Credit to Author: Threat Intelligence Team| Date: Thu, 10 Mar 2022 17:59:42 +0000
Get the latest information on ransomware trends with our monthly review.
The post Ransomware: February 2022 review appeared first on Malwarebytes Labs.
Read more
Credit to Author: Paul Ducklin| Date: Thu, 10 Mar 2022 16:37:01 +0000
Latest episode – listen now!
Read moreCredit to Author: Pieter Arntz| Date: Wed, 09 Mar 2022 11:44:13 +0000
The FBI says it has identified at least 52 entities across 10 critical infrastructure sectors affected by RagnarLocker ransomware.
The post RagnarLocker ransomware gang breached 52 critical infrastructure organizations appeared first on Malwarebytes Labs.
Read more
Credit to Author: BrianKrebs| Date: Tue, 08 Mar 2022 01:38:36 +0000
Three stories here last week pored over several years’ worth of internal chat records stolen from the Conti ransomware group, the most profitable ransomware gang in operation today. The candid messages revealed how Conti evaded law enforcement and intelligence agencies, what it was like on a typical day at the Conti office, and how Conti secured the digital weaponry used in their attacks. This final post on the Conti conversations explores different schemes that Conti pursued to invest in and steal cryptocurrencies.
Read moreCredit to Author: Malwarebytes Labs| Date: Mon, 07 Mar 2022 11:05:36 +0000
The most important and interesting security stories from the last seven days.
The post A week in security (February 28 – March 6) appeared first on Malwarebytes Labs.
Read more
Credit to Author: BrianKrebs| Date: Fri, 04 Mar 2022 20:20:29 +0000
Part I of this series examined newly-leaked internal chats from the Conti ransomware group, and how the crime gang dealt with its own internal breaches. Part II explored what it’s like to be an employee of Conti’s sprawling organization. Today’s Part III looks at how Conti abused a panoply of popular commercial security services to undermine the security of their targets, as well as how the team’s leaders strategized for the upper hand in ransom negotiations with victims.
Read more
Credit to Author: Craig Jones| Date: Fri, 04 Mar 2022 17:42:45 +0000
The leak of Conti ransomware’s internal chat logs revealed the attackers tried to buy security software so they could figure out how to bypass it and avoid detection
Read moreCredit to Author: Threat Intelligence Team| Date: Fri, 04 Mar 2022 17:18:26 +0000
Hours before the invasion of Ukraine by Russian forces, a new piece of malware was launched at Ukrainian targets. In this blog post, we take apart its components and highlight its capabilities.
The post HermeticWiper: A detailed analysis of the destructive malware that targeted Ukraine appeared first on Malwarebytes Labs.
Read moreCredit to Author: Pieter Arntz| Date: Thu, 03 Mar 2022 20:29:43 +0000
Nvidia got hacked by the LAPSUS$ ransomware group. On top of the ransom the threat actor had an extra demand and accused Nvidia of hacking back.
The post Nvidia, the ransomware breach with some plot twists appeared first on Malwarebytes Labs.
Read more
Credit to Author: BrianKrebs| Date: Wed, 02 Mar 2022 17:49:52 +0000
Earlier this week, a Ukrainian security researcher leaked almost two years’ worth of internal chat logs from Conti, one of the more rapacious and ruthless ransomware gangs in operation today. Tuesday’s story examined how Conti dealt with its own internal breaches and attacks from private security firms and governments. In Part II of this series we’ll explore what it’s like to work for Conti, as described by the Conti employees themselves.
Read more