Tag: extortion

Lynx Ransomware Architecture to Attack Windows, Linux, ESXi Uncovered

Jan 29, 2025 6:36 PM

Tags: attack, cyber, cybercrime, cybersecurity, encryption, extortion, linux, organized, ransomware, service, tool, windows

The emergence of the Lynx Ransomware-as-a-Service (RaaS) platform has drawn significant attention in cybersecurity circles, owing to its advanced technical capabilities, structured affiliate workflow, and expansive ransomware arsenal. Lynx has proven to be a highly organized and efficient cybercriminal operation, offering its affiliates a user-friendly interface, robust encryption capabilities, and extortion tools that underline its…
Hellcat Ransomware Attacking Government Organizations Educational Institutions

Jan 29, 2025 12:36 PM

Tags: cyber, dark-web, data, extortion, government, group, infrastructure, ransomware, service, theft, tool

A new ransomware gang, Hellcat, emerged on dark web forums in 2024, targeting critical infrastructure, government organizations, educational institutions, and the energy sector. Operating on a ransomware-as-a-service (RaaS) model, Hellcat offers ransomware tools and infrastructure to affiliates in exchange for a profit share. The group relies on double extortion techniques, combining data theft with system…
Neue Ransomware-Gruppe Funksec profitiert von LLMs

Jan 28, 2025 4:37 PM

Tags: access, ai, cyberattack, data-breach, ddos, extortion, group, leak, LLM, mail, malware, powershell, ransomware, rust, service, tool, usa, windows
Cyberkriminalität: Anklage gegen mutmaßlichen Cybererpresser

Jan 27, 2025 10:03 PM

Tags: cybercrime, extortion, malware

Ein tatverdächtiger Ukrainer wurde wegen Malware-Einsatz und Lösegeld-Erpressung angeklagt. Der Mann soll einer weltweit agierenden Cybercrime-Gruppe angehören. First seen on heise.de Jump to article: www.heise.de/news/Cyberkriminalitaet-Anklage-gegen-mutmasslichen-Cybererpresser-10258341.html
New ransomware group Funksec is quickly gaining traction

Jan 27, 2025 9:03 PM

Tags: access, ai, attack, computer, control, country, cybercrime, data, data-breach, ddos, detection, email, encryption, extortion, government, group, leak, LLM, malware, password, powershell, ransom, ransomware, russia, rust, service, threat, tool, usa, windows

Threat reports for December showed a newcomer to the ransomware-as-a-service (RaaS) landscape quickly climbing the ranks. Called Funksec, this group appears to be leveraging generative AI in its malware development and its founders are tied to hacktivist activity.Funksec was responsible for 103 out of 578 ransomware attacks tracked by security firm NCC Group in December,…
FBI: North Korean IT workers steal source code to extort employers

Jan 23, 2025 10:22 PM

Tags: access, extortion, jobs, north-korea

The FBI warned today that North Korean IT workers are abusing their access to steal source code and extort U.S. companies that have been tricked into hiring them. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-north-korean-it-workers-steal-source-code-to-extort-employers/
Google Cloud Security Threat Horizons Report #11 Is Out!

Jan 22, 2025 11:22 PM

Tags: access, api, apt, attack, authentication, breach, business, cloud, corporate, credentials, cybersecurity, data, detection, exploit, extortion, google, identity, intelligence, leak, mfa, password, phishing, ransomware, service, tactics, theft, threat, tool, vulnerability

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our next Threat Horizons Report, #11 (full version) that we just released (the official blog for #1 report, my unofficial blogs for #2, #3, #4, #5, #6, #7, #8, #9 and #10). My favorite quotes from the report follow below:…
25 on 2025: APAC security thought leaders share their predictions and aspirations

Jan 22, 2025 8:22 PM

Tags: access, advisory, ai, api, attack, authentication, awareness, best-practice, breach, business, ciso, cloud, compliance, control, cryptography, csf, cyber, cyberattack, cybercrime, cybersecurity, dark-web, data, data-breach, deep-fake, detection, disinformation, encryption, endpoint, exploit, extortion, finance, framework, fraud, government, group, hacking, Hardware, identity, incident, incident response, infrastructure, injection, intelligence, international, iot, malicious, malware, microsoft, monitoring, network, nist, phishing, privacy, ransomware, regulation, resilience, risk, risk-management, scam, service, skills, social-engineering, software, spear-phishing, strategy, supply-chain, tactics, technology, threat, tool, training, update, vulnerability, warfare, zero-trust

As threat actors and security teams harness the growing potential of artificial intelligence (AI), who will prevail? From generative AI (GenAI) to agentic AI, we look through the lens of 25 of Asia-Pacific’s thought leaders in security and dive into their predictions and goals for the year. src=”https://b2b-contenthub.com/wp-content/uploads/2025/01/Athikom.jpg?quality=50&strip=all” alt=”athikom” loading=”lazy” width=”400px”>Athikom Kanchanavibhu Chief Information Security…
PowerSchool hacker claims they stole data of 62 million students

Jan 22, 2025 7:22 PM

Tags: data, extortion, hacker

The hacker who breached education tech giant PowerSchool claimed in an extortion demand that they stole the personal data of 62.4 million students and 9.5 million teachers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/powerschool-hacker-claims-they-stole-data-of-62-million-students/
EU to take aim at healthcare cyber threat

Jan 21, 2025 8:22 AM

Tags: attack, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, extortion, healthcare, malicious, ransomware, service, threat, tool

The European Commission is presenting an action plan to strengthen cybersecurity in healthcare as one of its key priorities in the first 100 days of the commission’s new mandate.The healthcare sector has been under increasing pressure from cyberattacks in the past few years, with 309 cybersecurity incidents reported by member states in 2023. Ransomware tops…
AI-Driven Ransomware Group Strikes 85 Victims

Jan 15, 2025 12:02 AM

Tags: ai, cybersecurity, data, extortion, group, intelligence, ransomware, theft

Amateurish Ransomware Group Doubles as Hackstivists. Cybersecurity researchers discovered an artificial intelligence-driven ransomware group that emerged at the end of last year and compromised more than 85 victims worldwide. The group uses double extortion, combining data theft with encryption. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ai-driven-ransomware-group-strikes-85-victims-a-27291
UK Considers Banning Ransomware Payment by Public Sector and CNI

Jan 14, 2025 9:04 PM

Tags: attack, extortion, ransomware

Since no technical means have been found to curtail criminal extortion through prevention or attack, the new proposal is to eliminate its profitability. The post UK Considers Banning Ransomware Payment by Public Sector and CNI appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/uk-considers-banning-ransomware-payment-by-public-sector-and-cni/
Act fast to blunt a new ransomware attack on AWS S3 buckets

Jan 14, 2025 8:46 AM

Tags: access, ai, api, attack, authentication, breach, ciso, cloud, control, credentials, data, data-breach, encryption, exploit, extortion, github, iam, infosec, infrastructure, login, network, password, ransom, ransomware, risk, service, software, threat, unauthorized, vulnerability

CISOs are being warned to make sure employees take extra steps to protect their AWS access keys after word that a threat actor is using stolen login passwords for ransomware attacks.In a report issued today, researchers at Halcyon said the target is Amazon S3 buckets and the attack uses AWS’ own encryption to make data…
UK proposes banning hospitals and schools from making ransomware payments

Jan 14, 2025 8:46 AM

Tags: extortion, healthcare, ransomware

The proposed rules would ban public sector bodies in the UK from making extortion payments and require all victims to report ransomware incidents to the government.]]> First seen on therecord.media Jump to article: therecord.media/uk-proposes-banning-ransoms-hospitals
AI-Driven Ransomware FunkSec Targets 85 Victims Using Double Extortion Tactics

Jan 10, 2025 2:18 PM

Tags: ai, cybersecurity, data, encryption, extortion, group, hacker, intelligence, ransom, ransomware, tactics, theft

Cybersecurity researchers have shed light on a nascent artificial intelligence (AI) assisted ransomware family called FunkSec that sprang forth in late 2024, and has claimed more than 85 victims to date.”The group uses double extortion tactics, combining data theft with encryption to pressure victims into paying ransoms,” Check Point Research said in a new report…
IT-Trends 2025 – Neue Cybergangs setzen auf Zerstörung statt Erpressung

Jan 10, 2025 10:18 AM

Tags: extortion

First seen on security-insider.de Jump to article: www.security-insider.de/prognosen-cyberkriminalitaet-it-sicherheit-2025-a-29d3165caa8a2d88bd39efeaf2927ce3/
8 Cyber Predictions for 2025: A CSO’s Perspective

Jan 10, 2025 1:18 AM

Tags: access, ai, attack, authentication, business, ceo, ciso, cloud, compliance, computing, control, credentials, cryptography, cyber, cyberattack, cybercrime, cybersecurity, data, defense, detection, encryption, exploit, extortion, firewall, framework, governance, group, hacker, hacking, healthcare, identity, intelligence, international, law, leak, malicious, mfa, microsoft, network, north-korea, organized, phishing, privacy, ransom, ransomware, regulation, risk, risk-management, service, social-engineering, software, strategy, supply-chain, theft, threat, tool, update, wifi, zero-trust

As we step into 2025, the cyberthreat landscape is once again more dynamic and challenging than the year before. In 2024, we witnessed a remarkable acceleration in cyberattacks of all types, many fueled by advancements in generative AI. For security leaders, the stakes are higher than ever. In this post, I’ll explore cyberthreat projections and…
New Great Morpheus Hacker Group Claims Hacking Into Arrotex Pharmaceuticals And PUS GmbH

Jan 9, 2025 12:18 PM

Tags: breach, cyber, data, extortion, group, hacker, hacking, leak, ransomware

A Data Leak Site (DLS) belonging to a new extortion group named Morpheus, which has stolen data from Arrotex Pharmaceuticals (Australia) on December 12th and PUS GmbH (Germany) on December 20th. Morpheus offers stolen data for sale on the DLS, requiring buyers to create accounts. While a researcher suggests a link to Hellcat ransomware, there…
Ransomware-Bande erpresst Weininger Metall System

Jan 8, 2025 1:18 PM

Tags: cyberattack, dark-web, extortion, hacker, mail, ransomware, supply-chain
Arrest of US Army Soldier Tied to AT&T and Verizon Extortion

Dec 31, 2024 7:27 PM

Tags: at&t, breach, cloud, data, extortion, phone, theft

Cameron Wagenius Suspected of Extorting Snowflake Customers Over Stolen Data. A serving member of the U.S. Army has been arrested on a two-count indictment tied to the theft and sale of confidential phone records, reportedly tied to the theft of terabytes of data from AT&T, Verizon and other customers of cloud data warehousing platform Snowflake.…
US charges Brazilian hacker over extortion activities

Dec 27, 2024 9:43 PM

Tags: extortion, hacker

First seen on scworld.com Jump to article: www.scworld.com/brief/us-charges-brazilian-hacker-over-extortion-activities
$3 Million Bitcoin Ransom: Brazilian Man Charged in US Cyber Extortion

Dec 27, 2024 5:42 AM

Tags: cyber, data, extortion, ransom

A Brazilian man is facing serious charges in the United States for allegedly extorting a New Jersey company after stealing confidential customer data from its Brazilian subsidiary. Junior Barros De... First seen on securityonline.info Jump to article: securityonline.info/3-million-bitcoin-ransom-brazilian-man-charged-in-us-cyber-extortion/
Brazilian Hacker Arrested Hacking Computers Selling Data

Dec 26, 2024 10:43 AM

Tags: computer, cyber, cybercrime, data, extortion, hacker, hacking

A Brazilian man, Junior Barros De Oliveira, has been charged with multiple counts of cybercrime and extortion for hacking into the computer systems of a Brazilian subsidiary of a New Jersey-based company and attempting to extort millions in Bitcoin. The indictment, unsealed in Newark federal court on December 23, 2024, accuses De Oliveira of accessing…
Online Extortion Gang Clop Threatens Cleo Hacking Victims

Dec 24, 2024 5:43 PM

Tags: cybercrime, dark-web, data, extortion, group, hacking, leak, software, update

Cybercriminals Say They Hacked 66 Companies. The Clop cybercriminal group is threatening to make public the companies swept up by its mass hacking of managed file-transfer software built by Cleo Communications. In a Dec. 24 update to its dark web leak site, Clop asserted it has data of many companies who use Cleo. First seen…
7 biggest cybersecurity stories of 2024

Dec 24, 2024 10:44 AM

Tags: access, ai, alphv, at&t, attack, authentication, breach, business, china, cio, ciso, citrix, cloud, credentials, crowdstrike, crypto, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, detection, email, espionage, exploit, extortion, finance, google, government, group, hacking, healthcare, incident response, infection, insurance, intelligence, international, jobs, lockbit, malicious, malware, mandiant, mfa, microsoft, network, nis-2, north-korea, office, phishing, phone, privacy, ransomware, regulation, risk, risk-management, scam, service, software, strategy, tactics, technology, threat, ukraine, update, vulnerability, windows

Cybersecurity headlines were plenty this year, with several breaches, attacks, and mishaps drawing worldwide attention.But a few incidents in particular had far-reaching consequences, with the potential to reshape industry protections, shake up how vendors secure customers’ systems, or drive security leaders to reassess their strategies.Longer-term trends such as increased cybersecurity regulations and the impact of…
Inside Operation Destabilise: How a ransomware investigation linked Russian money laundering and street-level drug dealing

Dec 23, 2024 5:42 AM

Tags: cybercrime, extortion, group, network, ransomware, russia

U.K. investigators tell the story of how examining a cybercrime group’s extortion funds helped to unravel a money-laundering network reaching from the illegal drug trade to Moscow’s elite.]]> First seen on therecord.media Jump to article: therecord.media/operation-destabilise-money-laundering-investigation-uk-nca
Cybersecurity Snapshot: CISA Hands Down Cloud Security Directive, While Threat from North Korean IT Workers Gets the Spotlight

Dec 20, 2024 4:46 PM

Tags: access, ai, authentication, best-practice, business, china, cisa, cisco, cloud, computer, control, cyber, cybersecurity, data, data-breach, email, extortion, finance, framework, fraud, google, government, guide, hacker, identity, incident, incident response, infrastructure, intelligence, international, Internet, jobs, korea, kubernetes, law, lessons-learned, linux, login, malicious, microsoft, mobile, monitoring, network, north-korea, office, password, regulation, risk, risk-management, russia, service, software, tactics, technology, threat, tool, update

Check out the new cloud security requirements for federal agencies. Plus, beware of North Korean government operatives posing as remote IT pros. Also, learn how water plants can protect their HMIs against cyberattacks. And get the latest on the U.S. cyber incident response framework; the CIS Benchmarks; and local and state governments’ cyber challenges. Dive…
Another NetWalker affiliate sentenced to 20 years in prison

Dec 20, 2024 12:42 PM

Tags: extortion, ransomware

A 30-year old Romanian man was sentenced to 20 years in prison for leveraging the Netwalker ransomware to extort money from victims, the US Department of Justice announced on … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/20/another-netwalker-affiliate-sentenced-to-20-years-in-prison/
A new ransomware regime is now targeting critical systems with weaker networks

Dec 18, 2024 1:42 PM

Tags: access, attack, authentication, breach, control, corporate, credentials, cybercrime, data, defense, exploit, extortion, finance, flaw, fortinet, group, infrastructure, law, lockbit, malware, mfa, network, ransomware, risk, tactics, usa, vmware, vpn, vulnerability, zyxel

The year 2024’s ransomware shake-up, fueled by law enforcement crackdowns on giants like LockBit, has shifted focus to critical operations, with major attacks this year hitting targets like Halliburton, TfL, and Arkansas water plant.A Dragos study for the third quarter of 2024 highlighted a surge in activity from new groups like RansomHub, Play, and Fog,…
Clop is back to wreak havoc via vulnerable file-transfer software

Dec 17, 2024 9:43 PM

Tags: attack, cybersecurity, exploit, extortion, group, ransomware, software, threat, vulnerability

In what we can assure you is a new cybersecurity incident despite sounding incredibly similar to incidents of past notoriety: threat actors tied to a notorious ransomware and extortion group have exploited file-transfer software to carry out attacks. Clop has claimed responsibility for attacks tied to vulnerabilities in software made by Cleo, an Illinois-based IT…