January 27, 2024 at 11:28AM KCATA, a bi-state public transit agency serving Missouri and Kansas, experienced a ransomware attack impacting communication systems. Despite disruption to call centers, bus routes and paratransit services continue to operate normally. The agency is working with cyber professionals to resolve the issue and ensure customer data security. No ransomware groups … Read more
January 26, 2024 at 07:31AM The Akira ransomware gang claims responsibility for a cyber incident at a UK bath bomb merchant, stealing 110GB of data. Staff-related and company documents, including passport scans, were accessed, with threats to publish soon. The company, Lush, acknowledged the incident and is cooperating with forensic experts. Akira’s ransom tactics and … Read more
January 26, 2024 at 12:57AM Russian national Vladimir Dunaev has been sentenced to five years and four months in prison for creating and distributing the TrickBot malware, causing tens of millions of dollars in losses to victims including hospitals and businesses. The malware evolved into a tool for delivering ransomware and its developer had provided … Read more
January 25, 2024 at 07:08PM Former Trickbot developer Vladimir Dunaev from Russia sentenced to five years and four months in the US for infecting American hospitals and businesses with ransomware and other malware, causing millions in losses. He provided specialized services for the criminal gang, including recruiting coders, managing servers, and developing browser modifications to … Read more
January 25, 2024 at 01:56PM Russian national Vladimir Dunaev has been sentenced to five years and four months in prison for his involvement in creating and distributing the Trickbot malware. He pleaded guilty to charges of computer fraud and identity theft, and extradition to the US was completed in October 2021. Dunaev’s role in the … Read more
January 25, 2024 at 11:48AM EquiLend, a Wall Street fintech firm, is working to restore its systems after a cyberattack. The attack resulted in portions of the company’s systems being taken offline, prompting EquiLend to launch an investigation and work with external cybersecurity firms to restore services. The nature and extent of the attack, as … Read more
January 24, 2024 at 03:12PM Jason’s Deli alerted its Deli Dollars rewards program members about potential exposure of personal data due to a credential-stuffing attack. It impacted over 344,000 customers. Names, addresses, phone numbers, birth dates, and partial credit card numbers were compromised. The restaurant is urging customers to update their login credentials and emphasizes … Read more
January 24, 2024 at 07:06AM Kasseika, a new ransomware group, has adopted the Bring Your Own Vulnerable Driver (BYOVD) attack to evade security processes on Windows hosts, demonstrating similarities with the now-defunct BlackMatter. Their attack chain begins with a phishing email, followed by deploying remote administration tools and executing a malicious batch script. The ransomware … Read more
January 24, 2024 at 04:24AM Australia, the U.K., and the U.S. have imposed financial sanctions on Russian national Alexander Ermakov for his alleged involvement in the 2022 ransomware attack on Medibank. The attack resulted in the unauthorized access of 9.7 million customer records, leading the governments to criminalize dealing with his assets and call for … Read more
January 24, 2024 at 01:34AM The UK National Cyber Security Centre (NCSC) suggests that by 2025, AI could significantly enhance attackers’ tools, making malware harder to detect and enabling quicker identification of valuable data for extortion. The report warns of increased cyber attacks, predicts AI’s widespread use by cyber criminals, and emphasizes the need to … Read more