Collaborate Disseminate
February 27, 2024: SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomwar… Continue reading CISA Alert CodeAA23-353A: ALPHV BlackCat
Only five days after an international law enforcement effort seized LockBit’s leak sites, 34 servers, and 14,400 rogue email accounts used to support infrastructure and extortion, LockBit3.0 has reappeared with a new Tor site that looks like the … Continue reading As expected, LockBit is back already
From today’s update to the LockBit3.0 blog, now under the control of law enforcement, we read claims that law enforcement knows who and where LockBitSupp is, and that he drives a Mercedes and not a Lamborghini. Now that last bit may be enough to … Continue reading True or false, Friday law enforcement edition
Ever since ransomware attacks and “double extortion” attacks became common, law enforcement has urged victims not to pay ransom demands. Paying criminals ransom only encourages them to attack more victims, and despite criminals swearing the… Continue reading If you pay ransom, you may not get your data back and worse, you probably WILL get hit again – Cybereason Survey
Early yesterday, Change Healthcare reported that they were experiencing enterprise-wide connectivity issues. They didn’t call it a cyberattack at that point, but by mid-day, their status reports were indicating that they were experiencing “… Continue reading Change Healthcare responding to cyberattack; few details known at this point
As part of its roll-out of news about the LockBit disruption, the governments involved have provided additional information and resources. One of the resources is an article by Secureworks. The summary of their article: Summary The GOLD MYSTIC threat g… Continue reading Unpicking LockBit — 22 Cases of Affiliate Tradecraft
HHS OCR has announced a second enforcement settlement in a ransomware case. The 2019 breach involving Green Ridge Behavioral Health managed to fly mostly under the media radar at the time. DataBreaches was not even aware that it was a ransomware attack… Continue reading HHS’ Office for Civil Rights Settles Second Ever Ransomware Cyber-Attack for $40,000 and a Corrective Action Plan with OCR Monitoring
LockBitSupp, the top honcho at LockBit, always complained that there was no reward for him. He even offered a reward for anyone who could identify him. He should be so pleased by this latest announcement from the Department of State: The Department of … Continue reading Reward Offers for Information on LockBit Leaders and Designating Affiliates
As reported yesterday, law enforcement seized control of LockBit’s leak site and infrastructure. Attempts to view their leak site today show that the seizure notice has been replaced with a page that links to different information on LockBit̵… Continue reading Updating: In “Chronos,” law enforcement took down 34 Lockbit servers
Connor Jones reports: A Ukrainian cybercrime kingpin who ran some of the most pervasive malware operations faces 40 years in prison after spending nearly a decade on the FBI’s Cyber Most Wanted List. Vyacheslav Igorevich Penchukov, 37, pleaded gu… Continue reading Zeus, IcedID malware kingpin faces 40 years in slammer