The SonicWall Capture Labs threat research team recently observed a new variant of StopCrypt ransomware. The ransomware executes its malicious activities by utilizing multi-stage shellcodes before launching a final payload that contains the file encryption code. StopCrypt, also known as STOP Djvu, is a widely spread ransomware, as reported by …
Read More »
Ransomware attacks increased in several important sectors in February 2024 despite a slow start to the year. In February, ransomware gangs increased the number of victims posted on their extortion sites. There were 310 victims, compared to 242 in the previous month and 229 in February 2023. In February, attacks …
Read More »
Ransomware gangs began 2024 slowly, with fewer attacks in various important sectors in January. Ransomware gangs posted fewer victims in January compared to the previous month, with a total of 242 victims. This is the lowest number of victims since February 2023. Attacks on healthcare providers, state and local governments, …
Read More »
The Australian, US, and UK governments announced sanctions against Aleksandr Gennadievich Ermakov, a Russian national connected to the 2022 Medibank hack and the REvil ransomware group. According to a report by Intel471, Ermakov was very involved in cybercrime, working as a ransomware operator and affiliate. It is also thought that …
Read More »
Cisco Talos has confirmed the creation of a new decryptor key for victims of the Babuk Tortilla ransomware variant. The keys will be added to a generic Babuk decryptor created by Avast Threat Labs. This will allow users to download a single decryptor containing all current Babuk keys. Targeting Babuk …
Read More »
Security researchers found a hack that lets cybercriminals access people’s Google accounts without needing their passwords. CloudSEK, a security firm, has discovered a highly perilous type of malware that illicitly obtains individuals’ sensitive data by exploiting third-party cookies. Disturbingly, this malicious software has already caught the attention of hacking groups, …
Read More »
Ransomware groups made a strong comeback in November, with the highest number of recorded victims ever, according to Corvus Insurance. Corvus Threat Intel reported that there were 484 new ransomware victims posted on leak sites in November 2023. This represents a 39.08% increase from October and a 110.43% increase compared …
Read More »
The FBI and European security organizations working under Europol have seized ALPHV’s website also known as Blackcat. ALPHV ransomware has infected over 1,000 victims worldwide. Cybercrime has a popular model called ransomware-as-a-service. This model involves a group of developers who create and update ransomware. They also maintain the necessary internet …
Read More »
In Malaysia, the cybersecurity situation is changing as organizations deal with an increase in cyber threats. A recent survey by IDC shows that phishing is the main concern, with 54% of organizations ranking it as the biggest threat. The top five risks in Malaysia are ransomware, unpatched vulnerabilities, identity theft, …
Read More »
A recent survey found that mid-sized Canadian companies paid an average of just over $1 million in ransomware payments this year. On Thursday, the results of a survey conducted by Palo Alto Networks were released. The survey involved IT professionals from 1,000 organizations with employee numbers ranging from 100 to …
Read More »
InfoSecBulletin Cybersecurity for mankind
