Security Awareness Training Blog

Ransomware Blog

Keeping you updated on the latest ransomware attack vectors, strains, decryptors, families and trends to help you avoid becoming infected.

View Topics

Hit Them When They're Down: Two Cyberattacks Leave Operations Halted with a Ransom to Pay

Jun 29, 2020 8:26:48 AM By Stu Sjouwerman
A recent cyberattack on Australian beverage manufacturer Lion demonstrates how even a modicum of precaution after an attack can spell doom for operations.
Continue Reading

Work From Home in America Sets Major Target for Russian Hackers

Jun 26, 2020 8:55:36 AM By Stu Sjouwerman
A Russian ransomware group named "Evil Corp" who was indicted by the Justice Department in December is now targeting employees working from home during the COVID-19 pandemic and ...
Continue Reading

New Ransomware Strain CryCryptor Targets Canada on COVID-19 Tracing App

Jun 24, 2020 9:42:02 AM By Stu Sjouwerman
There is a new ransomware strain that has been targeting specifically Android users in Canada, ESET reports. CryCryptor has distributed on two websites disguised as an official COVID-19 ...
Continue Reading

[HEADS UP] Sodinokibi Ransomware Strain Learns New Trick

Jun 23, 2020 3:14:39 PM By Stu Sjouwerman
Already one of the most dangerous forms of ransomware, now Sodinokibi looks like it could also be attempting to make money from stolen payment information too.
Continue Reading

Microsoft Warns of New Java-Based “PonyFinal” Ransomware Used as Part of Human-Operated Attacks

Jun 19, 2020 4:25:29 PM By Stu Sjouwerman
Microsoft’s recent posts detailing a new Java attack that uses PowerShell and other legitimate tools to infect victims with ransomware sheds light on human-operated attacks.
Continue Reading

WARNING: The List of Ransomware-Turned-Data Breach Operators is Getting Long

Jun 19, 2020 4:21:06 PM By Stu Sjouwerman
Seeing a better opportunity to generate more “revenue” from their victims, the idea of ransomware also exfiltrating data to be used to extort the payment is gaining steam.
Continue Reading

Australian Beverage Manufacturer Shutdown IT Systems After Cyberattack

Jun 12, 2020 8:50:29 AM By Stu Sjouwerman
A cyberattack forced Australian beverage manufacturer Lion to shut down its IT system, interrupting manufacturing and orders, the company disclosed on June 9.
Continue Reading

Maze Ransomware “Cartel” Adds More Ransomware Gangs to its Data Leak Platform

Jun 10, 2020 8:27:16 AM By Stu Sjouwerman
It’s one thing if you’re up against one ransomware cybercriminal group. But what happens when they start acting like the good guys and joining forces?
Continue Reading

The Enduring Threat of Ransomware During COVID-19

Jun 9, 2020 8:53:41 AM By Stu Sjouwerman
Ransomware attacks continue to blight organizations of all sizes and sectors. The number of incidents involving ransomware reported to Beazley Breach Response (BBR) Services in the first ...
Continue Reading

Prediction: Ransomware Attacks to Spike as Employees Return to the Office

Jun 5, 2020 7:00:00 AM By Stu Sjouwerman
Because of the nature of ransomware attacks and the mass numbers of workers at home, anti-malware vendor Emisoft believes we’re going to see a rise once work returns to normal.
Continue Reading

[BEWARE] New Report on Doxxing Exposes Cybercriminal Trends

Jun 4, 2020 12:13:51 PM By Stu Sjouwerman
A new threat intelligence report on doxxing, researched by cybersecurity experts at Kivu, reveals that the majority of attacks occur in the U.S., with companies in the consumer sector ...
Continue Reading

[HEADS UP] More Australian Companies Hit By Mespinoza/Pysa Ransomware

Jun 4, 2020 12:05:13 PM By Stu Sjouwerman
Two more Australian companies have been hit by attackers using the Mespinoza/Pysa Windows ransomware, the same malware that was used to take down the Australian money management firm ...
Continue Reading

Ransomware Gangs Team Up To Form Extortion Cartel

Jun 3, 2020 9:25:20 AM By Stu Sjouwerman
Today, BleepingComputer was told by cyber intelligence firm KeLa that the Maze operators added the information and files for an international architectural firm to their data leak site.
Continue Reading

[Heads Up] The REvil Ransomware Gang Is Now *Auctioning Off* Their Victim Data

Jun 2, 2020 4:39:34 PM By Stu Sjouwerman
Intrepid investigative Reporter Brian Krebs had the news first. "The criminal group behind the REvil ransomware enterprise has begun auctioning off sensitive data stolen from companies ...
Continue Reading

How Low Will Cybercriminals Go?

Jun 2, 2020 8:58:04 AM By Javvad Malik
Surely Bond villains only exist in movies -- I mean people aren’t truly evil are they? Especially ones who sit behind a computer. This was part of a discussion I was having with my ...
Continue Reading

The Latest Ransomware Attacks Can Require a Data Breach Notification

Jun 2, 2020 8:46:46 AM By Stu Sjouwerman
Ransomware variants shifting tactics to include extortion may be cause for organizations to treat them as data breaches and, therefore, quickly notify affected parties.
Continue Reading

Netwalker Ransomware Adopts an Affiliate Model to Help Increase Attacks and Profits

May 30, 2020 8:08:43 AM By Stu Sjouwerman
The ransomware formerly known as Mailto has taken a page from traditional software vendors and rebranded itself with a new affiliate-based go-to-market strategy.
Continue Reading

[Heads Up] Ransomware Damage Skyrockets As Ransoms Grew 14 Times In Just 12 Months

May 27, 2020 11:25:48 AM By Stu Sjouwerman
Last year was highly profitable for ransomware actors but with the prices we've seen recently, 2020 is likely to surpass it as actors continue to target large companies in key industries. ...
Continue Reading

Your Next Ransomware Attack May Require Two Payments!

May 20, 2020 4:34:25 PM By Stu Sjouwerman
In a case of adding insult to injury, a new strain of ransomware is looking for one payment to decrypt, and a second payment to not publish stolen files.
Continue Reading

Paying the Ransom Doubles the Cost of a Ransomware Attack

May 14, 2020 8:20:38 AM By Stu Sjouwerman
The total cost of the average ransomware attack more than doubles if the victim decides to pay the ransom, according to Sophos’s State of Ransomware 2020 report. The Sophos-commissioned ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Has Gone Nuclear Webinar

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews