An examination of the malware gang’s payments reveals insights into its economic operations. The Ryuk ransomware has earned its operators an estimated $150 million, according to an examination of the malware’s money-laundering operations. Joint research released this week from Brian Carter, principal researcher at HYAS, and Vitali Kremez, CEO at . . . Read more
The relentless rise in COVID-19 cases is battering already frayed healthcare systems — and ransomware criminals are using the opportunity to strike.
In the past few months researchers have detected hundreds of attempted SystemBC deployments globally, as part of recent Ryuk and Egregor ransomware attacks.
Threatpost breaks down the scariest stories of the week ended Oct. 30 haunting the security industry — including bugs that just won’t die. This Halloween week, Threatpost editors discuss the spookiest security stories, including: Listen to the full podcast below or download here. For more Threatpost podcast episodes – including . . . Read more
by Paul Ducklin You’ve probably heard or seen the news that the US CISA issued an alert this week with the unassuming identifier AA20-302A. CISA is short for Cybersecurity and Infrastructure Security Agency, and the AA20-302A report was a joint alert from CISA, the FBI and the HHS (US Department . . . Read more
Amid an uptick in attacks on healthcare orgs, malware families, Kegtap, Singlemalt and Winekey are being used to deliver the Ryuk ransomware to already strained systems.
by Paul Ducklin If you’ve followed the inglorious history of malware in recent years, you’ll almost certainly have heard the name Emotet. That’s a long-lived and extensive family of malware that we’ve had the unfortunate necessity to warn you about on many occasions, Emotet is what’s known as a bot . . . Read more
Hospitals in New York and Oregon were targeted on Tuesday by threat actors who crippled systems and forced ambulances with sick patients to be rerouted, in some cases. Two more hospitals were hit with ransomware attacks this week as a growing number of criminals target healthcare facilities during the COVID-19 . . . Read more
Sopra Steria hit with cyber attack that reportedly encrypted parts of their network on Oct. 20 but has remained mostly mum on details. French IT giant Sopra Steria was hit with a cyber attack this week that disrupted the business of the firm and is widely believed to be the . . . Read more