Ransomware attacks have steadily escalated over the last year and a half. Newer attacks have focused on specific targets, demanded higher ransoms, and grown more advanced, targeted and difficult to spot. In early 2020, a new ransomware attack named Maze stole data from infected machines before locking them, giving the ransomware authors an additional revenue stream. … [Read more...]
MedusaLocker Ransomware Will Bypass Most Antivirus Software
Last week we came across ransomware with unique evasion techniques in a new variant, or possibly a copycat, of the MedusaLocker ransomware. MedusaLocker ransomware, first seen in September 2019, came with a batch file to evade detection. Batch files contain script commands running in a Command Prompt on Windows machines and have the .bat extension. In the malicious … [Read more...]
Mailto Ransomware Takes a Toll on Shipping Company
On February 3, Toll Group, an Australian transportation and logistics company, shut down its IT systems as a result of a “cyber security incident.” The organization reported shortly thereafter that multiple sites and business units had been targeted with ransomware attacks. The Mailto or Kazkavkovkiz ransomware affecting Toll Group is very similar to the many variants of … [Read more...]
You Better Pay or We’ll Publicize Your Data
Imagine not only getting hit with ransomware but being forced to either pay the ransom or risk having your data publicized. Which would be more severe to you and your company? That’s certainly not a pleasant predicament for anyone to be in. That just may very well be the new norm for some companies, reports BleepingComputer’s Lawrence Abrams. Sodinokibi operators, the nasty … [Read more...]
Colorado MSP Attack Compromises Supported Dental Offices
Since November 25, over 100 dental offices were compromised via their managed service provider (MSP), Complete Technology Solutions (CTS). CTS is a Colorado-based company that provides IT services to numerous dental offices. The threat was identified as the infamous Sodinokibi ransomware strain, which has played a role in several MSP attacks this year alone. Reports from … [Read more...]
