What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in FBI

Kaseya ransomware attackers say: “Pay $70 million and we’ll set everyone free”

by Paul Ducklin It’s like the movie Independence Day, but with the malware part of the story back-to-front. In the 1996 Jeff Goldblum classic, the bespectacled, academic antihero finally quashes the alien invaders by connecting to their mothership with his Mac laptop and uploading a computer virus that even the . . . Read more

S3 Ep37: Quantum crypto, refunding Bitcoins, and Alpaca problems [Podcast]

by Paul Ducklin [03’22”] Will quantum cryptography mean the end of encryption?   [10’30”] How was the FBI able to get bitcoins back in the Colonial Pipeline ransomware case?   [25’00”] What is the ALPACA attack, and does it make your browsing less secure?   [25’00”] Oh! No! of the week. With Kimberly Truong, Doug Aamoth . . . Read more

S3 Ep36: Trickbot coder busted, passwords cracked, and breaches judged [Podcast]

by Paul Ducklin [04’24”] Alleged malware coder from the Trickbot gang arrested.   [15’36”] 5500 passwords cracked and salaries stolen by “credential stuffing” crook.   [29’28”] We answer a listener’s question about just how tough to be when judging a company that’s had a breach.   [34’37”] Oh! No! of the week. With Kimberly Truong, Doug . . . Read more

How could the FBI recover BTC from Colonial’s ransomware payment?

by Paul Ducklin The cybersecurity buzz of the week is the intriguing – and highly unusual – aftermath of the Colonial Pipeline ransomware attack. Colonial runs the largest American supply pipeline for refined petroleum products, capable of shifting about 500 million litres of various fuels, including gasoline (petrol), jet fuel, . . . Read more

S3 Ep28.5: Hacking back – is attack an acceptable form of defence? [Podcast]

by Paul Ducklin Sophos cybersecurity expert Chester Wisniewski provides excellent, topical and timely commentary on the FBI’s recent use of a malware-like method to forcibly clean up hundreds of servers still infected in the Hafnium aftermath. With Paul Ducklin and Chester Wisniewski Intro and outro music by Edith Mudge. LISTEN . . . Read more

FBI Warns of Egregor Attacks on Businesses Worldwide

The agency said the malware has already compromised more than 150 organizations and provided insight into its ransomware-as-a-service behavior. The FBI has alerted companies in the private sector to a spate of attacks using the Egregor ransomware. The malware currently is raging a warpath across businesses worldwide and has already . . . Read more

Feds Pinpoint Russia as ‘Likely’ Culprit Behind SolarWinds Attack

The widespread compromise affecting key government agencies is ongoing, according to the U.S. government. The U.S. government has identified Russia as the “likely” culprit behind the widespread SolarWinds cyberattack that has so far affected multiple federal agencies and private-sector companies. Cyberespionage is cited as the motivation behind the attack, which . . . Read more