Category Archives: SamSam

U.S. Charges Two Iranians for SamSam Ransomware Attacks

Posted on by

The U.S. Department of Justice has charged two Iranian men for creating and distributing a ransomware program called SamSam that caused massive disruptions in hospitals, municipalities and public institutions over the past few years. SamSam appeared i… Continue reading U.S. Charges Two Iranians for SamSam Ransomware Attacks

US charges Iranian hackers for SamSam ransomware attacks

Posted on by

Authorities in the United States have charged two people in connection with a series of notorious ransomware attacks.
The post US charges Iranian hackers for SamSam ransomware attacks appeared first on The State of Security.
The post US charges Iranian… Continue reading US charges Iranian hackers for SamSam ransomware attacks

U.S. indicts two over SamSam ransomware attacks that hit Atlanta, other cities

Posted on by

The Department of Justice unsealed indictments Wednesday against two Iranian men for conducting ransomware attacks against more than 200 organizations inside the United States, including municipalities, government agencies and hospitals. Prosecutors say that Faramarz Shahi Savandi, 34, and Mohammad Mehdi Shah Mansouri, 27, used SamSam ransomware to lock the victims’ systems and demand bitcoin in order to decrypt their data. Savandi and Masouri racked up more than $6 million in ransom payments and caused more than $30 million in damages, according to the indictment issued by a grand jury in New Jersey. SamSam’s damage has been a public ordeal. The indictment includes notable cases like the attacks on the city of Atlanta, the city of Newark, the Port of San Diego, the Colorado Department of Transportation, and others. Six of the victims were health care-related organizations, prosecutors said. “Many of the victims were public agencies with missions that involve saving lives and performing other critical […]

The post U.S. indicts two over SamSam ransomware attacks that hit Atlanta, other cities appeared first on Cyberscoop.

Continue reading U.S. indicts two over SamSam ransomware attacks that hit Atlanta, other cities

SamSam ransomware group has hit 67 organizations in 2018, researchers say

Posted on by

The group behind the disruptive SamSam ransomware has attacked 67 different organizations in 2018, nearly a quarter of which were health care organizations, new research shows. SamSam, which is deployed in a more targeted way than other ransomware, hobbled Atlanta’s municipal agencies in March, and it was reportedly the malware that struck medical-testing giant LabCorp in July. On Tuesday, cybersecurity company Symantec released data showing that of the 67 organizations targeted by the SamSam group in the last 10 months, more than 80 percent are based in the United States. “SamSam continues to pose a grave threat to organizations in the U.S.,” a Symantec blog post states. “The group is skilled and resourceful, capable of using tactics and tools more commonly seen in espionage attacks.” It is unclear why the group has its sights on the health care sector, Symantec said. “The attackers may believe that health care organizations are easier to infect. […]

The post SamSam ransomware group has hit 67 organizations in 2018, researchers say appeared first on Cyberscoop.

Continue reading SamSam ransomware group has hit 67 organizations in 2018, researchers say