Displaying items by tag: Ragnar Locker

Australia experienced two industrial ransomware attacks in the third quarter of the year, the industrial security firm Dragos says in an analysis of such attacks that occurred globally.

GUEST OPINION: Cybercrime flourished in 2021, and there are no signs of a slowdown in 2022. There are several factors behind this high-confidence prediction.

A ransomware gang has warned victims that any data that has been exfiltrated from their networks during attacks would be destroyed were they to contact companies to negotiate ransom payments.

A cybersecurity researcher persuaded Ragnar Locker ransomware operators into thinking they were a cybercriminal and to offer a job. The researcher has released information on the gang’s payout structure, cash-out schemes, and target acquisition strategies providing a look behind the scenes into the real business of shadowy underground criminal syndicates - and the millions of dollars it brings in.

Dassault Falcon Jet, a US subsidiary of the 91-year-old French aviation firm Dassault Aviation, has taken a hit from a gang of cyber criminals using the Windows Ragnar Locker ransomware.

Premier aircraft leasing asset manager SKY Leasing has been hit by a gang of cyber criminals using the Windows Avaddon ransomware and the attackers have leaked 20 files of the company's data on the dark web.

Ransomware has changed from being just about encrypting a victim's data and become primarily about data exfiltration, the Russian security firm Kaspersky says.

The cyber criminals behind the ransomware attack on Italian liqueur manufacturer Campari Group have taken their efforts to publicise the intrusion in a different direction, infiltrating the Facebook page of an entertainment event organiser and posting an ad and news about the attack there.

Two companies involved in research connected with vaccines for the coronavirus and both based in India have been hit by ransomware.

Italian liqueur manufacturer Campari Group and Japanese game maker Capcom have both been hit by cyber criminals using the Ragnar Locker ransomware that affects only Windows systems.

The French transport and logistics firm CMA CGM Group has been hit by a cyber attack which it says is affecting its peripheral servers.

The ransomware used in an attack on Duesseldorf University Clinic last week, which led to the death of a woman, appears to be Maze, security sources have told iTWire.

The actors behind the various Windows ransomware packages changed their tactics to prise money out of their victims' hands in October last year, but it remains to be seen whether their use of social pressure will be more profitable than methods used earlier, a researcher from global security firm Sophos has observed.

The tactics employed by cyber criminals who deploy Windows ransomware on systems for monetary gain have changed over the last 10 months in order to evade detection by endpoint security that has improved markedly, a researcher from the global security firm Sophos claims.

A big US travel management company CWT was hit by ransomware and agreed to pay a ransom to the cyber criminals behind the attack.

Ransomware groups appear to be co-operating with each other to leak data, security sources have told iTWire, with two recent incidents highlighting what could well be a further headache in a growing problem.

Security firm Sophos says it has found Windows ransomware using a virtual machine on a victim's machine to attack that same machine, with a 49kb ransomware executable generated from an attack payload of 122MB with a 282MB virtual image inside.