Ransomware
-
Blog
River Delta Unified School District data breach: ransomware gang claims responsibility
River Delta Unified School District this week sent data breach notices to victims of a cyber attack that took place in December 2023. Ransomware group Meow claimed responsibility for the attack in February 2024. River Delta has not confirmed Meow attacked it. Meow added River Delta to its leak site. River Delta has not publicly disclosed the number of people…
Read More » -
Blog
Medusa ransomware gang claims responsibility for cyber attack on Providence, RI schools
Ransomware group Medusa yesterday claimed responsibility for a cyber attack on Providence, Rhode Island public schools that began last week. Medusa is demanding $1 million in ransom and says it stole 201 GB of data. Providence Public Schools on Wednesday began notifying staff and students that it was experiencing technical difficulties and shut down internet access on campus. Teachers and…
Read More » -
Blog
David’s Bridal notifies staff and customers of data breach following two ransomware attacks
David’s Bridal over the weekend confirmed it notified 4,132 Texans of a data breach that compromised customers’ and employees’ names, Social Security numbers, medical information, health insurance information, addresses, and driver’s license numbers, according to the state Attorney General. Two ransomware gangs claimed responsibility for breaches at David’s Bridal: LockBit in January 2024 and Werewolves in February 2024. It’s possible…
Read More » -
Blog
Ransomware gang BlackSuit claims attack on Charles Darwin School – student data stolen
Overnight, ransomware gang BlackSuit claimed the recent attack on London’s Charles Darwin School. It alleges to have stolen over 200GB of data which includes information on students and employees, as well as financial data. It has given the school until the end of today to pay up before the data is released. On September 6, the school’s headteacher, Aston Smith,…
Read More » -
Blog
Hunters ransomware gang says it hacked ICBC London, stole 5M+ files
Ransomware group Hunters International today claimed it successfully breached ICBC London and stole 6.6 TB of data, or 5.2 million files. ICBC has not confirmed Hunters’ claim, which was posted on the gang’s leak site. . We do not yet know how much ransom Hunters demanded, whether ICBC will pay it, if the data contained customers’ personal data, or how…
Read More » -
Blog
Riverside Resort Hotel and Casino hit by ransomware attack, guest SSNs compromised
Don Laughlin’s Riverside Resort Hotel and Casino in Nevada yesterday confirmed it notified an undisclosed number of people about a July 2024 data breach that compromised names and Social Security numbers, among other data. Ransomware group Lynx claimed responsibility for the attack on its leak site. Although the full figure hasn’t been disclosed, government breach reporting sites say 1,359 Texas…
Read More » -
Blog
Ransomware gang claims it breached Canada’s Park’N Fly airport shuttle service, 1 million records compromised
Ransomware group Ransomhub today claimed responsibility for a data breach at Park’N Fly, the parking and shuttle service for several Canadian airports. Park’N Fly on August 27, 2024 notified customers of a July data breach that compromised 1 million customers’ contact information, Aeroplan, and CAA number. The company says no financial or payment card information was accessed by attackers. The…
Read More » -
Blog
VMware ESXi Servers Targeted by New Ransomware Variant
A new double-extortion ransomware variant targets VMware ESXi servers, security researchers have found. The group behind it, named Cicada3301, has been promoting its ransomware-as-a-service operation since June. Once an attacker has initial access to a corporate network, they can copy and encrypt its private data using the Cicada3301 ransomware. They can then withhold the decryption key and threaten to expose…
Read More » -
Blog
Linux version of new Cicada ransomware targets VMware ESXi servers
Image: Midjourney A new ransomware-as-a-service (RaaS) operation is impersonating the legitimate Cicada 3301 organization and has already listed 19 victims on its extortion portal, as it quickly attacked companies worldwide. The new cybercrime operation is named after and uses the same logo as the mysterious 2012-2014 online/real-world game named Cicada 3301 that involved elaborate cryptographic puzzles. However, there’s no connection between…
Read More » -
Blog
Researcher sued for sharing data stolen by ransomware with media
The City of Columbus, Ohio, has filed a lawsuit against security researcher David Leroy Ross, aka Connor Goodwolf, accusing him of illegally downloading and disseminating data stolen from the City’s IT network and leaked by the Rhysida ransomware gang. Columbus, the capital and most populous (2,140,000) city in Ohio, suffered a ransomware attack on July 18, 2024, which caused various…
Read More »