October 23, 2024 at 10:07AM Avast has launched a free decryptor for the Mallox ransomware following the discovery of a vulnerability in its cryptographic system. **Meeting Takeaways:** 1. **Release Announcement**: Avast has launched a free decryptor specifically for the Mallox ransomware. 2. **Reason for Release**: The decryptor was developed after Avast identified a vulnerability in … Read more
September 11, 2024 at 09:39AM Executives and security leaders facing ransomware attacks endure immense stress and uncertainty. In a recent incident involving Hazard ransomware, victims paid a ransom for a decryption tool that ultimately didn’t work, escalating their distress. Despite this, cybersecurity experts emphasize the need for caution, as success with decryption tools is not … Read more
July 22, 2024 at 01:26PM The Los Angeles County Superior Court, the largest in America, closed all 36 courthouses due to an “unprecedented” ransomware attack, which bricked every electronic platform containing court data. Court employees and infosec experts are working to restore court servers and databases, aiming to reopen on Tuesday, following the need to … Read more
June 24, 2024 at 06:03PM CDK is working to restore its dealer management system after a ransomware attack, impacting daily operations at 15,000 automotive dealers. The meeting notes highlight the ongoing impact on daily operations at approximately 15,000 automotive dealers due to CDK’s efforts to restore its dealer management system following a ransomware attack last … Read more
June 24, 2024 at 02:08PM Several US companies filing Form 8-Ks with the SEC have referenced a cyber incident affecting CDK Global, a major software provider for car dealerships. The incident has disrupted business operations, leading affected companies to deploy mitigation strategies. CDK has faced two system shutdowns and is reportedly considering a ransom payment … Read more
June 7, 2024 at 05:00AM The FBI has 7,000 decryption keys for LockBit ransomware, aiming to help victims. The gang’s infrastructure was dismantled in an international operation, and its administrator, Dmitry Yuryevich Khoroshev, was identified. Despite this, LockBit remains active, with new variants targeting vulnerable Microsoft SQL servers and VMware ESXi systems. Organizations are warned … Read more
June 6, 2024 at 03:49PM The FBI, together with international partners, took down the LockBit ransomware gang and identified a suspect named Dmitry Khoroshev. They have obtained over 7,000 decryption keys to help victims recover their data. However, victims should still remain cautious as LockBit may still possess their data, emphasizing the importance of preventing … Read more
February 26, 2024 at 08:51AM The LockBit ransomware operators faced law enforcement disruption, seizure of servers, and the arrest of individuals. Authorities obtained decryption keys and offered rewards. LockBitSupp launched a new leak site, attributing the takedown to a PHP flaw and announced improvements. LockBit faced decline and struggles attracting affiliates. The true masterminds behind … Read more
February 12, 2024 at 10:48AM South Korean researchers discovered and publicly disclosed a flaw in Rhysida ransomware, enabling the creation of a free Windows decryptor. This ransomware is known for targeting healthcare organizations and was the subject of a warning by the FBI and CISA for attacks against various industries. The flaw allowed for the … Read more
February 12, 2024 at 08:39AM Cybersecurity researchers at Kookmin University and Korea Internet and Security Agency have discovered an “implementation vulnerability” in Rhysida ransomware, enabling the first successful decryption of its data. The findings led to the development of a recovery tool distributed by KISA, achieving data decryption by exploiting implementation vulnerabilities in ransomware. The … Read more