-
StopCrypt: Most widely distributed ransomware evolves to evade detection
A new variant of StopCrypt ransomware (aka STOP) was spotted in the wild, employing a multi-stage execution process that involves shellcodes to evade security tools.
- March 14, 2024
- 04:59 PM
3
-
The Week in Ransomware - August 11th 2023 - Targeting Healthcare
While some ransomware operations claim not to target hospitals, one relatively new ransomware gang named Rhysida doesn't seem to care.
- August 11, 2023
- 06:04 PM
0
-
Sponsored Content
Free shadow SaaS inventory + security insightsDiscover all SaaS accounts ever created by anyone in your org, in minutes, along with insights on security risks and spend. Save time, money and effort by curbing SaaS sprawl and automating tasks like offboarding and user access reviews. Free trial.
-
The Week in Ransomware - June 2nd 2023 - Whodunit?
It has been a fairly quiet week regarding ransomware, with only a few reports released and no new significant attacks. However, we may have a rebrand in the making, and a ransomware operation is likely behind a new zero-day data-theft campaign, so we have some news to talk about.
- June 02, 2023
- 05:47 PM
- 0
-
The Week in Ransomware - August 12th 2022 - Attacking the defenders
It was a very busy week for ransomware news and attacks, especially with the disclosure that Cisco was breached by a threat actor affiliated with the Yanluowang ransomware gang.
- August 12, 2022
- 07:19 PM
- 1
-
The Week in Ransomware - August 5th 2022 - A look at cyber insurance
For the most part, it has been a quiet week on the ransomware front, with a few new reports, product developments, and attacks revealed.
- August 05, 2022
- 05:35 PM
- 0
-
The Week in Ransomware - July 22nd 2022 - Attacks abound
New ransomware operations continue to be launched this week, with the new Luna ransomware found to be targeting both Windows and VMware ESXi servers.
- July 22, 2022
- 11:52 PM
- 0
-
The Week in Ransomware - July 8th 2022 - One down, many to go
While we continue to see new ransomware operations launch, we also received some good news this week, with another ransomware shutting down.
- July 08, 2022
- 05:21 PM
- 0
-
The Week in Ransomware - April 29th 2022 - New operations emerge
This week we have discovered numerous new ransomware operations that have begun operating, with one appearing to be a rebrand of previous operations.
- April 29, 2022
- 06:29 PM
- 0
-
The Week in Ransomware - April 15th 2022 - Encrypting Russia
While countries worldwide have been the frequent target of ransomware attacks, Russia and CIS countries have been avoided by threat actors. The tables have turned with the NB65 hacking group modifying the leaked Conti ransomware to use in attacks on Russian entities.
- April 15, 2022
- 05:19 PM
- 0
-
The Week in Ransomware - April 1st 2022 - 'I can fight with a keyboard'
While ransomware is still conducting attacks and all companies must stay alert, ransomware news has been relatively slow this week. However, there were still some interesting stories that we outline below.
- April 01, 2022
- 07:07 PM
- 0
-
The Week in Ransomware - March 18th 2022 - Targeting the auto industry
This week, the automotive industry has been under attack, with numerous companies exhibiting signs of breaches or ransomware activity.
- March 18, 2022
- 04:11 PM
- 0
-
STOP Ransomware vaccine released to block encryption
German security software company G DATA has released a vaccine that will block STOP Ransomware from encrypting victims' files after infection.
- December 07, 2021
- 10:06 AM
- 8
-
The Week in Ransomware - September 3rd 2021 - Targeting Exchange
Over the past two weeks, it has been busy with ransomware news ranging from a gang shutting down and releasing a master decryption key to threat actors turning to Microsoft Exchange exploits to breach networks.
- September 03, 2021
- 04:17 PM
- 0
-
The Week in Ransomware - August 14th 2020 - Crime made easy
Ransomware continues its siege on organizations worldwide, with new variants released every day and attacks continuing to be reported.
- August 15, 2020
- 11:42 AM
- 1
-
The Week in Ransomware - July 24th 2020 - Navigation failure
This week has been quite busy with a new enterprise targeting ransomware called Exorcist and attacks against large companies.
- July 24, 2020
- 01:34 PM
- 0
-
The Week in Ransomware - June 19th 2020 - a quiet week
For the most part, it has been a quiet week with new variants of existing ransomware families being released. We also did not see too many large victims being disclosed and mostly updates of existing victims.
- June 19, 2020
- 06:04 PM
- 0
-
Fake ransomware decryptor double-encrypts desperate victims' files
A fake decryptor for the STOP Djvu Ransomware is being distributed that lures already desperate people with the promise of free decryption. Instead of getting their files back for free, they are infected with another ransomware that makes their situation even worse.
- June 06, 2020
- 04:05 PM
- 10
-
The Week in Ransomware - May 1st 2020 - Banishing the Shade
For the victims of the Shade Ransomware, otherwise known as Troldesh, this was an excellent week as the threat actors released over 750,000 decryption keys for their victims.
- May 01, 2020
- 06:19 PM
- 2
-
The Week in Ransomware - April 17th 2020 - Changing Tactics
There was not a lot of new ransomware variants released this week, but some pretty interesting news about operations changing their tactics to remain more profitable and to evade law enforcement.
- April 17, 2020
- 06:35 PM
- 0
-
The Week in Ransomware - April 3rd 2020 - No Sign of Letting Up
Over the past two week, we have seen an increase in warnings from law enforcement agencies stating that healthcare organizations need to be on high alert for attacks by ransomware operators and other attackers who are looking to capitalize on the Coronavirus pandemic.
- April 10, 2020
- 05:20 PM
- 2
