Search cyberveille.decio.ch

Found 20 bookmarks

Custom sorting

DrayTek Routers Exploited in Massive Ransomware Campaign - Forescout

Our 2024 Dray:Break report revealed 14 new vulnerabilities in DrayTek devices See our upcoming presentation at Black Hat Europe for more details PRODAFT shared threat intelligence from 2023 on a ransomware campaign exploiting DrayTek devices This is the first time this campaign is discussed publicly Our analysis shows sophisticated attack workflows to deploy ransomware including possible: Zero-day vulnerabilities Credential harvesting and password cracking VPN and tunneling abuse

#forescout #en #2024 #draytek #ALPHV #ransomware

·forescout.com·Dec 16, 2024

DrayTek Routers Exploited in Massive Ransomware Campaign - Forescout

IcedID Brings ScreenConnect and CSharp Streamer to ALPHV Ransomware Deployment – The DFIR Report

Key Takeaways In October 2023, we observed an intrusion that began with a spam campaign, distributing a forked IcedID loader. The threat actor used Impacket’s wmiexec and RDP to install Scree…

#thedfirreport #EN #2024 #analysis #IceID #ScreenConnect #incident #ALPHV #Ransomware

·thedfirreport.com·Jun 11, 2024

IcedID Brings ScreenConnect and CSharp Streamer to ALPHV Ransomware Deployment – The DFIR Report

Blackcat ransomware site reportedly seized but UK agency denies responsibility

website used by hackers responsible for a breach at UnitedHealth Group (UNH.N), opens new tab has been replaced by a notice saying it has been seized by international law enforcement. But at least one of the agencies allegedly responsible said it had nothing to do with the seizure, raising the possibility that the hackers - who also go by the moniker ALPHV - faked their own takedown. A message posted to the website of the Blackcat hacking gang on Tuesday said it had been impounded "as part of a coordinated law enforcement action" by U.S. authorities and other law enforcement agencies. Among the logos of non-American agencies involved were those of Europol and Britain's National Crime Agency.

#reuters #EN #2024 #AlphV #UnitedHealth-Group #BlackCat #ransomware #UK #denies

·reuters.com·Mar 5, 2024

Blackcat ransomware site reportedly seized but UK agency denies responsibility

BlackCat ransomware shuts down in exit scam, blames the "feds"

The BlackCat ransomware gang is pulling an exit scam, trying to shut down and run off with affiliates' money by pretending the FBI seized their site and infrastructure.

#bleepingcomputer #EN #2024 #ALPHV #BlackCat #Exit-Scam #Ransomware

·bleepingcomputer.com·Mar 5, 2024

BlackCat ransomware shuts down in exit scam, blames the "feds"

BlackCat ransomware turns off servers amid claim they stole $22 million ransom

The ALPHV/BlackCat ransomware gang has shut down its servers amid claims that they scammed the affiliate responsible for the attack on Optum, the operator of the Change Healthcare platform, of $22 million.

#bleepingcomputer #EN #2024 #ALPHV #BlackCat #Healthcare #Optum #Ransomware #UnitedHealth-Group

·bleepingcomputer.com·Mar 4, 2024

BlackCat ransomware turns off servers amid claim they stole $22 million ransom

Hackers Behind the Change Healthcare Ransomware Attack Just Received a $22 Million Payment

The transaction, visible on Bitcoin's blockchain, suggests the victim of one of the worst ransomware attacks in years may have paid a very large ransom.

#wired #EN #2024 #ransomware #bitcoin #blockchain #crime #healthcare #ALPHV #Alphv-BlackCat

·wired.com·Mar 4, 2024

Hackers Behind the Change Healthcare Ransomware Attack Just Received a $22 Million Payment

US prescription market hamstrung for 9 days (so far) by ransomware attack | Ars Technica

Patients having trouble getting lifesaving meds have the AlphV crime group to thank.

#arstechnica #EN #2024 #AlphV #ransomware #US #prescription #Healthcare

·arstechnica.com·Mar 3, 2024

US prescription market hamstrung for 9 days (so far) by ransomware attack | Ars Technica

New RustDoor macOS malware impersonates Visual Studio update

A new Rust-based macOS malware spreading as a Visual Studio update to provide backdoor access to compromised systems uses infrastructure linked to the infamous ALPHV/BlackCat ransomware gang.

#bleepingcomputer #EN #2024 #ALPHV #Backdoor #BlackCat #Data-Exfiltration #macOS #Malware #Ransomware

·bleepingcomputer.com·Feb 9, 2024

New RustDoor macOS malware impersonates Visual Studio update

Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant | United States Department of Justice

The Justice Department announced today a disruption campaign against the Blackcat ransomware group — also known as ALPHV or Noberus — that has targeted the computer networks of more than 1,000 victims and caused harm around the world since its inception, including networks that support U.S. critical infrastructure.

#justice.gov #EN #2023 #ALPHV #Blackcat #ransomware #group #Disrupts #announce

·justice.gov·Dec 19, 2023

Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant | United States Department of Justice

Authorities claim seizure of notorious ALPHV ransomware gang's dark web leak site | TechCrunch

The FBI says it has released a decryption tool allowing hundreds of ALPHV/BlackCat victims to restore their scrambled files.

#techcrunch #EN #2023 #ALPHV #BlackCat #cyberattack #cybersecurity #law-enforcement #ransomware #seizure

·techcrunch.com·Dec 19, 2023

Authorities claim seizure of notorious ALPHV ransomware gang's dark web leak site | TechCrunch

SIM Swappers Are Working Directly with Ransomware Gangs Now

Hackers connected to “the Comm,” a nebulous group that includes SIM swappers, are working with ALPHV, a ransomware group that has impacted some of the biggest companies on the planet, including MGM Casinos.

#404media #EN #2023 #ALPHV #the-Comm #SIMSwappers #ransomware

·404media.co·Oct 27, 2023

SIM Swappers Are Working Directly with Ransomware Gangs Now

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

A ransomware affiliate is targeting publicly exposed Veritas installations to gain access to organizations.

#mandiant #EN #2023 #ALPHV #Ransomware #Affiliate #Vulnerable #Backup #Veritas

·mandiant.com·Apr 7, 2023

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

Ransomware Group Claims Hack of Amazon's Ring

The group is blackmailing Ring on its site: "There's always an option to let us leak your data," they posted.

#vice #EN #2023 #Ransomware #Group #Amazon #Ring #ALPHV

·vice.com·Mar 14, 2023

Ransomware Group Claims Hack of Amazon's Ring

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

A ransomware gang has posted photos of Lehigh Valley Health Network cancer patients on the dark web after the health network refused to pay a ransom last month following a cyberattack.

#lehighvalleylive #EN #2023 #Health #patient #hospital #photos #ransomware #gang #ALPHV #BlackCat

·lehighvalleylive.com·Mar 8, 2023

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

Ransomware Group Debuts Searchable Victim Data

Cybercrime groups that specialize in stealing corporate data and demanding a ransom not to publish it have tried countless approaches to shaming their victims into paying. The latest innovation in ratcheting up the heat comes from the ALPHV/BlackCat ransomware group,…

#krebsonsecurity #Cybercrime #EN #2022 #ALPHV #clearnet #BlackCat #ransomware #publish

·krebsonsecurity.com·Jun 15, 2022

Ransomware Group Debuts Searchable Victim Data

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

A ransomware affiliate is targeting publicly exposed Veritas installations to gain access to organizations.

#mandiant #EN #2023 #ALPHV #Ransomware #Affiliate #Vulnerable #Backup #Veritas

·mandiant.com·Apr 7, 2023

ALPHV Ransomware Affiliate Targets Vulnerable Backup Installations to Gain Initial Access

Ransomware Group Claims Hack of Amazon's Ring

The group is blackmailing Ring on its site: "There's always an option to let us leak your data," they posted.

#vice #EN #2023 #Ransomware #Group #Amazon #Ring #ALPHV

·vice.com·Mar 14, 2023

Ransomware Group Claims Hack of Amazon's Ring

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

A ransomware gang has posted photos of Lehigh Valley Health Network cancer patients on the dark web after the health network refused to pay a ransom last month following a cyberattack.

#lehighvalleylive #EN #2023 #Health #patient #hospital #photos #ransomware #gang #ALPHV #BlackCat

·lehighvalleylive.com·Mar 8, 2023

Gang leaks Lehigh Valley Health Network cancer patient photos as part of data hack

Ransomware Group Debuts Searchable Victim Data

#krebsonsecurity #Cybercrime #EN #2022 #ALPHV #clearnet #BlackCat #ransomware #publish

·krebsonsecurity.com·Jun 15, 2022

Ransomware Group Debuts Searchable Victim Data

#krebsonsecurity #Cybercrime #EN #2022 #ALPHV #clearnet #BlackCat #ransomware #publish

·krebsonsecurity.com·Jun 15, 2022

Ransomware Group Debuts Searchable Victim Data