Tag: ransom

Lyrix Ransomware Targets Windows Users with Advanced Evasion Techniques

Jun 3, 2025 11:54 AM

Tags: cyber, cybersecurity, malicious, ransom, ransomware, software, tactics, threat, windows

A formidable new strain of ransomware, dubbed Lyrix, has recently surfaced, posing a significant threat to Windows users worldwide. Cybersecurity researchers have identified Lyrix as a highly advanced malicious software designed to encrypt critical files and demand substantial ransoms for decryption keys. New Threat Emerges with Sophisticated Tactics Unlike typical ransomware, Lyrix incorporates cutting-edge evasion…
Cybersecurity Snapshot: New Standard for AI System Security Published, While Study Finds Cyber Teams Boost Value of Business Projects

May 31, 2025 6:55 AM

Tags: access, ai, attack, authentication, awareness, best-practice, breach, business, ceo, ciso, cloud, compliance, computer, conference, control, cyber, cybersecurity, data, email, extortion, framework, group, guide, hacker, Hardware, intelligence, Internet, kubernetes, law, linux, login, metric, mfa, microsoft, mobile, phishing, ransom, ransomware, risk, service, software, supply-chain, technology, threat, tool, unauthorized, update, windows

Check out ETSI’s new global standard for securing AI systems and models. Plus, learn how CISOs and their teams add significant value to orgs’ major initiatives. In addition, discover what webinar attendees told Tenable about their cloud security challenges. And get the latest on properly decommissioning tech products; a cyber threat targeting law firms; and…
6 rising malware trends every security pro should know

May 29, 2025 8:55 AM

Tags: adobe, ai, antivirus, apple, attack, awareness, backdoor, business, captcha, cloud, corporate, cybercrime, data, defense, detection, encryption, endpoint, exploit, extortion, framework, group, hacking, incident response, infrastructure, intelligence, Internet, law, leak, macOS, malicious, malware, network, password, phishing, powershell, programming, pypi, ransom, ransomware, service, social-engineering, software, supply-chain, tactics, theft, threat, tool, update, vulnerability, worm

Malicious packages targeting developer environments: Threat actors are systematically compromising the software supply chain by embedding malicious code within legitimate development tools, libraries, and frameworks that organizations use to build applications.”These supply chain attacks exploit the trust between developers and package repositories,” Immersive’s McCarthy tells CSO. “Malicious packages often mimic legitimate ones while running harmful…
Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore

May 28, 2025 8:55 PM

Tags: attack, computer, extortion, hacker, international, iran, network, ransom, ransomware

An Iranian national has pleaded guilty in the U.S. over his involvement in an international ransomware and extortion scheme involving the Robbinhood ransomware.Sina Gholinejad (aka Sina Ghaaf), 37, and his co-conspirators are said to have breached the computer networks of various organizations in the United States and encrypted files with Robbinhood ransomware to demand Bitcoin…
Hacker stehlen Coca-Cola-Daten

May 28, 2025 3:55 PM

Tags: access, cyberattack, dark-web, data-breach, extortion, hacker, ransom, ransomware

Der Coca-Cola-Abfüller Coca-Cola Europacific Partners ist von einem Datenleck betroffen.Cyberkriminelle behaupten in einem Darknet-Post, mehr als 64 Gigabyte Daten mit 23 Millionen Einträgen von Coca-Cola Europacific Partners gestohlen zu haben. Darunter befinden sich demnach Kundendaten und Kontaktinformationen, Verkaufsfälle und Produktdaten, Lieferadressen und Telefonnummern sowie Bestellnummern und Zusammenfassungen.Der Coca-Cola-Produzent hat sich bisher noch nicht offiziell zu…
Iranian pleads guilty to launching Baltimore ransomware attack, faces 30 years behind bars

May 27, 2025 10:54 PM

Tags: attack, extortion, iran, ransom, ransomware

Sina Gholinejad admitted to using the Robbinhood ransomware variant to extort ransom payments from dozens of victims. First seen on therecord.media Jump to article: therecord.media/iranian-years-decades-guilty-ransomware
FBI: Silent Ransom Group Adopts Vishing Campaign Against Law Firms

May 27, 2025 7:54 PM

Tags: extortion, group, law, ransom, ransomware, tactics

The non-ransomware extortion group has switched up tactics and victimology in a deliberate and focused campaign similar to those of other attackers focused on stealing sensitive data. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/fbi-silent-ransom-group-vishing-law-firms
Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

May 27, 2025 10:54 AM

Tags: attack, cyber, ransom, ransomware

Nova Scotia Power confirms it was hit by a ransomware attack but hasn’t paid the ransom, nearly a month after first disclosing the cyberattack. Nova Scotia Power confirmed it was hit by a ransomware attack nearly a month after disclosing a cyber incident. The company revealed it hasn’t paid the ransom. Nova Scotia PowerInc. is…
How CISOs can defend against Scattered Spider ransomware attacks

May 27, 2025 8:54 AM

Tags: access, antivirus, attack, backup, ciso, control, credentials, data, defense, detection, edr, exploit, google, group, guide, hacker, hacking, identity, infrastructure, Internet, Intruder, law, mandiant, mfa, network, password, phishing, phone, ransom, ransomware, social-engineering, tactics, threat, tool, vmware, vpn, zero-day

Significant shift to social engineering: Over the past two years, many Scattered Spider members have been arrested and even convicted, including one key member known as “King Bob,” who was arrested in early 2024 and later pleaded guilty to the charges against him. Six other significant Scattered Spider members were arrested in late 2024.Due to…
FBI Issues on Silent Ransom Group Using Fake IT Support Calls to Target Victims

May 26, 2025 7:54 PM

Tags: cyber, group, phishing, ransom, threat

The Federal Bureau of Investigation (FBI) has issued a critical alert regarding the escalating activities of the cyber threat actor known as Silent Ransom Group (SRG), also identified under aliases such as Luna Moth, Chatty Spider, and UNC3753. Since emerging in 2022, SRG has gained notoriety for its advanced callback phishing schemes, often posing as…
No Power Outage, Just a Data One: Nova Scotia Hit by Ransomware Surge

May 26, 2025 1:54 PM

Tags: attack, breach, cybersecurity, data, data-breach, ransom, ransomware

Nova Scotia Power has confirmed it was the victim of a ransomware attack, weeks after initially alerting customers to a cybersecurity breach. The utility, owned by Emera Inc., revealed that the attack resulted in a data breach impacting approximately 280,000 customers”, but emphasized it has not paid the ransom demanded by the attackers. First seen…
FBI Warns of Silent Ransom Group Targeting Law Firms via Scam Calls

May 25, 2025 10:54 PM

Tags: data, email, group, law, phishing, ransom, scam

FBI warns law firms: Silent Ransom Group uses phishing emails and fake IT calls to steal data, demanding ransom to prevent public leaks. The agency is also urges victims to share ransom evidence. First seen on hackread.com Jump to article: hackread.com/fbi-silent-ransom-group-law-firms-via-scam-calls/
Security Affairs newsletter Round 525 by Pierluigi Paganini INTERNATIONAL EDITION

May 25, 2025 3:54 PM

Tags: cybercrime, email, group, international, law, network, ransom, WeeklyReview

A new round of the weekly Securitythe weekly Security Affairs newsletterAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Silent Ransom Group targeting law firms, the FBI warns Leader of Qakbot cybercrime network…
Silent Ransom Group targeting law firms, the FBI warns

May 24, 2025 6:55 PM

Tags: extortion, group, law, phishing, ransom, social-engineering

FBI warns Silent Ransom Group has targeted U.S. law firms for 2 years using callback phishing and social engineering extortion tactics. The FBI warns that the Silent Ransom Group, active since 2022 and also known as Luna Moth, has targeted U.S. law firms using phishing and social engineering. Linked to BazarCall campaigns, the group previously…
NC Pathology Practice Notifying 236,000 of Data Theft Hack

May 24, 2025 12:55 AM

Tags: breach, cybercrime, data, group, hacker, hacking, ransom, ransomware, theft

Did Marlboro-Chesterfield Pathology Pay Cybercrime Gang Safepay a Ransom?. A North Carolina pathology practice is notifying nearly 236,000 patients of a hacking incident discovered in January. Marlboro-Chesterfield Pathology says it took steps to ensure the hackers deleted its stolen data. Newcomer ransomware group Safepay is apparently the culprit in the attack. First seen on govinfosecurity.com…
How Hunters International Used the Browser to Breach Enterprises”Š”, “ŠAnd Why They Didn’t See It”¦

May 23, 2025 10:55 PM

Tags: access, attack, automation, breach, ciso, cloud, container, data, defense, detection, edr, email, endpoint, exploit, google, identity, injection, international, malicious, malware, microsoft, network, phishing, ransom, ransomware, service, soc, threat, tool

How Hunters International Used the Browser to Breach Enterprises”Š”, “ŠAnd Why They Didn’t See It Coming At RSAC 2025, Cato Networks delivered a presentation that SOC teams and CISOs will want to pay attention to: “Suspicious Minds”Š”, “ŠHunting Threats That Don’t Trigger Security Alerts.” The session showcased ransomware campaigns that bypassed traditional detection. In some cases,…
N.C. Pathology Practice Notifying 236,000 of Data Theft Hack

May 23, 2025 9:55 PM

Tags: breach, cybercrime, data, group, hacker, hacking, ransom, ransomware, theft

Did Marlboro-Chesterfield Pathology Pay Cybercrime Gang Safepay a Ransom?. A North Carolina pathology practice is notifying nearly 236,000 patients of a hacking incident discovered in January. Marlboro-Chesterfield Pathology says it took steps to ensure the hackers deleted its stolen data. Newcomer ransomware group Safepay is apparently the culprit in the attack. First seen on govinfosecurity.com…
FBI warns of Luna Moth extortion attacks targeting law firms

May 23, 2025 5:55 PM

Tags: attack, extortion, group, law, phishing, ransom, social-engineering

The FBI warned that an extortion gang known as the Silent Ransom Group has been targeting U.S. law firms over the last two years in callback phishing and social engineering attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-warns-of-luna-moth-extortion-attacks-targeting-law-firms/
Bribery-Led Coinbase Hack Affects 70,000 Crypto Customers

May 23, 2025 1:54 AM

Tags: breach, crypto, data, data-breach, finance, hacker, ransom, theft

Hacker Demanded $20M Ransom to Delete Stolen Personal, Financial Information. A months-long data breach led to the theft of personal and financial information of nearly 70,000 Coinbase customers. Coinbase said the breach dates back to December and was aided by bribery schemes targeting the company’s overseas customer support agents. First seen on govinfosecurity.com Jump to…
Nearly 70,000 impacted by Coinbase breach involving $20 million ransom demand

May 21, 2025 7:54 PM

Tags: breach, data-breach, government, ransom

In documents filed with regulators in Maine on Tuesday, Coinbase said the information leaked included details like photos of passports and government IDs, as well as account information such as balances and transaction history. First seen on therecord.media Jump to article: therecord.media/nearly-70000-impacted-coinbase-breach
College student to plead guilty to PowerSchool hack

May 21, 2025 6:54 PM

Tags: hacking, ransom

The 19-year-old Assumption College student, Matthew Lane, also was charged Tuesday with hacking and demanding a ransom payment from an unnamed telecommunications company, according to Massachusetts federal prosecutors. First seen on therecord.media Jump to article: therecord.media/college-student-to-plead-guilty-to-powerschool-hack
LockBit Internal Data Leak Reveals Payload Creation Methods and Ransom Demands

May 21, 2025 12:54 PM

Tags: breach, cyber, data, data-breach, group, infrastructure, Internet, leak, lockbit, ransom, ransomware, service, tactics

The notorious ransomware group LockBit inadvertently suffered a major data breach, exposing the inner workings of their ransomware-as-a-service (RaaS) operations. This leak, which surfaced on the internet after remaining undetected for months, has offered invaluable insights into the group’s internal processes, from ransomware payload creation to negotiation tactics with victims. Glimpse into LockBit’s Infrastructure The…
LockBit Leak Shows Affiliates Use Pressure Tactics, Rarely Get Paid

May 20, 2025 3:54 PM

Tags: breach, data, data-breach, leak, lockbit, ransom, ransomware, tactics

Weeks after LockBit ransomware breach, leaked data reveals how affiliates generate ransomware, set ransom demands, and often walk away unpaid. First seen on hackread.com Jump to article: hackread.com/lockbit-leak-affiliates-pressure-tactics-rarely-paid/
Coinbase Hacked and Turns the Tables on the Cybercriminals!

May 17, 2025 12:54 AM

Tags: attack, ceo, ciso, cyber, cybercrime, cybersecurity, data, data-breach, defense, extortion, finance, ransom, ransomware, risk, social-engineering, technology, threat, tool

This is how you handle cybercrime digital extortion! Coinbase was compromised by trusted 3rd party partners, which exposed customer data”Š”, “Šbut customer keys to their assets were still safe. The cyber criminals then attempted to extort $20 million from Coinbase, to keep the attack secret. Coinbase’s answer: NO! Instead, they are creating a $20 million…
‘Would rather pay bounty than ransom’: Coinbase on $20M extortion attempt

May 16, 2025 9:54 PM

Tags: breach, email, extortion, finance, hacker, offense, ransom, threat

Hackers are demanding a ransom of the same amount: According to the filing, the email communication by the threat actor demanded $20 million in exchange for not publicly disclosing the information. It remains to be seen how threat actors respond to Coinbase refusing to pay the ransom.”Coinbase’s decision to publicly counter-extort with a $20 million…
LockBit Leaks Reveal Drive to Recruit Ransomware Newbies

May 16, 2025 9:54 PM

Tags: access, business, group, leak, lockbit, ransom, ransomware

‘Lite Panel’ Offering Easy Access to Anyone for Just $777 Confirmed by Researcher. Ransomware groups continue to find innovative new ways to shake down organizations large and small in their pursuit of ransom payoffs. For the LockBit group, one tweak was to debut a lite version of its ransomware portal that appears to have amassed…
Coinbase Rejects $20M Ransom After Insider Data Leak, Faces Up to $400M in Fallout

May 16, 2025 9:54 PM

Tags: data, data-breach, leak, ransom, scam

Coinbase rejects $20M ransom after insider breach; customer data leaked, social scams follow. Fallout may cost up to $400M in reimbursements. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/coinbase-rejects-ransom-data-leak/
‘Expect Imposters’ Coinbase Tells Customers Whose Information Was Exposed in Data Breach

May 15, 2025 11:54 PM

Tags: breach, data, data-breach, ransom

Instead of paying the $20 million ransom, Coinbase offered the same amount of money for information leading to the attackers. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-coinbase-data-breach/
Coinbase disclosed a data breach after an extortion attempt

May 15, 2025 8:54 PM

Tags: breach, data, data-breach, extortion, ransom, threat

Coinbase confirmed rogue contractors stole customer data and demanded a $20M ransom in a breach reported to the SEC. Coinbase said rogue contractors stole data on under 1% of users and demanded $20M; the data breach was disclosed in an SEC filing. On May 11, 2025, the company received a ransom demand from a threat…
Fast Reaction by Co-op Blocked Ransom Fallout, Hackers Claim

May 15, 2025 8:54 PM

Tags: cyberattack, cybersecurity, hacker, ransom

Expect Attackers to Expand Their Focus to US Targets, Cybersecurity Expert Warns. A trio of British High Street retailers are continuing to recover from cyberattacks that disrupted online orders or in-store card payments, resulting in lower earnings alerts and stock shortages across supermarkets. Expect the attackers to set their sights on U.S. targets, an expert…