HackDig : Dig high-quality web security articles

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

The City of Dallas revealed that the Royal ransomware gang that hit the city system in May used a stolen account. In May 2023, a ransomware attack hit the IT systems at the City of Dallas, Texas. To prevent the threat from spreading within the network, the City shut down the impacted IT systems. The City confirmed the security incident and is working
Publish At:2023-09-23 07:33 | Read:102750 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking Malware City o

Overview of IoT threats in 2023

IoT devices (routers, cameras, NAS boxes, and smart home components) multiply every year. Statista portal predicts their number will exceed 29 billion by 2030. As connected device numbers increase, so does the need for protection against various threats. The first-ever large-scale malware attacks on IoT devices were recorded back in 2008, and their number ha
Publish At:2023-09-21 07:16 | Read:106566 | Comments:0 | Tags:Publications Botnets Darknet DDoS-attacks Honeypot Internet

DoppelPaymer ransomware group suspects identified

The German police in cooperation with the US Secret Service have executed search warrants against suspected members of the DoppelPaymer ransomware group in Germany and Ukraine. In March of 2023, we reported how the German Regional Police and the Ukrainian National Police, with support from Europol, the Dutch Police, and the United States Federal Bureau of In
Publish At:2023-09-20 22:07 | Read:102600 | Comments:0 | Tags:News Ransomware ransomware

Who’s Behind the 8Base Ransomware Website?

The victim shaming website operated by the cybercriminals behind 8Base — currently one of the more active ransomware groups — was until earlier today leaking quite a bit of information that the crime group probably did not intend to be made public. The leaked data suggests that at least some of website’s code was written by a 36-year-old pr
Publish At:2023-09-19 01:35 | Read:132514 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Ransomware 8Base Ransom

Ransomware group steps up, issues statement over MGM Resorts compromise

The recent attack on MGM Resorts generated lots of speculation with regard to what the cause was. Some folks claimed the culprit was ransomware. Well, confirmation is now forthcoming as an affiliate of the BlackCat/ALPHV ransomware group is said to be the one responsible for the attack and subsequent outage. The statement is quite long, takes a few digs at M
Publish At:2023-09-18 22:07 | Read:146325 | Comments:0 | Tags:Business MGM Resorts hotel casino ransomware blackcap ALPHV

Europol lifts the lid on cybercrime tactics

The European Union Agency for Law Enforcement Cooperation (Europol), has published a report that examines developments in cyberattacks, discussing new methodologies and threats observed by Europol’s operational analysts. The report also discusses the criminal organizations behind cyberattacks and the influence of geopolitical events. The report fo
Publish At:2023-09-15 22:07 | Read:267982 | Comments:0 | Tags:News Ransomware Europol Phishing RDP VPN Exchange LOTL BEC r

Caesars Entertainment paid a ransom to avoid stolen data leaks

Caesars Entertainment announced it has paid a ransom to avoid the leak of customer data stolen in a recent intrusion. Caesars Entertainment is the world’s most geographically diversified casino-entertainment company. It is the largest gaming company in the United States, with over 50 casinos and hotels in 13 U.S. states and five countries. The comp
Publish At:2023-09-15 11:31 | Read:184480 | Comments:0 | Tags:Breaking News Cyber Crime Hacktivism Malware Caesars Enterta

Lockbit ransomware gang hit the Carthage Area Hospital and the Clayton-Hepburn Medical Center in New York

LockBit ransomware group breached two hospitals, the Carthage Area Hospital and the Clayton-Hepburn Medical Center in New York. The Lockbit ransomware group claims to have hacked two major hospitals, the Carthage Area Hospital and Claxton-Hepburn Medical Center. The two hospitals serve hundreds of thousands of people in upstate New York. The cyberatta
Publish At:2023-09-14 23:37 | Read:172114 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Cybercrime hacking

Malware distributor Storm-0324 facilitates ransomware access

The threat actor that Microsoft tracks as Storm-0324 is a financially motivated group known to gain initial access using email-based initial infection vectors and then hand off access to compromised networks to other threat actors. These handoffs frequently lead to ransomware deployment. Beginning in July 2023, Storm-0324 was observed distributing payloads u
Publish At:2023-09-14 21:29 | Read:136169 | Comments:0 | Tags: ransomware

UK Greater Manchester Police disclosed a data breach

UK Greater Manchester Police (GMP) disclosed a data breach, threat actors had access to some of its employees’ personal information. UK Greater Manchester Police (GMP) announced that threat actors had access to the personal information of some of its employees after an unnamed third-party supplier was hit with a ransomware attack. The GMP repor
Publish At:2023-09-14 15:29 | Read:128089 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Malware Security Cyber

A new ransomware family called 3AM appears in the threat landscape

3AM is a new strain of ransomware that was spotted in a single incident in which the threat actors failed to deploy the LockBit ransomware in the target infrastructure. Symantec’s Threat Hunter Team discovered a new ransomware family, which calls itself 3AM, that to date has only been deployed in a single incident in which the threat actors failed to dep
Publish At:2023-09-13 15:29 | Read:124524 | Comments:0 | Tags:Breaking News Cyber Crime Malware 3AM ransomware Cybercrime

Threat landscape for industrial automation systems. Statistics for H1 2023

Global threat statistics In the first half of 2023, the percentage of ICS computers on which malicious objects were blocked decreased from H2 2022 by just 0.3 pp to 34%. Percentage of ICS computers on which malicious objects were blocked, by half year That said, he percentage of attacked ICS computers dropped in Q1 2023, but then rose again in Q2 2023, reach
Publish At:2023-09-13 07:16 | Read:109777 | Comments:0 | Tags:Industrial threats Industrial control systems Malware Statis

Ransomware review: September 2023

This article is based on research by Marcelo Rivero, Malwarebytes' ransomware specialist, who monitors information published by ransomware gangs on their Dark Web sites. In this report, "known attacks" are those where the victim did not pay a ransom. This provides the best overall picture of ransomware activity, but the true number of attacks is far hig
Publish At:2023-09-12 22:07 | Read:122109 | Comments:0 | Tags:Threat Intelligence ransomware

The main causes of ransomware reinfection

A few months ago, we wrote about a ransomware reinfection incident. Ransomware reinfection arguably could be even worse than being a first time victim. Unfortunately it happens more often than you may think. Research shows that in 2022, more than a third (38%) of surveyed organizations fell victim to a repeat ransomware attack. This means that they
Publish At:2023-09-11 22:07 | Read:114426 | Comments:0 | Tags:News Ransomware ransomware reinfection stolen credentials vu

From Caribbean shores to your devices: analyzing Cuba ransomware

Introduction Knowledge is our best weapon in the fight against cybercrime. An understanding of how various gangs operate and what tools they use helps build competent defenses and investigate incidents. This report takes a close look at the history of the Cuba group, and their attack tactics, techniques and procedures. We hope this article will help you to s
Publish At:2023-09-11 07:16 | Read:104897 | Comments:0 | Tags:SOC TI and IR posts Backdoor Drivers Incident response Malw


Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud