gang

  • Blog

    Ransomware gang says it hacked the Cobb County, GA government

    Ransomware gang Qilin yesterday claimed responsibility for a data breach at the local government of Cobb County, Georgia. Cobb County’s IT department on March 21, 2025 shut down the county’s servers for a week after detecting unauthorized users on its network. Several county services went down as a result, including courthouse filing, the jail database, and wi-fi access. A month…

    Read More »
  • Blog

    Ransomware gang says it hacked the Malaysia’s Kuala Lumpur International Airport

    Ransomware gang Qilin today claimed responsibility for a March 2025 cyber attack against the Kuala Lumpur International Airport in Malaysia. The airport has not verified Qilin’s claim. The airport announced a cyberattack disrupted flight information displays, check-in counters, and baggage handling starting on March 23, 2025, forcing staff to write departure times on dry erase boards. Airport officials say they…

    Read More »
  • Blog

    Ransomware gang Interlock claims attack on kidney dialysis company DaVita – 1.5 TB of data stolen

    Today, ransomware gang Interlock has added kidney dialysis firm DaVita to its data leak site. It alleges to have stolen 1.5 TB of data, which includes 683,104 files and 75,836 folders. On April 14, DaVita reported that it had suffered a ransomware attack on April 12, and this was “affecting and encrypting certain on-premises systems.” The attack continues to disrupt…

    Read More »
  • Blog

    Interlock ransomware gang pushes fake IT tools in ClickFix attacks

    The Interlock ransomware gang now uses ClickFix attacks that impersonate IT tools to breach corporate networks and deploy file-encrypting malware on devices. ClickFix is a social engineering tactic where victims are tricked into executing dangerous PowerShell commands on their systems to supposedly fix an error or verify themselves, resulting in the installation of malware. Though this isn’t the first time ClickFix…

    Read More »
  • Blog

    Ransomware gang says it hacked Manchester Credit Union

    Ransomware gang Sarcoma today claimed responsibility for a cyber attack against Manchester Credit Union in the UK. MCU announced technical difficulties with its inbound payment system on April 3, 2025. In response to Comparitech’s questions, MCU called the hack a “failed ransomware attack” and says no customer data appears to be compromised. While recovery efforts were underway, 21 team members…

    Read More »
  • Blog

    USClaims notifies 25K+ people of data breach claimed by ransomware gang

    US Claims Capital (USClaims) this week confirmed it notified 25,722 people of a January 2025 data breach that compromised their personal and health information. The legal financial services company says it first became aware of the breach on January 7, 2025. It has not publicly disclosed specifics on what information was compromised. The company is offering eligible victims free identity…

    Read More »
  • Blog

    Ransomware gang says it hacked the Oregon Department of Environmental Quality

    Ransomware gang Rhysida today claimed responsibility for a cyber attack last week at the the Oregon Department of Environmental Quality. The Oregon DEQ on April 9, 2025 said it was investigating a cyber attack on its enterprise information services that forced the department to shut down its email system, computer workstations, help desk, and vehicle inspection stations. Most of those…

    Read More »
  • Blog

    Ransomware gang demands $400K from Massachusetts school district

    Ransomware gang Medusa over the weekend claimed responsibility for last week’s cyber attack against Fall River Public Schools in Bristol County, Massachusetts. The school district says it’s investigating the attack that disrupted schools’ phone and testing systems, according to a pop-up alert on the the FRPS home page. It says officials have no indication that personal information was accessed, but…

    Read More »
  • Blog

    Ransomware gang says it hacked a Nebraska natural resources authority

    Ransomware gang Qilin today claimed responsibility for a November 2024 cyber attack against North Platte Natural Resources District in Nebraska. The district first announced it was hit by a cyber attack on November 27, 2024. Although it didn’t disclose what data was compromised, it does recommend victims take precautions to protect their identities and Social Security numbers from abuse. NPRND…

    Read More »
  • Blog

    Windows CLFS zero-day exploited by ransomware gang

    Microsoft says the RansomEXX ransomware gang has been exploiting a high-severity zero-day flaw in the Windows Common Log File System to gain SYSTEM privileges on victims’ systems. The vulnerability, tracked as CVE-2025-29824, was patched during this month’s Patch Tuesday and was only exploited in a limited number of attacks. CVE-2025-29824 is due to a use-after-free weakness that lets local attackers…

    Read More »
Back to top button
close