The U.S. Senate wants to enable the DHS to form expert IT teams that will help organizations with ransomware. The teams will provide technical support, advice, incident response, and data retrieval services. Security analysts are happy with this first step but call for more action in...
The Weather Channel lost its live program for 90 minutes, probably due to a ransomware attack. Not a lot of details have been disclosed about the incident, as the FBI investigation is ongoing. The channel had a backup, so they restored their tools and went live...
 A hospital in Northern France is trying to disinfect 6000 of their computers from a ransomware worm. The caregiving services have been severely impacted, but personnel claims the situation is manageable. Reportedly, the actor hasn’t sent a ransom demand, so paying the crooks isn’t an option. According...
The Dharma ransomware tries to divert the victim’s attention by using an old ESET tool. While the user is dealing with the installation of the ESET Remover, Dharma runs in the background. There’s nothing that can be done about this by ESET, and users just have...
CyrusOne was hit by REvil, and the company is working towards restoration without paying. The ransomware actors found their way in six New York-based data centers, affecting an equal number of clients. Considering the size and global presence of CyrusOne, the problem could be a lot...
Malicious actors are leveraging compromised URLs to infect victims with Troldesh ransomware. The particular software is most likely to be detected by AV tools, but not always. The actors are using TOR for data exfiltration and communication, and two infected URLs for redundancy. According to a report...
BitDefender puts an end to the GandCrab scourge, and its developers announce their retirement as well. The IT security company released a decryption tool that covers all versions, past and present. This is definitely not the last we have heard from “Ransomware as a Service” malware...
Two US-based chemical manufacturing companies, Hexion and Momentive, announced a global IT system outages. The attacks were based on the utilization of the LockerGoga ransomware, which is apparently more popular than we thought. The two companies are working towards the restoration of their communications, and there...
Scammers promote Dharma decryption services, but experts say this is impossible. The scammers are just paying the ransomware actors and unlock the files of the victims. Dharma will most likely not be unlocked throughout our lifetime, as it features a perfect implementation. The Dharma/Crysis ransomware strain has...
Emsisoft’s researchers have released their third ransomware decryption this month. The security firm has managed to put an end to LooCipher, ZeroFucks, and Ims00rry. People are advised to take regular backups, never pay the ransom, and to follow safe software procurement and installation practices. Emsisoft is undergoing...