Search cyberveille.decio.ch

Found 27 bookmarks

Custom sorting

DrayTek Routers Exploited in Massive Ransomware Campaign - Forescout

Our 2024 Dray:Break report revealed 14 new vulnerabilities in DrayTek devices See our upcoming presentation at Black Hat Europe for more details PRODAFT shared threat intelligence from 2023 on a ransomware campaign exploiting DrayTek devices This is the first time this campaign is discussed publicly Our analysis shows sophisticated attack workflows to deploy ransomware including possible: Zero-day vulnerabilities Credential harvesting and password cracking VPN and tunneling abuse

#forescout #en #2024 #draytek #ALPHV #ransomware

·forescout.com·Dec 16, 2024

DrayTek Routers Exploited in Massive Ransomware Campaign - Forescout

Timeline and Details of the Change Healthcare Breach

Discover how this healthcare breach unfolds and learn crucial defense strategies. Dive into our expert analysis for actionable insights.

#secjuice #EN #timeline #Change #Healthcare #Breach #ALPHV

·secjuice.com·Jun 24, 2024

Timeline and Details of the Change Healthcare Breach

IcedID Brings ScreenConnect and CSharp Streamer to ALPHV Ransomware Deployment – The DFIR Report

Key Takeaways In October 2023, we observed an intrusion that began with a spam campaign, distributing a forked IcedID loader. The threat actor used Impacket’s wmiexec and RDP to install Scree…

#thedfirreport #EN #2024 #analysis #IceID #ScreenConnect #incident #ALPHV #Ransomware

·thedfirreport.com·Jun 11, 2024

IcedID Brings ScreenConnect and CSharp Streamer to ALPHV Ransomware Deployment – The DFIR Report

US offers $10 million bounty for info on 'Blackcat' hackers who hit UnitedHealth

The U.S. State Department on Wednesday offered up to $10 million for information on the "Blackcat" ransomware gang who hit the UnitedHealth Group's tech unit and snarled insurance payments across America. "The ALPHV Blackcat ransomware-as-a-service group compromised computer networks of critical infrastructure sectors in the United States and worldwide," the department said in a statement announcing the reward offer.

#reuters #EN #2024 #US #bounty #ALPHV #Blackcat

·reuters.com·Mar 28, 2024

US offers $10 million bounty for info on 'Blackcat' hackers who hit UnitedHealth

Blackcat ransomware site reportedly seized but UK agency denies responsibility

website used by hackers responsible for a breach at UnitedHealth Group (UNH.N), opens new tab has been replaced by a notice saying it has been seized by international law enforcement. But at least one of the agencies allegedly responsible said it had nothing to do with the seizure, raising the possibility that the hackers - who also go by the moniker ALPHV - faked their own takedown. A message posted to the website of the Blackcat hacking gang on Tuesday said it had been impounded "as part of a coordinated law enforcement action" by U.S. authorities and other law enforcement agencies. Among the logos of non-American agencies involved were those of Europol and Britain's National Crime Agency.

#reuters #EN #2024 #AlphV #UnitedHealth-Group #BlackCat #ransomware #UK #denies

·reuters.com·Mar 5, 2024

Blackcat ransomware site reportedly seized but UK agency denies responsibility

Developing: AlphV allegedly scammed Change Healthcare and its own affiliate (1)

Developing: Someone claiming to be an “affiliate plus” for AlphV claims they were responsible for the Change Healthcare attack but that AlphV stole the payment Change Healthcare had made and suspended the affiliate’s account. The affiliate’s claims appeared on Ramp Forum and have been circulating since then. The post can be seen below, via @vx-underground:

#databreaches.net #EN #2024 #AlphV #affiliate #scam #Change #Healthcare

·databreaches.net·Mar 5, 2024

Developing: AlphV allegedly scammed Change Healthcare and its own affiliate (1)

BlackCat ransomware shuts down in exit scam, blames the "feds"

The BlackCat ransomware gang is pulling an exit scam, trying to shut down and run off with affiliates' money by pretending the FBI seized their site and infrastructure.

#bleepingcomputer #EN #2024 #ALPHV #BlackCat #Exit-Scam #Ransomware

·bleepingcomputer.com·Mar 5, 2024

BlackCat ransomware shuts down in exit scam, blames the "feds"

BlackCat ransomware turns off servers amid claim they stole $22 million ransom

The ALPHV/BlackCat ransomware gang has shut down its servers amid claims that they scammed the affiliate responsible for the attack on Optum, the operator of the Change Healthcare platform, of $22 million.

#bleepingcomputer #EN #2024 #ALPHV #BlackCat #Healthcare #Optum #Ransomware #UnitedHealth-Group

·bleepingcomputer.com·Mar 4, 2024

BlackCat ransomware turns off servers amid claim they stole $22 million ransom

Hackers Behind the Change Healthcare Ransomware Attack Just Received a $22 Million Payment

The transaction, visible on Bitcoin's blockchain, suggests the victim of one of the worst ransomware attacks in years may have paid a very large ransom.

#wired #EN #2024 #ransomware #bitcoin #blockchain #crime #healthcare #ALPHV #Alphv-BlackCat

·wired.com·Mar 4, 2024

Hackers Behind the Change Healthcare Ransomware Attack Just Received a $22 Million Payment

ALPHV/BlackCat hits healthcare after retaliation threat, FBI says

The gang claimed responsibility for a high-profile attack against Change Healthcare Wednesday.

#scmagazine #EN #2024 #CISA #ALPHV #BlackCat #FBI #Healthcare

·scmagazine.com·Mar 4, 2024

ALPHV/BlackCat hits healthcare after retaliation threat, FBI says

US prescription market hamstrung for 9 days (so far) by ransomware attack | Ars Technica

Patients having trouble getting lifesaving meds have the AlphV crime group to thank.

#arstechnica #EN #2024 #AlphV #ransomware #US #prescription #Healthcare

·arstechnica.com·Mar 3, 2024

US prescription market hamstrung for 9 days (so far) by ransomware attack | Ars Technica

New RustDoor macOS malware impersonates Visual Studio update

A new Rust-based macOS malware spreading as a Visual Studio update to provide backdoor access to compromised systems uses infrastructure linked to the infamous ALPHV/BlackCat ransomware gang.

#bleepingcomputer #EN #2024 #ALPHV #Backdoor #BlackCat #Data-Exfiltration #macOS #Malware #Ransomware

·bleepingcomputer.com·Feb 9, 2024

New RustDoor macOS malware impersonates Visual Studio update

ALPHV Ransomware Claims Cyberattack on US Firm Ultra Intelligence and Communications

Russian-speaking BlackCat/ALPHV ransomware group has claimed to have carried out a cyberattack on Ultra Intelligence and Communications, a US-based company

#thecyberexpress #EN #2023 #ALPHV #US #Ultra-Intelligence-&-Communications

·thecyberexpress.com·Jan 7, 2024

ALPHV Ransomware Claims Cyberattack on US Firm Ultra Intelligence and Communications

Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant | United States Department of Justice

The Justice Department announced today a disruption campaign against the Blackcat ransomware group — also known as ALPHV or Noberus — that has targeted the computer networks of more than 1,000 victims and caused harm around the world since its inception, including networks that support U.S. critical infrastructure.

#justice.gov #EN #2023 #ALPHV #Blackcat #ransomware #group #Disrupts #announce

·justice.gov·Dec 19, 2023

Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant | United States Department of Justice

Authorities claim seizure of notorious ALPHV ransomware gang's dark web leak site | TechCrunch

The FBI says it has released a decryption tool allowing hundreds of ALPHV/BlackCat victims to restore their scrambled files.

#techcrunch #EN #2023 #ALPHV #BlackCat #cyberattack #cybersecurity #law-enforcement #ransomware #seizure

·techcrunch.com·Dec 19, 2023

Authorities claim seizure of notorious ALPHV ransomware gang's dark web leak site | TechCrunch

AlphV’s bid to report its victim to the SEC could backfire

The ransomware group AlphV reported a victim to the SEC for failing to report a cybersecurity incident, placing government regulators in a precarious position.

#synack.com #EN #AlphV #SEC #report #strategy

·readme.synack.com·Dec 13, 2023

AlphV’s bid to report its victim to the SEC could backfire

SIM Swappers Are Working Directly with Ransomware Gangs Now

Hackers connected to “the Comm,” a nebulous group that includes SIM swappers, are working with ALPHV, a ransomware group that has impacted some of the biggest companies on the planet, including MGM Casinos.

#404media #EN #2023 #ALPHV #the-Comm #SIMSwappers #ransomware

·404media.co·Oct 27, 2023

SIM Swappers Are Working Directly with Ransomware Gangs Now

BlackCat ransomware hits Azure Storage with Sphynx encryptor

The BlackCat (ALPHV) ransomware gang now uses stolen Microsoft accounts and the recently spotted Sphynx encryptor to encrypt targets' Azure cloud storage.

#bleepingcomputer #EN #2023 #BlackCat #ALPHV #Sphynx #encryptor #Azure

·bleepingcomputer.com·Sep 17, 2023

BlackCat ransomware hits Azure Storage with Sphynx encryptor

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

A ransomware affiliate is targeting publicly exposed Veritas installations to gain access to organizations.

#mandiant #EN #2023 #ALPHV #Ransomware #Affiliate #Vulnerable #Backup #Veritas

·mandiant.com·Apr 7, 2023

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

Ransomware Group Claims Hack of Amazon's Ring

The group is blackmailing Ring on its site: "There's always an option to let us leak your data," they posted.

#vice #EN #2023 #Ransomware #Group #Amazon #Ring #ALPHV

·vice.com·Mar 14, 2023

Ransomware Group Claims Hack of Amazon's Ring

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

A ransomware gang has posted photos of Lehigh Valley Health Network cancer patients on the dark web after the health network refused to pay a ransom last month following a cyberattack.

#lehighvalleylive #EN #2023 #Health #patient #hospital #photos #ransomware #gang #ALPHV #BlackCat

·lehighvalleylive.com·Mar 8, 2023

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

Ransomware Group Debuts Searchable Victim Data

Cybercrime groups that specialize in stealing corporate data and demanding a ransom not to publish it have tried countless approaches to shaming their victims into paying. The latest innovation in ratcheting up the heat comes from the ALPHV/BlackCat ransomware group,…

#krebsonsecurity #Cybercrime #EN #2022 #ALPHV #clearnet #BlackCat #ransomware #publish

·krebsonsecurity.com·Jun 15, 2022

Ransomware Group Debuts Searchable Victim Data

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

A ransomware affiliate is targeting publicly exposed Veritas installations to gain access to organizations.

#mandiant #EN #2023 #ALPHV #Ransomware #Affiliate #Vulnerable #Backup #Veritas

·mandiant.com·Apr 7, 2023

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

Ransomware Group Claims Hack of Amazon's Ring

The group is blackmailing Ring on its site: "There's always an option to let us leak your data," they posted.

#vice #EN #2023 #Ransomware #Group #Amazon #Ring #ALPHV

·vice.com·Mar 14, 2023

Ransomware Group Claims Hack of Amazon's Ring

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

A ransomware gang has posted photos of Lehigh Valley Health Network cancer patients on the dark web after the health network refused to pay a ransom last month following a cyberattack.

#lehighvalleylive #EN #2023 #Health #patient #hospital #photos #ransomware #gang #ALPHV #BlackCat

·lehighvalleylive.com·Mar 8, 2023

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

Ransomware Group Debuts Searchable Victim Data

#krebsonsecurity #Cybercrime #EN #2022 #ALPHV #clearnet #BlackCat #ransomware #publish

·krebsonsecurity.com·Jun 15, 2022

Ransomware Group Debuts Searchable Victim Data

#krebsonsecurity #Cybercrime #EN #2022 #ALPHV #clearnet #BlackCat #ransomware #publish

·krebsonsecurity.com·Jun 15, 2022

Ransomware Group Debuts Searchable Victim Data