CosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHub

September 10, 2024 at 12:34PM CosmicBeetle debuts new ransomware, ScRansom, targeting SMBs globally, possibly as an affiliate for RansomHub. The attack spans various sectors and uses brute-force attacks and known security flaws for infiltration. Cicada3301 ransomware is observed with modifications, while a kernel-mode signed Windows driver, POORTRY, used by multiple ransomware gangs as an EDR … Read more

Ransomware Gang Claims Cyberattack on Planned Parenthood

September 5, 2024 at 02:48PM Ransomware gang RansomHub claims to have stolen 93 GB of data from nonprofit Planned Parenthood, threatening to publish it unless a ransom is paid. The cybercriminal group has targeted over 200 victims, including organizations in various sectors. Planned Parenthood confirmed a cyberattack and is working to address the incident while … Read more

Hackers Threaten to Release Stolen Data From Planned Parenthood of Montana

September 5, 2024 at 01:36PM Planned Parenthood of Montana reported a cybersecurity incident, with hackers affiliated with RansomHub stealing 93GB of data and giving a ransom ultimatum. It’s unclear if patient files were affected. The incident will likely become politicized due to the organization’s association with abortion care. The group is working to restore its … Read more

Halliburton Confirms Data Stolen in Cyberattack

September 3, 2024 at 04:06PM Halliburton confirmed data theft from its systems in a ransomware cyberattack, causing significant disruptions. It’s evaluating the extent of information accessed and is collaborating with law enforcement. The US government attributed the attack to a ransomware gang, and Halliburton activated its cyber response plan. The oil and gas industry has … Read more

Halliburton confirms data stolen in recent cyberattack

September 3, 2024 at 09:00AM Oil and gas company Halliburton confirmed to the SEC that data was stolen in a recent attack by RansomHub ransomware gang. The breach prompted disruptions to its systems and caused concern among customers. Halliburton is evaluating the scope of the breach and potential financial and customer impact, including risks of … Read more

RansomHub Ransomware Group Targets 210 Victims Across Critical Sectors

September 2, 2024 at 10:18AM RansomHub, a Ransomware-as-a-service variant, has targeted at least 210 victims across various sectors, using the double extortion model to extort data and funds. Exploiting security vulnerabilities, affiliates conduct reconnaissance and network scanning before targeting victim environments. The surge in Ransomware-as-a-service variants has led to new variants and collaborations with nation-state … Read more

RansomHub hits 210 victims in just 6 months

August 30, 2024 at 07:58PM RansomHub, a rising ransomware group, has amassed over 210 victims since its emergence in February. Its affiliates target a broad range of sectors, using tactics like vulnerability exploits and specific tools for data exfiltration. The advisory suggests mitigation measures and emphasizes the importance of secure software design. RansomHub faces strong … Read more

Halliburton cyberattack linked to RansomHub ransomware gang

August 29, 2024 at 05:13PM The RansomHub ransomware gang orchestrated a cyberattack on oil and gas services company Halliburton, resulting in significant disruption to its IT systems and business operations. Based on the meeting notes, it’s clear that the RansomHub ransomware gang was responsible for the cyberattack on Halliburton. This attack disrupted the company’s IT … Read more

#StopRansomware: RansomHub Ransomware

August 29, 2024 at 01:53PM Summary: The FBI, CISA, MS-ISAC, and HHS have released a joint Cybersecurity Advisory to disseminate information about RansomHub ransomware, including its tactics, techniques, and procedures. The advisory includes details on the ransomware’s impact, mitigation recommendations for network defenders, technical details, and further resources to protect against ransomware threats. Based on … Read more

Patelco notifies 726,000 customers of ransomware data breach

August 26, 2024 at 03:35PM Patelco Credit Union recently experienced a data breach due to a RansomHub ransomware attack earlier this year, leading to the theft of customers’ personal data. Based on the meeting notes, it appears that Patelco Credit Union has informed its customers about a data breach caused by a RansomHub ransomware attack … Read more