Ransomware News, Articles and Updates

Ukraine Energy Ministry suffers ransomware attack - Bitcoins demanded

Ukraine's energy and coal ministry website has been hit by a ransomware attack demanding Bitcoin to recover encrypted files according to a report from Reuters citing Ukrainian cyber police spokeswoman Yulia Kvitko.

Ransomware has generated about £3.3 million in bitcoin for its distributors

Two Italian researchers from the University of Padua have compiled an estimate of how much money, in bitcoin, has been generated by the various types of ransomware used by cyber-criminals.

Microsoft worker pleads not guilty in ransomware case

In the US a Florida man has been charged with two federal charges related to the Reveton ransomware scam that prosecutors say he helped operate prior to his hiring at Microsoft.

URL file attacks spread Quant Loader trojan

A recent spate of attacks using phishing, social engineering, exploits, and obfuscation are being used to spread a Quant Loader trojan capable of distributing ransomware and password stealers.

PUBG ransomware supplies its own decrypt key

MalwareHunterTeam has uncovered a simplistic, and almost benign, ransomware that is still under development that requires the victim to play the game PlayerUnknown's Battlegrounds in order to restore the encrypted files.

Flaw in 'Sloppy' LockCrypt ransomware enables some victims to escape

Malwarebytes researchers discovered a weakness in the LockCrypt ransomware which enabled them to recover victim's files.

Cryptomix ransomware receives face lift

The malicious actors behind Cryptomix ransomware have pushed out a new variant, with the primary change being the inclusion of a new extension and minor alterations to the contact info and ransom note.

njRAT equipped with Bitcoin wallet stealer and Lime ransomware

The njRAT, also known as Bladabindi, has been upgraded to push Lime Ransomware and a bitcoin wallet stealer.

Hackers still exploiting the human factor to carry out ransomware attacks

Nearly 70 percent of successful ransomware attacks in 2017 were the result of hackers gaining access to enterprise networks by phishing via email or social media network.

Trickbot banking malware has new trick up its sleeve

Security reserachers have discovered that the Trickbot malware has been updated with you capabilities to evade detection and lock victim's computers.

Phishing or Ransomware? Experts dispute which is biggest cyber-threat

Cyber-security executives and business decision makers question whether phishing emails or ransomware attacks are the most potent threats faced, but are businesses equipped to implement all-round risk mitigation strategies?

New ransomware Zenis will delete backup files even if victim pays

A self-proclaimed "mischievous boy" who calls himself "ZENIS" unleashed ransomware attacks that encrypt the files and then purposely deleted the backups.

Newsbite: Polish police arrest prolific ransomware cyber-criminal

A Polish national using the online name "Armaged0n" was arrested by the Polish Police, in cooperation with the Belgian Federal Police and Europol on suspicion of having used ransomware to encrypt several thousand computers.

Is your company a cyber-security 'Tough Mudder?'

There are some difficult obstacles to overcome in the cyber-security tough-mudder challenge, from ransomware and phishing to insider threats and GDPR, but thorough preparation can boost your chances of success.

SoftBank's Pepper & NAO robots highly vulnerable to ransomware attacks

More than 30,000 Pepper and NAO robots used worldwide are vulnerable to ransomware attacks through which cyber-criminals can restrict a business's access to data, impact operations and cause such robots to malfunction.

The Iranian Cyber-threat

Amid reports of Russian hackers influencing elections, Chinese hackers pilfering state secrets, and North Korea launching ransomware attacks, it would be easy to underestimate Iran's potential as a cyber-threat to the US.

Ransomware has been added to the Oxford English Dictionary -

- but rising awareness is not enough to address the cyber-threat. Robust procedures must be put in place to protect data and fulfil organisations' responsibility to customers and staff.

If ransom paid in Bitcoin Cash don't expect to get files back

A new ransomware attack called Thanatos demands payment in Bitcoin Cash, which contains a decryption bug that makes it impossible for attack victims to recover stolen files, reports security researcher Malware HunterTeam.

Widespread security inertia leaving enterprises vulnerable to hackers

Even though enterprises across the world face varied cyber-threats in the form of ransomware attacks, phishing attacks, and attacks on unsecured data stored in the cloud, alarming levels of security inertia hold them back.

Rig EK all but disappears, usage down 96 percent

The Rig exploit kit, once used almost exclusively to deliver ransomware, is now not only no longer delivering that malware but has experienced a 96 percent reduction in overall usage.

Annabelle delivers a panopoly of horror stories to deliver ransomware

All ransomware is a nightmare but Annabelle is a real horror, appearing more designed to 'show off the skills' of the developer who created it, rather than real a bid to raise ransom payments.

SC Congress 2018: How we recover once we've suffered a ransomware attack

It's become so easy for anyone to pull-off a ransomware attack even an 11 year old could do it, Raj Samani, chief scientist for McAfee told delegates at a masterclass during SC Media UK Congress 2018 last week.

Researchers find free ransomware variant being distributed on the Dark Web

Security researchers have identified a ransomware variant that is available for free on the Dark Web and is even unregistered. The discovery comes at a time when the ransomware trade is running on handsome commissions.

SC Congress 2018: What's happening on your network?

Not knowing who or what is on your network is leaving organisations vulnerable to cyber-crime including ransomware. Although there are technical issues, training and personnel is a bigger problem.

UK government publicly blames Russia for NotPetya attacks

The UK government publicly accused Russia of carrying out the June 2017 NotPetya ransomware attacks in June 2017 as part of a deliberate attack on the Ukraine state.

Cryakl ransomware keys made public

The Belgian Federal Police are making available for free the decryption keys for Cryakl ransomware and have become a partner with the No More Ransom Project.

Ransomware attack on US newspaper database exposes 19.5M voter records

The Sacramento Bee newspaper in the US deleted two databases hosted by a third party after a ransomware attack exposed the voter records of 19.5 million voters and 53,000 current and former subscribers to the newspaper.

Using DNS as part of your cyber-security strategy

DNS is inherently vulnerable. However, when correctly implemented with hardened appliances, securely managed, it can also be an organisation's best weapon in securing its networks.

Russian dark web ad for new GandCrab ransomware-as-a-service discovered

Researchers investigating the newly discovered GandCrab ransomware have learned how its authors are marketing the malicious program as a ransomware-as-a-service package to potential buyers on the dark web.

96% of organisations hit in email attacks in the second half of 2017

96 percent of organisations were targeted by Business Email Compromise (BEC) attacks in the second half of 2017, primarily because such attacks did not include malicious payloads or attachments.