The fallout from ransomware gang Cl0p’s massive, worldwide attack continues to grow. Police departments, state and federal agencies, and numerous companies are among the known victims. Recap Cl0p stole data from hundreds of organizations by exploiting a vulnerability in popular file transfer software MOVEit at the end of May. The cybercriminals then told organizations to […]
The Fallout from Cl0p’s Attack is Growing Read More »
Yesterday, ransomware gang Cl0p began listing organizations affected by its exploit of file transfer software MOVEit. The gang used the exploit to steal data from potentially hundreds of companies around the world at the end of May. The gang had previously instructed affected companies to begin negotiations by June 14th to avoid being named and
Cl0p Starts Naming Victims Read More »
On Friday, the State of Illinois and the Minnesota Department of Education both revealed they were victims of the Cl0p ransomware gang. Cl0p exploited a vulnerability in file transfer software MOVEit at the end of May, breaching up to hundreds of organizations worldwide. Minnesota Department of Education The Minnesota Department of Education (MDE) reported that
Two States Fall Victim to Ransomware Attack Read More »
Ransomware gang Cl0p has exploited a vulnerability in file transfer software MOVEit to compromise companies around the world. Security researcher Kevin Beaumont estimates “there are over one hundred” organizations affected by the attack, with British Airways, the BBC and Boots already confirmed as victims. Cl0p posted a message to companies who use MOVEit on their
Cl0p Tells Companies to Begin Negotiations Read More »
Valéry Marchive, a cybersecurity journalist, has published chat logs of negotiations between ransomware gangs and their victims. The goal, he explained in a Twitter thread, is to provide a resource for ransomware victims and researchers, since “What happens during #ransomware negotiations is rarely widely shared.” Background to the chats The chats take place after companies
Negotiating with Ransomware Gangs Read More »
The Bl00dy Ransomware Gang is exploiting a vulnerability in print management software PaperCut to target schools, according to an advisory by CISA. While PaperCut fixed this vulnerability in March, not all organizations applied the patch immediately. CISA recommends these organizations consider themselves compromised and look for malicious activity. The Bl00dy Ransomware Gang The Bl00dy Ransomware
Bl00dy Ransomware Gang Targets Schools Read More »
Twitter is failing to stop an account run by a ransomware gang from using its platform to distribute stolen information. Safe Not Scammed is not naming the gang or providing its account handle to avoid giving the criminals additional publicity. The ransomware account has posted links to stolen files it claims are from Socrates Academy
Twitter Fails to Act Against Ransomware Gang Read More »
Earlier this week, Keystone Smiles, a daycare and community learning center based in Knox, Pennsylvania, became a victim of the LockBit ransomware group. Ransomware works by stealing data from a victim’s computer and then encrypting the original files so that the victim cannot access them. Ransomware operators inform the victim they must pay a hefty
Ransomware Gang Sorry for Targeting Daycare Read More »
