Previously known victims of Lapsus$ include Globant, Microsoft, Okta, Samsung, Vodafone, Ubisoft and NVIDIA. The activity was uncovered by well-known cybersecurity researcher Brian Krebs, who reviewed private chats which revealed that Lapsus$ obtained T-Mobile’s VPN credentials and stole source code for a range of company projects. The breach appears to be the work of cyber crime gang Lapsus$. telecommunications giant T-Mobile has admitted that its systems were breached in March, but the company says no customer or government information was stolen in the intrusion. By Wednesday, a local publication reported the attack had spread to eight targets. The Associated Press was the first to report Costa Rican government computer systems had been disrupted in a Conti-backed ransomware attack. Issues related to the attack were first reported by the country’s Finance Ministry on Monday, which noted that the intrusion has compromised its tax collection, importation, and exportation systems, prompting shutdowns as well as the granting of tax payment extensions. The Conti ransomware gang has hit another target, this time the government of Costa Rica. The internet connections to the hospitals were cut to prevent the attack from spreading. The cyber intrusion occurred on April 19th at the hospital network located in north-east France affected two facilities. Hospitals and Health Care group was forced to disconnect all incoming and outgoing Internet connections after discovering it suffered a cyberattack that resulted in the theft of sensitive administrative and patient data. The files allegedly stolen include compressed documents, text files with admin, emails, passwords as well as account and payment ZIP archives. This week we begin at Coca-Cola, which is investigating a ransomware group’s claim it has breached the famous drink-maker’s computer systems. The Russian-speaking ransomware group Stormous claims to have stolen 161GB of data from the company and is now asking for 1.65 Bitcoin (about $64,000) in ransom. Subscribe to TechRepublic Top 5 on YouTube for all the latest tech advice for business pros from Tom Merritt.Hello and welcome to GlobalSign’s weekly recap of the top incidents in cybersecurity. And the data itself is useful at getting a handle on what the threats out there are. It’s not reassuring to see the large amount of money going to ransomware, but if you need help making the case of why it’s important to prepare for it, maybe this helps. Customized versions of MountLocker from Astro Locker and XingLocker are also out there. It’s been used more often against Biotech companies recently.
This ransomware effort has been recently updated to better evade security.
SEE: How to manage passwords: Best practices and security tips (free PDF) (TechRepublic) The full database is available for free to researchers and all enforcement. Ransomwhere keeps a running tally of ransoms paid based on anonymous self-reporting by the victims of ransomware. Cybersecurity and Infrastructure Security Agency worker, has started a ransomware payments tracking site called Ransomwhere.īecause bitcoin transactions are public, you can see-if you look-who’s getting paid how much. Jack Cable, a security architect at Krebs Stamos group, and a former U.S.
0 kommentar(er)
