusetts has become the victim of a ransomware attack that has caused the closure of schools while they investigate the cyberattack.

RANSOM RANSOM

11.10.20

New Cyber_Splitter Android ransomware found

MalwareHunterTeam found a new Android ransomware called CyberSplitter that appends the .Dcry extension to encrypted files.

RANSOM RANSOM

11.10.20

New WoodRat ransomware

S!Ri found a new ransomware that appends .woodrat to encrypted files.

RANSOM RANSOM

11.10.20

New Curator ransomware

Michael Gillespie is looking for a new ransomware that appends the extension .CURATOR and drops a ransom note named !=HOW_TO_DECRYPT_FILES=!.txt.

RANSOM RANSOM

11.10.20

The FONIX RaaS | New Low-Key Threat with Unnecessary Complexities

FONIX Raas (Ransomware as a Service) is an offering that first came to attention in July of this year. It did not make much of a splash at the time, and even currently, we are only seeing small numbers of infections due to this ransomware family. However, RaaS that at first fly under the radar can quickly become rampant if defenders and security solutions remain unaware of them. Notably, FONIX varies somewhat from many other current RaaS offerings in that it employs four methods of encryption for each file and has an overly-complex post-infection engagement cycle. In this post, we dig a little deeper into these and other peculiarities of this new RaaS offering.

RANSOM RANSOM

11.10.20

Ransomware threat surge, Ryuk attacks about 20 orgs per week

Malware researchers monitoring ransomware threats noticed a sharp increase in these attacks over the past months compared to the first six months of 2020.

RANSOM RANSOM

11.10.20

New SantaCrypt Ransomware

xXToffeeXx found a new ransomware dubbed SantaCrypt that appends the .$anta and drops a ransom note named HOW_TO_RECOVER_MY_FILES.TXT.

RANSOM RANSOM

11.10.20

Customized version of Petya

Michael Gillespie found a new ransomware called EYECRY that is a customized version of the Petya ransomware/bootlocker.

RANSOM RANSOM

11.10.20

New MOSS STOP Djvu ransomware variant

Michael Gillespie found a new STOP Djvu ransomware variant that appends the .moss extension to encrypted files.

RANSOM RANSOM

11.10.20

New Babax variant with ransomware module

Karsten Hahn tweeted about a new Babax variant called Osno Stealer that includes a ransomware module that appends the .osnoed.

RANSOM RANSOM

11.10.20

New ransomware vaccine kills programs wiping Windows shadow volumes

A new ransomware vaccine program has been created that terminates processes that try to delete volume shadow copies using Microsoft's vssadmin.exe program,

RANSOM RANSOM

11.10.20

New Dharma ransomware variant

Jakub Kroustek found a new Dharma ransomware variant that appends the .FLYU extension to encrypted files.

RANSOM RANSOM

11.10.20

New Jersey hospital paid ransomware gang $670K to prevent data leak

University Hospital New Jersey in Newark, New Jersey, paid a $670,000 ransomware demand this month to prevent the publishing of 240 GB of stolen data, including patient info.

RANSOM RANSOM

3.10.20

New Homer Dharma Ransomware variant

Marcelo Rivero found a new variant of the Dharma Ransomware that appends the .homer extension to encrypted files.

RANSOM RANSOM

3.10.20

US govt warns of sanction risks for facilitating ransomware payments

The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) today said that organizations that assist ransomware victims to make ransom payments are facing sanctions risks as their actions could violate OFAC regulations.

RANSOM RANSOM

3.10.20

Ransomware gangs add DDoS attacks to their extortion arsenal

A ransomware operation has started to utilize a new tactic to extort their victims: DDoS a victim's website until they return to the negotiation table.

RANSOM RANSOM

3.10.20

Hackers leak files stolen in Pakistan's K-Electric ransomware attack

The Netwalker ransomware operators have published the stolen data for K-Electric, Pakistan's largest private power company, after a ransom was not paid.

RANSOM RANSOM

3.10.20

New MAME VSE Ransomware

0x4143 found a new ransomware that appends the '.mame vse' extension to encrypted files.

RANSOM RANSOM

3.10.20

New FRESH Dharma Ransomware variant

Jakub Kroustek found a new variant of the Dharma Ransomware that appends the .fresh extension to encrypted files.

RANSOM RANSOM

3.10.20

SunCrypt ransomware group swears off medical entities, sets sights on cybersecurity firms

So SunCrypt pledges to leave medical entities alone, and DataBreaches.net hopes they stick to their pledge on that. But who will be they be focusing on, then? According to the spokesperson, “Suncrypt is after the cybersecurity companies,” and they say we will all be seeing proof of that very soon.

RANSOM RANSOM

3.10.20

QNAP warns customers of recent wave of ransomware attacks

QNAP has issued an advisory about a recent wave of ransomware attacks targeting its NAS storage devices and encrypting files.

RANSOM RANSOM

3.10.20

Blackbaud: Ransomware gang had access to banking info and passwords

Blackbaud, a leading cloud software provider, confirmed that the threat actors behind the May 2020 ransomware attack had access to unencrypted banking and login information, as well as social security numbers.

RANSOM RANSOM

3.10.20

New Phobos Ransomware variant

dnwls0719 found a new Phobos Ransomware variant that appends the .isos extension to encrypted files.

RANSOM RANSOM

3.10.20

New STOP ransomware variant

Michael Gillespie found a new STOP Ransomware variant that appends the .lyli extension to encrypted files.

RANSOM RANSOM

3.10.20

Ransomware hits US-based Arthur J. Gallagher insurance giant

US-based Arthur J. Gallagher (AJG) global insurance brokerage and risk management firm confirmed a ransomware attack that hit its systems on Saturday.

RANSOM RANSOM

3.10.20

Fake software crack sites used to push Exorcist 2.0 Ransomware

The threat actors behind the Exorcist 2.0 ransomware are using malicious advertising to redirect victims to fake software crack sites that distribute their malware.

RANSOM RANSOM

3.10.20

New EasyRansom ransomware

GrujaRS found a new ransomware that appends the .easyransom extension and drops a ransom note named easyransom_readme.txt.

RANSOM RANSOM

3.10.20

New MedusaLocker ransomware variant

M. Shahpasandi found a new MedusaLocker ransomware variant that appends the .lr extension.

RANSOM RANSOM

3.10.20

New WSHLP Dharma ransomware variant

Michael Gillespie found a new Dharma Ransomware variant that appends the .WSHLP extension.

RANSOM RANSOM

3.10.20

Logistics giant CMA CGM goes offline to block malware attack

CMA CGM S.A., a French maritime transport and logistics giant, today disclosed a malware attack affecting some servers on the edge of its network.

RANSOM RANSOM

3.10.20

REvil ransomware deposits $1 million in hacker recruitment drive

The REvil Ransomware (Sodinokibi) operation has deposited $1 million in bitcoins on a Russian-speaking hacker forum to prove to potential affiliates that they mean business.

RANSOM RANSOM

3.10.20

UHS hospitals hit by reported country-wide Ryuk ransomware attack

Universal Health Services (UHS), a Fortune 500 hospital and healthcare services provider, has reportedly shut down systems at healthcare facilities around the US after a cyber-attack that hit its network during early Sunday morning.

RANSOM RANSOM

3.10.20

New Babaxed Ransomware

GrujaRS found a new ransomware that appends the .babaxed extension and drops a ransom note named RECOVERY INSTRUCTIONS.

RANSOM RANSOM

3.10.20

ThunderX ransomware silenced with release of a free decryptor

A decryptor for the ThunderX ransomware has been released by cybersecurity firm Tesorion that lets victims recover their files for free.

RANSOM RANSOM

3.10.20

Tyler Technologies warns clients to change remote support passwords

Tyler Technologies is warning clients to change the passwords for the technology provider's remote access accounts after suspicious logins have been reported.