Ransomware | SC Media

Ransomware

The fairly convincing phishing scam is being hosted on a compromised EA Games server.

Fake résumé emails attempt to spread Ordinypt Wiper to German recipients

Attention German HR departments: You may want to cross off a certain “Eva Richter” from your list of employment candidates. Especially because her so-called résumé actually infects recipients with the destructive Ordinypt Wiper malware, according to a new report. The fake résumé phishing campaign began on Sept. 11 and is specifically aimed at German-speaking employers,…

Ransomware attack on Premier Family Medical reportedly impacts records of 320K patients

Utah-based health care practice Premier Family Medical was struck by ransomware last July 8 in a cyberattack that reportedly affected the records of roughly 320,000 patients. The medical provider, which operates 10 locations across Utah County, originally announced the incident publicly on Aug. 30, noting that the malware had restricted employees’ access to their systems…

The Rockford files: Ransomware disrupts Illinois school district’s systems

Rockford Public Schools District 250 in Rockford, Ill., last week was struck by a ransomware attack that has disrupted the operations of its electronic and digital systems. In an update via Twitter yesterday, the district reported that the Sept. 6 infection affected its website, internet connectivity, IT systems, phone lines, student information systems (which track…

700,000 Choice Hotels customer records compromised

Cybercriminals took advantage of an open MongoDB database containing data from Choice Hotels and stole 700,000 customer records and then demanded a $3,800 ransom payment for their return. The unsecured third-party database was first uncovered by Comparitech and security researcher Bob Diachenko, but despite quick action on their part informing Choice of the problem, malicious…

Destructive malware attacks double as attackers pair ransomware with disk wipers

IBM Security’s X-Force Incident Response and Intelligence Services (IRIS) team reported this week that it witnessed a 200 percent increase in destructive malware attacks over the first half of 2019, compared to the second half of 2018. These malware attacks typically incorporated a disk wiper component to them. Wipers are historically associated with nation-state-sponsored attacks…

malware

RIG, Fallout EKs used to deliver new SystemBC malware

Researchers have come across a new proxy malware program that’s being delivered by the RIG and Fallout exploit kits as part of a larger campaign to infect victims with malicious payloads such as the Danabot banking trojan. Proofpoint’s Threat Insight Team began to track the malware, called SystemBC, on June 4 when it was observed…

cyberattack, ransomware

Cyberattack strikes Watertown schools

The Watertown (New York) city school district is the latest to be hit with a cyberattack. School district Superintendent Patricia LaBarr did not specify the type of attack that took place, but said it happened on July 27 and an outside security firm and law enforcement have been brought in to help. “At this time,…

Flawed, but promising, Android ransomware uncovered

Researchers have come across a new Android ransomware family, nicknamed Android/Filecoder.C. that uses victims’ contact lists in an attempt to spread through SMS texts containing malicious links. According to ESET, Android/Filecoder.C. is poorly constructed and uses an encryption method that can be defeated without using the decryptor keys. However, the malicious actors did not get…

Next post in Mobile Security