ransomware Archives - Heimdal Security Blog

News | INTERMEDIATE READ

Recent Ransomware Attacks

A List of Companies Affected by Ransomware [Updated 2023]

Ransomware | INTERMEDIATE READ

Locking Out Cybercriminals: Here's How to Prevent Ransomware Attacks

13 Actionable Steps to Prevent Ransomware Attacks.

Ransomware | INTERMEDIATE READ

Locky Ransomware 101: Everything You Need to Know

How Locky Ransomware Works and How to Stay Safe from It. Detection, Decryption and Safety Tips for Locky Ransomware.

News | QUICK READ

Fake Copyright Emails Used to Deploy LockBit Ransomware

LockBit Ransomware Affiliates Are Using Social Engineering to Propagate the Malware.

News | QUICK READ

Security Breach at Flagstar Bank Affects 1.5 Million Clients

Cybercriminals Acquired Access to 1.5 Million Flagstar Bank Customers’ Personal Information.

News | QUICK READ

Chaes Banking Trojan Wreaks Havoc Online

The Malware Is Apparently Making Use of Malicious Chrome Extensions.

News | QUICK READ

QNAP Devices Targeted in Ransomware Attack

DeadBolt Ransomware Is Encrypting QNAP NAS Systems All Around the World.

News | QUICK READ

Qlocker Ransomware Is Apparently Back in Business

The Ransomware Targets QNAP NAS Devices Worldwide.

News | QUICK READ

TellYouThePass Ransomware Returns as a Cross-Platform Golang Threat

Malicious Actors Made Code Changes that Make It Easier to Build for Systems Other than Windows.

News | QUICK READ

Ransomware Attack Suffered by FinalSite Shuts Down Thousands of Websites

The Website Service Provider Has Been the Victim of an Attack that Disrupted Access to Websites for Thousands of Schools Worldwide.

News | QUICK READ

The Ransomware Attack Suffered by Kronos May Cause Weeks of Downtime

It Seems that the Threat Actors Were Able to Infiltrate Kronos’ Systems and Encrypted Servers.

News | QUICK READ

ALPHV BlackCat, a New Ransomware

The Ransomware Operation Comes with a Highly-Customizable Feature Set that Allows Attackers to Target a Wide a Large Number of Corporate Environments.

News | QUICK READ

A New Europol Report Says That High Profile Targets Were the Focus of Ransomware Groups

Hackers Targeted in the Past Year Big Companies and Government Institutions.

News | QUICK READ

Magniber Ransomware Shifts Attention Now to Internet Explorer Vulnerabilities

The Known Ransomware Group Has Changed Its focus, Exploiting Now IE Flaws.

News | QUICK READ

Clop Ransomware Exploits SolarWinds Serv-U Flaw

The Clop Ransomware Gang Is Exploiting the Vulnerability in Attacks.

News | QUICK READ

Data Breach Hits UK Labour Party

Details Belonging to Its Members Were Disclosed Following a Ransomware Attack.

News | QUICK READ

HelloKitty Ransomware Adds New Extortion Tactics

Distributed Denial-of-service (DDoS) Attacks Were Added to the Malicious Actors’ Arsenal.

News | QUICK READ

Minecraft Alt Lists Used by Chaos Ransomware

The Ransomware Gang Encrypts Gamers’ Windows Devices Using Fake Minecraft Alt Lists.

News | QUICK READ

Ransomware Dubbed Ranzy Locker Has Affected No Less Than 30 US Companies in 2021, FBI Reports

The Federal Bureau of Investigation Released a Report Illustrating the Ranzy Locker’s Effect Throughout This Year.

News | QUICK READ

$5.2 Billion Worth of Bitcoin Transactions Related to Ransomware

The Outgoing Bitcoin Transactions Have Been Found to Be Likely Linked to the Top 10 Most Commonly Reported Ransomware Reports.

News | QUICK READ

REvil Ransomware’s Tor Sites Were Hijacked

It Seems Like the Ransomware Operation Has Shut Down Again.

News | QUICK READ

Virtual Global Anti-Ransomware Event Takes Place This Week

Russia and China Were Not Invited.

News | QUICK READ

Cox Media Group Ransomware Attack Confirmed

The Attack Took Down the Live TV and Radio Broadcast Streams.

News | QUICK READ

Sandhills Shut Down by Ransomware Attack

The Website for Sandhills Global and All Their Hosted Publications Went Offline.

Cybersecurity Basics | INTERMEDIATE READ

Ransomware Explained. What It Is and How It Works

News | QUICK READ

Alleged TrickBot Developer Arrested

A Russian That Presumably Worked for the TrickBot Malware Gang Was Recently Arrested in South Korea.

News | QUICK READ

LockBit Leaked Data Belonging to Bangkok Airways

Bangkok Airways Confirmed Being a Victim of a Cyberattack that Compromised Personal Data of Passengers.

News | QUICK READ

DeepBlueMagic Ransomware Strain Discovered by Heimdal™ - New Ransomware, New Method

DeepBlueMagic, the New Ransomware on the Horizon. How the Strain Works.

News | QUICK READ

Accenture Confirms Ransomware Attack

The Threat Actors Have Allegedly Gained Databases of Over 6TB and Are Demanding A $50M Ransom.

News | QUICK READ

Conti Affiliate Leaks the Attack Playbook of the Ransomware Gang

An Unhappy Conti Affiliate Leaked the Gang’s Training Material about the Way in which They Are Conducting Attacks.

News | QUICK READ

Newly Discovered Cobalt Strike Bugs Could Allow the Takedown of Attackers’ Servers

The Vulnerabilities Allow the Blocking of the Beacon Command-and-control (C2) Communication Channels and New Deployments.

News | QUICK READ

ERG Energy Group Reports Minor Disruption Following Cyberattack

The Wind Power Giant Confirmed All Its Plants Are Operating Smoothly and Have Not Experienced Any Downtime.

News | QUICK READ

FBI Finds Over 100 Active Ransomware Variants

The Agency Warns That Ransomware Can Paralyze Organizations, and the Cost to Rebuild an Encrypted Network Can Be Catastrophic for Small and Medium-Sized Businesses and Municipalities.

News | QUICK READ

Forefront Dermatology Data Breach Affects 2.4 Million Patients

A New Cyberattack Now Targets the Forefront Dermatology S.C. Wisconsin-based Company. Patients’ Credentials Stolen and Many More.

News | QUICK READ

The HelloKitty Ransomware Linux Version Targets VMware ESXi Servers

The Ransomware Gang Uses a Linux Variant That Targets VMware’s ESXi Virtual Machine Platform.

News | QUICK READ

WSSC Water Hit with Ransomware Attack

The U.S. Water Company Is Currently Investigating A Ransomware Attack That Affected Non-Essential Business Systems in May.

News | QUICK READ

Coop Supermarket Had to Close 500 Stores Following the Kaseya Ransomware Attack

The Swedish Supermarket Chain Closed 500 Stores After Falling Victims to the Latest REvil Ransomware Attack.

News | QUICK READ

Diavol Ransomware, a New Ransomware in the Cybersecurity Landscape

A New Ransomware Strain Dubbed as Diavol Might Be Linked to Wizard Spider, the Cybercrime Group Behind the Trickbot Botnet.

News | QUICK READ

Conti Ransomware Leaks Police Citations and Forces the City of Tulsa to Issue a Data Breach Warning

Tulsa Suffered a Ransomware Attack Leading to the City Shutting Down its Network in Order to Prevent the Spread of the Malware.

News | QUICK READ

A Massive Data Breach Hit Carnival Cruise

The Largest Ship Operator Issued a Data Misuse Risk Warning.

News | QUICK READ

The Source Code of Paradise Ransomware Released on a Hacking Forum

Paradise Ransomware Is a RaaS Typically Delivered Through a Malicious Zip Attachment in Phishing Emails.

News | QUICK READ

Ransomware Attack Hits Foodservice Distributor Edward Don

The Attack Forced the Company to Shut Down Some of Its Operations to Prevent the Infection’s Spread.

News | QUICK READ

Ragnar Locker Ransomware Hits Electronics Maker ADATA

The Threat Actors Claim They Have Stolen 1.5TB Of Sensitive Data from the Company’s Network Before Deploying the Ransomware Payloads.

News | QUICK READ

Colonial Pipeline Ransomware Lures Are Used in Phishing Attacks

The Ransomware Attack on Colonial Pipeline Helped a Threat Actor to Create a New Phishing Lure Able to Trick Victims Into Downloading Malicious Files.

News | QUICK READ

New Evil Corp Ransomware Bypasses OFAC Sanctions by Mimicking PayloadBin Gang

PayloadBIN Has Been Linked to the Evil Corp Cybercrime Gang Who Uses It to Avoid Sanctions Imposed by the Treasury Department’s Office of Foreign Assets Control.

News | QUICK READ

The Largest Ferry Service from Massachusetts Was Hit by a Ransomware Attack

The Steamship Authority Was hit by a Ransomware Attack Which Led to Ticketing and Reservation Disruptions.

News | QUICK READ

Epsilon Red Ransomware Goes After Unpatched Microsoft Exchange Servers

Ransomware Threat Red Epsilon Has Been Leveraging Microsoft Exchange Server Vulnerabilities to Encrypt Machines Across the Network.

News | QUICK READ

Agrius Iranian Hacking Group Targets Israel

The Iranian hacking Group Has Been Observed Disguising Attacks Against Israeli Targets as Ransomware Attacks.

News | QUICK READ

Bose Disclosed Having a Data Breach

Bose Corporation Revealed that a Data Breach Hit the Company’s Systems in Early March.

News | QUICK READ

MountLocker Ransomware Is Now Using the Windows API

The Ransomware Operation Uses Enterprise Windows Active Directory APIs to Worm Through Networks.

News | QUICK READ

Darkside Ransomware Operations Have Shut Down After Reports of Their Servers Being Seized

Darkside Ransomware Operations Have Allegedly Been Shut Down After a Server Take Over.

News | QUICK READ

Avaddon Ransomware Hits Insurance Giant AXA

The French Insurer Revealed That One of Its Asian Subsidiaries Was Hit by A Ransomware Attack Over the Weekend, After Dropping Support for Ransom Payments.