Hacker in Snowflake Extortions May Be a U.S. Soldier

Credit to Author: BrianKrebs| Date: Wed, 27 Nov 2024 00:45:48 +0000

Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data storage company Snowflake, but a third suspect — a prolific hacker known as Kiberphant0m — remains at large and continues to publicly extort victims. However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S. Army soldier who is or was recently stationed in South Korea.

Read more

Ransomware-Gruppen erhöhen Druck auf Zahlungsunwillige

Credit to Author: Jörg Schindler| Date: Thu, 08 Aug 2024 05:53:48 +0000

Sophos beschreibt im neuen Dark-Web-Report “Turning the Screws: The Pressure Tactics of Ransomware Gangs” detailliert, wie Cyberkriminelle gestohlene Daten als Mittel einsetzen, um den Druck auf zahlungsunwillige Zielpersonen zu erhöhen. Zu den Druckmitteln gehören die Weitergabe von Kontaktdaten, das Veröffentlichen von Informationen über Familienmitglieder von CEOs und Geschäftsinhabern oder die Drohung, Informationen über illegale Geschäftsaktivitäten, […]

Read more

Microsoft Threat Intelligence healthcare ransomware report highlights need for collective industry action

Credit to Author: Sherrod DeGrippo| Date: Tue, 22 Oct 2024 16:00:00 +0000

Healthcare organizations are an attractive target for ransomware attacks. Read our latest blog post to learn why and get strategies to protect yourself from cyberthreats.​

The post Microsoft Threat Intelligence healthcare ransomware report highlights need for collective industry action appeared first on Microsoft Security Blog.

Read more

L’aggiornamento di uno strumento di attacco compromette i computer Windows

Credit to Author: Giusy Martin| Date: Tue, 10 Sep 2024 06:29:56 +0000

Un EDR killer che Sophos X-Ops ha monitorato per tre anni continua a tormentare le organizzazioni prese di mira dalle bande di ransomware

Read more

Storm-0501: Ransomware attacks expanding to hybrid cloud environments

Credit to Author: Microsoft Threat Intelligence| Date: Thu, 26 Sep 2024 17:00:00 +0000

Microsoft has observed the threat actor tracked as Storm-0501 launching a multi-staged attack where they compromised hybrid cloud environments and performed lateral movement from on-premises to cloud environment, leading to data exfiltration, credential theft, tampering, persistent backdoor access, and ransomware deployment. The said attack targeted multiple sectors in the United States, including government, manufacturing, transportation, […]

The post Storm-0501: Ransomware attacks expanding to hybrid cloud environments appeared first on Microsoft Security Blog.

Read more