The Russian Federal Security Service (FSB) announced on Friday that it has raided and shut down the operations of the notorious REvil ransomware gang. The unprecedented move — which will undoubtedly send a message to other ransomware groups operating out of the country — saw the Russian authorities conduct raids at 25 addresses across the […]
Finalsite ransomware attack forces 5,000 school websites offline
Finalsite, an internet software house that provides school districts with website design, hosting, and content management solutions, has been hit by a ransomware attack. Earlier this week, school districts whose websites are hosted by Finalsite discovered that they were no longer accessible or displayed errors. While at the time Finalsite blamed the issues on “performance difficulties” […]
6 things in cybersecurity we didn’t know last year
The past twelve months in cybersecurity have been a rough ride. In cybersecurity, everything is broken — it’s just a matter of finding it — and this year felt like everything broke at once, especially towards the end of the year. But for better or worse, we end the year knowing more than we did […]
Microsoft seizes control of websites used by China-backed hackers
Microsoft has seized control of a number of websites that were being used by a Chinese government-backed hacking group to target organizations in 29 countries, including the U.S. Microsoft’s Digital Crimes Unit (DCI) said on Monday that a federal court in Virginia had granted an order allowing the company to take control of the websites […]
US says Iran-backed hackers are now targeting organizations with ransomware
The U.S. government, along with counterparts in Australia and the U.K, have warned that Iranian state-backed hackers are targeting U.S. organizations in critical infrastructure sectors — in some cases with ransomware. The rare warning linking Iran with ransomware landed in a joint advisory Wednesday, issued by the Cybersecurity and Infrastructure Security Agency (CISA), the Federal […]
US charges Kaseya hacker and seizes $6M from REvil ransomware gang
The U.S. Department of Justice (DOJ) has charged a 22-year-old Ukrainian citizen linked to the REvil ransomware gang for orchestrating the July ransomware attack against U.S. technology firm Kaseya. It has also seized more than $6 million in ransom tied to another member of the notorious ransomware group. During a news conference on Monday, U.S. […]
Olympus US hack tied to sanctioned Russian ransomware group
An “ongoing” cyberattack against the Japanese technology giant Olympus was caused by a Russian ransomware group sanctioned by the U.S. government, according to two people with knowledge of the incident. A new malware variant known as Macaw was used in the attack that began on October 10, which encrypted Olympus’ systems in the U.S., Canada […]
CISA, NSA, FBI say BlackMatter ransomware group is targeting the US food industry
A joint advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI) and the National Security Agency (NSA) has warned that the BlackMatter ransomware group has targeted “multiple” organizations deemed critical infrastructure, including two organizations in the U.S. food and agriculture sector. The agencies did not name did not name […]
New Treasury sanctions take aim at blocking ransomware groups from cashing out
The U.S. Treasury is wading into the fight against ransomware by sanctioning virtual cryptocurrency exchange Suex for its role in facilitating ransomware payments. The sanctions are the first of its kind against a cryptocurrency exchange, and prohibit Americans from doing business with the company. It’s the latest action as part of a U.S. government-wide effort […]
Nation-state espionage group breaches Alaska Department of Health
Fallout continues from an advanced persistent threat first detected in May 2021.