Ransomware News, Articles and Updates

SC Congress 2018: How we recover once we've suffered a ransomware attack

It's become so easy for anyone to pull-off a ransomware attack even an 11 year old could do it, Raj Samani, chief scientist for McAfee told delegates at a masterclass during SC Media UK Congress 2018 last week.

Researchers find free ransomware variant being distributed on the Dark Web

Security researchers have identified a ransomware variant that is available for free on the Dark Web and is even unregistered. The discovery comes at a time when the ransomware trade is running on handsome commissions.

SC Congress 2018: What's happening on your network?

Not knowing who or what is on your network is leaving organisations vulnerable to cyber-crime including ransomware. Although there are technical issues, training and personnel is a bigger problem.

UK government publicly blames Russia for NotPetya attacks

The UK government publicly accused Russia of carrying out the June 2017 NotPetya ransomware attacks in June 2017 as part of a deliberate attack on the Ukraine state.

Cryakl ransomware keys made public

The Belgian Federal Police are making available for free the decryption keys for Cryakl ransomware and have become a partner with the No More Ransom Project.

Ransomware attack on US newspaper database exposes 19.5M voter records

The Sacramento Bee newspaper in the US deleted two databases hosted by a third party after a ransomware attack exposed the voter records of 19.5 million voters and 53,000 current and former subscribers to the newspaper.

Using DNS as part of your cyber-security strategy

DNS is inherently vulnerable. However, when correctly implemented with hardened appliances, securely managed, it can also be an organisation's best weapon in securing its networks.

Russian dark web ad for new GandCrab ransomware-as-a-service discovered

Researchers investigating the newly discovered GandCrab ransomware have learned how its authors are marketing the malicious program as a ransomware-as-a-service package to potential buyers on the dark web.

96% of organisations hit in email attacks in the second half of 2017

96 percent of organisations were targeted by Business Email Compromise (BEC) attacks in the second half of 2017, primarily because such attacks did not include malicious payloads or attachments.

Scarabey ransomware introduces new tactics, distribution

The malicious actors behind Scarab ransomware have rolled out a new variant, one that uses a different distribution method and ransom threat in order to infect computers and ensure payment.

GandCrab blends old and new threat resources as ransomware evolves

A ransomware threat called GandCrab emerged during the last week of January, which itself not that newsworthy. However, it's distribution method and ransom currency choice could be pointers to how 2018 ransomware will evolve.

Cryptominers and malspam up while zero days and ransomware decline

Malicious actors kept busy late last year adding new weapons to their arsenal while placing others on the backburner as they attempted to profit from new honey pots like cryptocurrency mining and boosting the amount of old favourites.

Grey's Anatomy resolves hospital hacker plot, security experts analyse plot

Previously on Grey's Anatomy... Grey Sloan Memorial Hospital's network was taken over by a hacker who demanded millions in Bitcoin, in what was essentially a ransomware attack.

More than half of ransomware victims hit at least twice

Most ransomware victims hit more than once, and don't have defences. Industry adopting AI that deploys deep learning neural network machine learning is predictive by looking for and identifying the techniques scammers use.

Baby boomers more cyber-security savvy than Gen-Z, study

Generation Z are the least ransomware savvy generation while baby boomers were more likely to accurately define ransomware and were the savviest when it comes to not forwarding emails from unknown senders.

Researchers trace BitPaymer ransomware back to Dridex developers

A relatively new ransomware that infected Scottish hospitals last summer appears to be created by the same developers who are responsible for the dreaded Dridex banking trojan.

NotPetya attack totally destroyed Maersk's computer network: chairman

Shipping giant and NotPetya victim Maersk was forced to replace tens of thousands of servers and computers in the aftermath of the 17 June ransomware attack, the company's charman said in Davos at the World Economic Forum.

Spyware replaced ransomware as hackers' weapon of choice in 2017

While ransomware attacks on consumers and businesses slowed down towards the fag end of 2017, they were replaced by spyware campaigns which rose by over 800 percent year-on-year.

Allscript still recovering from SamSam ransomware attack

A new variant of SamSam ransomware was observed targeting multiple industries including government, healthcare and Industrial Control Systems in a series of attacks that don't appear to be highly targeted but more opportunistic.

Cyber-attack shuts down US Regional Hospital's online system

A cyber-attack that left computer screens at Hancock Regional Hospital in Greenfield, Indiana, USA, with a ransom message for bitcoin has caused the entire network at the hospital to go offline to stop damage to data of the patients.

What does the future hold for cyber-crime?

With more devices able to connect directly to the web, the IOT s continuously expanding. However, cans of worms are waiting to be opened, including data loss, data manipulation and unauthorised access to devices.

Latest Cryptomix variant released

Just days after the creators of the Cryptomix ransomware came out with a new variant, another was issued that again changed the extension on the encrypted files.

Why are cyber-criminals dumping Bitcoin?

Cyber-crime players are not stupid, which is probably why they are dumping Bitcoin and going with the smart(er) money...

Cyber-criminals favoured non-malware attacks in 2017: Report

Non-malware-based cyber-attacks were behind the majority of cyber-incidents reported in 2017, despite proliferation of malware available to both the professional and amateur hacker.

Necurs botnet launches massive 47 million emails per day campaign

The Necurs botnet continued to launch massive global ransomware attacks through the holidays with researchers stopping as many as 47 million emails per day.

CryptoMix ransomware variant carries new .tastylock extension

Cyber-criminals have given CryptoMix ransomware a few minor twists, including adding a new extension name to the encrypted files.

Third of UK cyber-security execs expect to be hacked: report

Ransomware, phishing attacks and data loss are the three biggest issues that concern UK cyber-security executives.

Email scam using Xero invoice as bait detected

A large email scam centered on a fake Xero invoice was detected by the firm Mailguard, the second such campaign using the popular cloud-based accounting software this month.

The data breach of tomorrow: what to expect in the year ahead

Companies have for years relied on the detection/response model - utilising technologies like anti-virus, sandboxes, and even EDR - to protect themselves but a change in emphasis from detection to prevention is predicted.

Predictions A - Z for 2018 - Dystopian or Utopian dawn?

Happy New Year! SC Media UK resumes news reporting on 2 Jan 2018. During the break, catch up on our experts' predictions for a range of positive and negative futures, from the impacts of AI to likely new Zero days.