October 27, 2024 at 05:47PM Fog and Akira ransomware operators are exploiting a critical vulnerability in SonicWall VPN accounts, leading to at least 30 network intrusions. Most cases involve Akira, with shared infrastructure indicating collaboration. Organizations lacked multi-factor authentication and used unpatched versions of SonicOS, resulting in rapid data encryption and theft following initial access. … Read more
September 27, 2024 at 11:11AM Microsoft warns that the ransomware threat actor Storm-0501 is now targeting hybrid cloud environments and has expanded its tactics to compromise all victim assets. The group has targeted various organizations in the United States and uses various methods to gain access, move laterally, steal data, and deploy the Embargo ransomware. … Read more
September 23, 2024 at 05:38PM MoneyGram’s global money transfer services are down due to a cybersecurity issue, affecting in-person and online transactions. The company has not disclosed a timeline for restoration or confirmed a ransomware attack. MoneyGram has hired cybersecurity experts, initiated an investigation, and is cooperating with law enforcement. The company stores sensitive customer … Read more
September 16, 2024 at 09:45AM The RansomHub ransomware group leaked 487 GB of data stolen from Kawasaki Motors Europe. The company disclosed the cyberattack and isolated servers as a precaution. They have restored over 90% functionality and resumed normal operations. RansomHub threatened to release data unless a ransom was paid, but KME refused. The US … Read more
September 13, 2024 at 05:03AM Fortinet confirmed a data breach after a hacker leaked 440 Gb of data allegedly obtained from an Azure Sharepoint instance. The hacker, named ‘Fortibitch,’ released information on accessing an AWS S3 bucket storing the data. However, Fortinet clarified that less than 0.3% of customer data was compromised, and no evidence … Read more
September 10, 2024 at 06:41AM The NoName ransomware gang, also known as CosmicBeetle, has targeted small and medium-sized businesses for over three years, using the Spacecolon malware family and recently deploying the ScRansom ransomware. NoName has advanced to becoming a RansomHub affiliate, using various tools, exploiting vulnerabilities, and experimenting with different ransomware to increase its … Read more
September 8, 2024 at 10:07PM Summarized Text: The Predator commercial spyware kit has resurfaced with new infrastructure in countries like the Democratic Republic of the Congo and Angola, evading US sanctions. Its latest updates enhance anonymity, making it harder to track. Recommendations include adhering to cyber security best practices. Additionally, other cybersecurity news includes a … Read more
August 9, 2024 at 08:18AM The American Hospital Association and the Health-ISAC issued a joint threat bulletin cautioning about ransomware attacks causing blood shortages and disrupting patient care in the U.S. and U.K. The bulletin highlighted recent attacks and urged healthcare organizations to prepare for supply chain disruptions and develop risk management plans for third-party … Read more
August 5, 2024 at 09:07AM Cybersecurity regulations vary by region, allowing cybercriminals to exploit gaps in governance. To bridge these gaps, global collaboration is necessary. North America has improved security culture, but major cyberattacks still occur. South America’s varying development levels present challenges. Africa faces rapid technology adoption and increasing cybercrime. Europe and Oceania are … Read more
July 31, 2024 at 09:08AM The City of Columbus, Ohio, was targeted by a ransomware attack on July 18, prompting the shutdown of systems and impacting various services. Although the city claims to have disrupted the threat actor’s activity, an investigation is ongoing to determine the extent of potential data access. Mayor Ginther emphasized the … Read more