New ‘Helldown’ Ransomware Variant Expands Attacks to VMware and Linux Systems

November 19, 2024 at 05:45AM Cybersecurity researchers have identified a new Linux variant of the Helldown ransomware, derived from LockBit 3.0. This group targets virtualized infrastructures, exploiting Zyxel security flaws. Helldown employs double extortion tactics, attacking various sectors. Additionally, a new ransomware, Interlock, has emerged, targeting similar sectors with advanced operations. ### Meeting Takeaways on … Read more

OpenText Cybersecurity Unveils 2024’s Nastiest Malware

November 13, 2024 at 05:58PM OpenText has released its “Nastiest Malware of 2024” list, with ransomware LockBit topping the rankings for its persistent attacks on critical infrastructure. Cybersecurity investments are expected to rise by 14.3%, exceeding $215 billion. Other notable malware include Akira, RansomHub, Dark Angels, Redline, and Play Ransomware. ### Meeting Takeaways from OpenText … Read more

Ransomware Gangs Use LockBit’s Fame to Intimidate Victims in Latest Attacks

October 23, 2024 at 06:36AM Threat actors are exploiting Amazon S3’s Transfer Acceleration feature for ransomware attacks to exfiltrate data. They use disguised Golang ransomware and hard-coded AWS credentials, affecting both Windows and macOS. Recent reports show a rise in ransomware incidents, with notable groups adapting their tactics amidst ongoing threats and vulnerabilities. ### Meeting … Read more

THN Cybersecurity Recap: Top Threats and Trends (Sep 30 – Oct 6)

October 7, 2024 at 05:57AM The weekly cybersecurity recap covers a range of threats and events, including the takedown of LockBit ransomware operation, a record-breaking DDoS attack, North Korean hackers deploying a new trojan, and a large-scale fraud campaign targeting trading apps on Apple and Google stores. Furthermore, it highlights breaches at major companies and … Read more

LockBit Associates Arrested, Evil Corp Bigwig Outed

October 1, 2024 at 04:39PM In recent actions under Operation Cronos, Europol and Eurojust have made multiple arrests and seized devices associated with the LockBit ransomware gang. New ties have been revealed between LockBit and the infamous Evil Corp cybercrime organization. Efforts are ongoing to recover files affected by LockBit ransomware in various sectors through … Read more

Evil Corp hit with new sanctions, BitPaymer ransomware charges

October 1, 2024 at 12:37PM The United States, United Kingdom, and Australia have imposed new sanctions on the cybercrime syndicate Evil Corp, with the US indicting an individual for conducting BitPaymer ransomware attacks. The sanctions target both individuals and entities associated with Evil Corp, freezing assets and prohibiting transactions with businesses based in the US, … Read more

Police arrest four suspects linked to LockBit ransomware gang

October 1, 2024 at 11:43AM Law enforcement agencies from 12 countries arrested four suspects connected to the LockBit ransomware gang, including a developer, a hosting service admin, and two others involved in LockBit activity. The joint action led to server seizures and involved Operation Cronos, resulting in additional sanctions and previous arrests of LockBit actors. … Read more

Evil Corp’s deep ties with Russia and NATO member attacks exposed

October 1, 2024 at 11:42AM Evil Corp, a notorious cybercrime organization, is believed to have had an exceptionally close relationship with the Russian state, which allegedly ordered the group to carry out cyberattacks on NATO members. The group’s leader, Maksim Yakubets, is suspected to have strong ties to the Russian intelligence services, with support from … Read more

NCA unmasks man it suspects is both ‘Evil Corp kingpin’ and LockBit affiliate

October 1, 2024 at 10:12AM The National Crime Agency (NCA) revealed the identification of Aleksandr Ryzhenkov, a high-ranking member of Evil Corp believed to be a LockBit affiliate known as “Beverley.” The unmasking follows the disruption of 194 LockBit affiliates, with Ryzhenkov allegedly responsible for 60 attacks totaling $100 million in Bitcoin. NCA continues its … Read more

LockBit boasts of ransoming IRS-authorized eFile.com

September 18, 2024 at 04:19PM LockBit ransomware gang claims to have breached eFile.com, an IRS-authorized tax return e-filer with no affiliation to the IRS. The Register has not confirmed the breach. If true, it poses a risk to personal and financial data. Earlier security issues were reported in March 2023. Late filers are urged to … Read more