alphv ransomware – Computer Security Articles

BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare

March 5, 2024 admin A Little Sunshine, alphv ransomware, blackcat ransomware, change healthcare, data breaches, dmitry smilyanets, emsisoft, fabian wosar, FBI, lockbit, NCA, optum, ramp, ransomware, Recorded Future, wired.com

Credit to Author: BrianKrebs| Date: Wed, 06 Mar 2024 00:22:56 +0000

There are indications that U.S. healthcare giant Change Healthcare has made a $22 million extortion payment to the infamous BlackCat ransomware group (a.k.a. “ALPHV”) as the company struggles to bring services back online amid a cyberattack that has disrupted prescription drug services nationwide for weeks. However, the cybercriminal who claims to have given BlackCat access to Change’s network says the crime gang cheated them out of their share of the ransom, and that they still have the sensitive data that Change reportedly paid the group to destroy. Meanwhile, the affiliate’s disclosure appears to have prompted BlackCat to cease operations entirely.

MalwareBytes Security

ALPHV is singling out healthcare sector, say FBI and CISA

February 28, 2024 admin alphv, alphv ransomware, blackcat, news, ransomware

CISA, FBI and HHS are warning about the ALPHV/ Blackcat ransomware group targeting the healthcare industry.

Independent Krebs

Arrests in $400M SIM-Swap Tied to Heist at FTX?

February 1, 2024 admin 0ktapus, A Little Sunshine, alphv ransomware, Ars Technica, blackcat ransomware, carter rohn, cisa, data breaches, elliptic, emily hernandez, FBI, ftx, kroll, Ne'er-Do-Well News, nick bax, powell sim swapping crew, r$, robert powell, scattered spider, SIM swapping, tom robinson, unciphered

Credit to Author: BrianKrebs| Date: Thu, 01 Feb 2024 18:41:37 +0000

Three Americans were charged this week with stealing more than $400 million in a November 2022 SIM-swapping attack. The U.S. government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX, which had just filed for bankruptcy on that same day.

Independent Krebs

BlackCat Ransomware Raises Ante After FBI Disruption

January 13, 2024 admin alphv ransomware, blackcat ransomware, deputy attorney general lisa o. monaco, FBI, Lawrence Abrams, Other, u.s. department of justice

Credit to Author: BrianKrebs| Date: Tue, 19 Dec 2023 22:49:43 +0000

The U.S. Federal Bureau of Investigation (FBI) disclosed today that it infiltrated the world’s second most prolific ransomware gang, a Russia-based criminal group known as ALPHV and BlackCat. The FBI said it seized the gang’s darknet website, and released a decryption tool that hundreds of victim companies can use to recover systems. Meanwhile, BlackCat responded by briefly “unseizing” its darknet site with a message promising 90 percent commissions for affiliates who continue to work with the crime group, and open season on everything from hospitals to nuclear power plants.

Security Sophos

Arrested Intimidation

December 14, 2023 admin alphv ransomware, circia, Featured, final rule, SEC, threat research

Credit to Author: Chester Wisniewski| Date: Thu, 14 Dec 2023 18:08:41 +0000

Why the new US regulatory disclosure requirements work for the defenders, not the criminals

Security Sophos

Press and pressure: Ransomware gangs and the media

December 13, 2023 admin 8base, akira, alphv ransomware, blackcat, cl0p, conti, donut leaks, dunghill leak, Featured, karakurt, lockbit, losttrust, Media, metaencryptor, noname, play, ransomhouse, ransomware, rEvil, rhysida ransomware, royal, snatch, sophos x-ops, threat research, vice, wormgpt

Credit to Author: Matt Wixey| Date: Wed, 13 Dec 2023 11:00:25 +0000

Sophos X-Ops explores the symbiotic – but often uneasy – relationship between ransomware gangs and the media, and how threat actors are increasingly seeking to wrest control of the narrative

MalwareBytes Security

A week in security (April 17 – 23)

April 24, 2023 admin airbnb scam, alphv ransomware, cambridge analytica settlement claim, chrome zero-day, domino backdoor, Facebook, facebook hoax, fake chrome update, fake irs tax email, Fancy Bear, instagram scam, living-off-the-land, lockbit ransomware, lost injured dog facebook hoax, lotl attack, malwarebytes admin, news, Qbot, ransomware, ransomware in germany report, spring cleaning your browser, swatting-as-aservice, tech support scam

Categories: News

Tags: fake Chrome update

Tags: AirBnb scam

Tags: fake IRS tax email

Tags: Ransomware in Germany report

Tags: Living Off The Land

Tags: LOTL attack

Tags: ALPHV ransomware

Tags: ransomware

Tags: spring cleaning your browser

Tags: lost injured dog Facebook hoax

Tags: Facebook hoax

Tags: swatting-as-aservice

Tags: LockBit ransomware

Tags: Instagram scam

Tags: Domino Backdoor

Tags: Malwarebytes Admin

Tags: Fancy Bear

Tags: tech support scam

Tags: QBot

Tags: Chrome zero-day

Tags: Facebook

Tags: Cambridge Analytica settlement claim

The most interesting security related news from the week of April 17 – 23.

(Read more…)

The post A week in security (April 17 – 23) appeared first on Malwarebytes Labs.

Independent Krebs

Ransomware Group Debuts Searchable Victim Data

June 14, 2022 admin A Little Sunshine, alphv ransomware, blackcat ransomware, brett callow, emsisoft, ransomware, The Coming Storm

Credit to Author: BrianKrebs| Date: Tue, 14 Jun 2022 19:53:12 +0000

Cybercrime groups that specialize in stealing corporate data and demanding a ransom not to publish it have tried countless approaches to shaming their victims into paying. The latest innovation in ratcheting up the heat comes from the ALPHV/BlackCat ransomware group, which has traditionally published any stolen victim data on the Dark Web. Today, however, the group began publishing individual victim websites on the public Internet, with the leaked data made available in an easily searchable form.

← Previous