Ransomware news & analysis | SC Media Ransomware

Ransomware

2020 Predictions: Ransomware

Morgan Wright, Chief Security Advisor, SentinelOne The next ransomware attacker jackpot. We’ve seen countless attacks on public school districts and higher ed providers in 2019 which will likely continue, but I expect research institutes to increasingly be in the crosshairs in the coming year. Research institutes hold tremendous amounts of sensitive data that can be…

Galt city hall, St. Lucie police hit with ransomware

Just days after New Orleans revealed it was victimized by a ransomware attack, smaller municipalities in Florida and California reported being hit. Galt, Calif. municipal systems and the St. Lucie County, Fla. Sheriff’s Department were each knocked offline. Galt was attacked on December 16 and was partially successful in encrypting some city systems. In a…

money

LifeLabs pays ransom to regain stolen data, 15 million affected

The Canadian health diagnostics firm LifeLabs reported it payed cybercriminals an undisclosed amount of money to retrieve customer data stolen in a recent cyberattack. LifeLabs president and CEO Charles Brown said the decision to pay the malicious actors was taken in in collaboration with cybersecurity experts familiar who handle cyberattacks and negotiations with cybercriminals. The…

Dread Zeppelin: Ransomware targets health care and IT sectors in U.S., Europe

Cybercriminals have spun off a ransomware that was originally known to target Russian organizations into a new malicious encryptor used in targeted campaigns against strategically selected health care and IT companies in America and Europe. Dubbed Zeppelin, the new ransomware is a descendant of VegaLocker, a Delphi-based Ransomware-as-a-Service (RaaS) offering that was discovered in early…

Maze ransomware possibly behind Southwire attack

Wire and cable manufacturer Southwire is in the recovery phase from a ransomware attack that struck on December 9 knocking a large portion of the company offline. Published reports state Maze ransomware was the weapon of choice and that the attackers demanded an 850 bitcoin, about $6 million, payment or else the encrypted data would…

Maze behind Pensacola ransomware attack

Maze was behind the ransomware attack on the City of Pensacola that began early Saturday morning, and its operators have demanded a $1 million ransom to provide the municipality with a decryptor. The Maze operators, who typically threaten to publish files online if victims don’t pony up, said in a Bleeping Computer report that the…

Snatch ransomware encrypts files in Safe Mode to thwart security software

A cybercriminal organization has been attacking Windows users with a hybrid ransomware and data stealer program that encrypts machines while in Safe Mode in order to render endpoint protection programs moot. Dubbed Snatch, the malware “runs itself in an elevated permissions mode, sets registry keys that instructs Windows to run it following a Safe Mode…

Pensacola confirms ransomware attack

Pensacola officials confirmed that an ongoing cyberattack that began early Saturday morning is a ransomware attack. While the city did not release any additional details, the Pensacola News Journal said city spokeswoman Kaycee Lagarde confirmed the attack included a ransom, something that Mayor Grover Robinson initially declined to discuss. Jeff Bergosh, District 1 Commissioner on…

Next post in Security News