January 5, 2024 at 05:23PM
Summary:
– BleepingComputer tested a new decryptor for Black Basta ransomware.
– Xerox Business Solutions suffered a cyberattack, possibly exposing personal information.
– Australia’s Court Services Victoria suffered a ransomware attack, potentially exposing sensitive recordings.
– The Zeppelin2 ransomware source code and builder were sold on a hacking forum.
– Various new ransomware variants and breaches were reported by PCrisk.
This week’s contributors: @billtoulas, @Seifreed, @LawrenceAbrams, @Ionut_Ilascu, @malwrhunterteam, @fwosar, @BleepinComputer, @serghei, @demonslay335, @Intel_by_KELA, @pcrisk, @BushidoToken, @BrettCallow, @emsisoft, @AlvieriD, and @srlabs.
Key takeaways from the meeting notes are as follows:
1. Black Basta ransomware was temporarily exploitable using a new decryptor, but the flaw has been fixed.
2. A cyberattack on Xerox Business Solutions (XBS) was confirmed, with potential access by hackers greater than disclosed.
3. Australia’s Court Services Victoria (CSV) suffered a ransomware attack, potentially exposing sensitive court hearing recordings.
4. A new version of the Zeppelin Ransomware (Zeppelin2) source code and builder were sold on a hacking forum, presenting concerns for future ransomware-as-a-service operations.
5. Various new ransomware variants have been identified, each with specific file extensions and ransom note names.
6. A significant cyber breach was reported involving the Russian hackers behind the attack on Kyivstar, Ukraine’s largest telecommunications service provider.
The notes also mention contributors and sources of information related to ransomware news and attacks, providing a network of contacts for further updates and insights.