Ransomware | SC Media

Ransomware

700,000 Choice Hotels customer records compromised

Cybercriminals took advantage of an open MongoDB database containing data from Choice Hotels and stole 700,000 customer records and then demanded a $3,800 ransom payment for their return. The unsecured third-party database was first uncovered by Comparitech and security researcher Bob Diachenko, but despite quick action on their part informing Choice of the problem, malicious…

Destructive malware attacks double as attackers pair ransomware with disk wipers

IBM Security’s X-Force Incident Response and Intelligence Services (IRIS) team reported this week that it witnessed a 200 percent increase in destructive malware attacks over the first half of 2019, compared to the second half of 2018. These malware attacks typically incorporated a disk wiper component to them. Wipers are historically associated with nation-state-sponsored attacks…

malware

RIG, Fallout EKs used to deliver new SystemBC malware

Researchers have come across a new proxy malware program that’s being delivered by the RIG and Fallout exploit kits as part of a larger campaign to infect victims with malicious payloads such as the Danabot banking trojan. Proofpoint’s Threat Insight Team began to track the malware, called SystemBC, on June 4 when it was observed…

cyberattack, ransomware

Cyberattack strikes Watertown schools

The Watertown (New York) city school district is the latest to be hit with a cyberattack. School district Superintendent Patricia LaBarr did not specify the type of attack that took place, but said it happened on July 27 and an outside security firm and law enforcement have been brought in to help. “At this time,…

Flawed, but promising, Android ransomware uncovered

Researchers have come across a new Android ransomware family, nicknamed Android/Filecoder.C. that uses victims’ contact lists in an attempt to spread through SMS texts containing malicious links. According to ESET, Android/Filecoder.C. is poorly constructed and uses an encryption method that can be defeated without using the decryptor keys. However, the malicious actors did not get…

Study: Ransomware generates most interest among underground forum users

An analysis of 3.9 million online posts published on underground forums found that ransomware, crypters and trojans were the most frequently referenced categories of malware and malicious tools – an indication of their popularity among forum visitors and potential cybercriminals. Web shells, remote access trojans, adware, computer viruses, FUD (fully undetectable) crypters, exploit kits and rootkits – in that…

Report suggests GandCrab’s developers may have created Sodinokibi ransomware

Evidence is reportedly mounting that the recently discovered ransomware program known as Sodinokibi was created by the same developers who introduced GandCrab ransomware. Last month, GandCrab’s developers publicly disclosed that they were retiring after raking in roughly $2 billion in extortion payments. But this announcement may have been misleading at best, according to security researcher…

Next post in Malware