Hacker News with Generative AI: Ransomware

Microsoft warns how domain controllers can be used to spread ransomware (scworld.com)
Microsoft is warning of the threat posed by attacks targeting domain controllers and the critical role compromises on those systems can play in network attacks.

Cybersecurity, Domain Controllers, Ransomware

9 points by LinuxBender 15 days ago | 0 comments

Leaked messages expose trade secrets of prolific Black Basta ransomware group (arstechnica.com)
A leak of 190,000 chat messages traded among members of the Black Basta ransomware group shows that it’s a highly structured and mostly efficient organization staffed by personnel with expertise in various specialities, including exploit development, infrastructure optimization, social engineering, and more.

Cybersecurity, Ransomware, Hacking, Data Breaches, Organized Crime

12 points by dangle1 17 days ago | 0 comments

NSA warns "fast flux" threatens national security (arstechnica.com)
A technique that hostile nation-states and financially motivated ransomware groups are using to hide their operations poses a threat to critical infrastructure and national security, the National Security Agency has warned.

National Security, Cybersecurity, Ransomware, Nation-States

6 points by tatersolid 21 days ago | 0 comments

Crimelords at Hunters International tell lackeys ransomware too 'risky' (theregister.com)
Big-game ransomware crew Hunters International says its criminal undertaking has become "unpromising, low-converting, and extremely risky," and it is mulling shifting tactics amid an apparent rebrand.

Cybersecurity, Ransomware, Organized Crime

5 points by rntn 23 days ago | 1 comments

You Have 7 Days to Act Following Gmail Lockout Hack Attacks, Google Says (forbes.com)
As the FBI takes the unusual step of warning users of webmail platforms, including Gmail, to enable two-factor authentication in the light of a dangerous new ransomware threat campaign, Google email users still have more mundane hacking threats on their minds.

Cybersecurity, Gmail, Two-Factor Authentication, Ransomware

10 points by miles 28 days ago | 4 comments

VSCode extensions found downloading early-stage ransomware (bleepingcomputer.com)
Two malicious VSCode Marketplace extensions were found deploying in-development ransomware, exposing critical gaps in Microsoft's review process.

Cybersecurity, Software Development, Ransomware, Microsoft

4 points by greyadept 33 days ago | 0 comments

Hack: 6M Records for Sale Exfiltrated from Oracle Cloud Affecting 140k+ Tenants (cloudsek.com)
CloudSEK uncovers a major breach targeting Oracle Cloud, with 6 million records exfiltrated via a suspected undisclosed vulnerability. Over 140,000 tenants are impacted, as the attacker demands ransom and markets sensitive data online. Learn the full scope, risks, and how to respond. Are you worried your organization might be affected? Check your exposure here - https://exposure.cloudsek.com/oracle

Cybersecurity, Data Breaches, Oracle Cloud, Ransomware, Cloud Security

39 points by gnabgib 34 days ago | 17 comments

VSCode extensions found downloading early-stage ransomware (bleepingcomputer.com)
Two malicious VSCode Marketplace extensions were found deploying in-development ransomware, exposing critical gaps in Microsoft's review process.

Cybersecurity, Software, Ransomware, Microsoft

6 points by rmason 35 days ago | 0 comments

Akira ransomware can be cracked with sixteen RTX 4090 GPUs in around ten hours (tomshardware.com)

Cybersecurity, Ransomware, GPUs, Technology, Hardware

153 points by Ozarkian 40 days ago | 39 comments

Decrypting encrypted files from Akira ransomware using a bunch of GPUs (tinyhack.com)
I recently helped a company recover their data from the Akira ransomware without paying the ransom. I’m sharing how I did it, along with the full source code.

Cybersecurity, Ransomware, Data Recovery, GPU Computing

257 points by costco 42 days ago | 58 comments

Decrypting Encrypted files from Akira Ransomware using a bunch of GPUs (tinyhack.com)
I recently helped a company recover their data from the Akira ransomware without paying the ransom. I’m sharing how I did it, along with the full source code.

Cybersecurity, Ransomware, GPUs, Data Recovery

6 points by notmine1337 43 days ago | 1 comments

Ransomware gang encrypted network from a webcam to bypass EDR (bleepingcomputer.com)
The Akira ransomware gang was spotted using an unsecured webcam to launch encryption attacks on a victim's network, effectively circumventing Endpoint Detection and Response (EDR), which was blocking the encryptor in Windows.

Cybersecurity, Ransomware, EDR, Webcams

31 points by nradov 50 days ago | 1 comments

FBI Says Backup Now–Advisory Warns of Dangerous Ransomware Attacks (forbes.com)
The FBI warns organizations to backup now.

Cybersecurity, Ransomware, FBI, Data Backup

6 points by CharlesW 63 days ago | 1 comments

A trove of leaked Black Basta logs expose the ransomware gang's members, victims (techcrunch.com)
A trove of chat logs allegedly belonging to the Black Basta ransomware group has leaked online, exposing key members of the prolific Russia-linked gang.

Cybersecurity, Ransomware, Data Breaches, Russia

8 points by impish9208 63 days ago | 0 comments

US publisher uses linguistic gymnastics to avoid saying outage due to ransomware (theregister.com)
US newspaper publisher Lee Enterprises is blaming its recent service disruptions on a "cybersecurity attack," per a regulatory filing, and is the latest company to avoid using the dreaded R word.

Ransomware, Cybersecurity, Journalism, News Media, Technology

5 points by rntn 66 days ago | 1 comments

Ministers consider ban on all UK public bodies making ransomware payments (theguardian.com)
Schools, the NHS and local councils will be banned from making ransomware payments under government proposals to tackle hackers.

Cybersecurity, UK Government, Ransomware, Public Sector

7 points by beardyw 102 days ago | 3 comments

US Charges Russian and Israeli National as Developer of LockBit Ransomware Group (justice.gov)
The Justice Department’s work going after the world’s most dangerous ransomware schemes includes not only dismantling networks, but also finding and bringing to justice the individuals responsible for building and running them,” said Attorney General Merrick B. Garland. “Three of the individuals who we allege are responsible for LockBit’s cyberattacks against thousands of victims are now in custody, and we will continue to work alongside our partners to hold accountable all those who lead and enable ransomware attacks.”

Cybersecurity, Ransomware, Law Enforcement, Russia, Israel

9 points by impish9208 123 days ago | 0 comments

Vodka maker Stoli says August ransomware attack contributed to bankruptcy filing (therecord.media)
A ransomware attack on the multinational Stoli Group in August helped push two of the vodka-maker’s U.S. subsidiaries into bankruptcy, the company’s CEO said last week.

Ransomware, Business, Bankruptcy, Alcohol, Cybersecurity

4 points by aa_is_op 142 days ago | 0 comments

U.S. Offered $10M for Hacker Just Arrested by Russia (krebsonsecurity.com)
In January 2022, KrebsOnSecurity identified a Russian man named Mikhail Matveev as “Wazawaka,” a cybercriminal who was deeply involved in the formation and operation of multiple ransomware groups. The U.S. government indicted Matveev as a top ransomware purveyor a year later, offering $10 million for information leading to his arrest. Last week, the Russian government reportedly arrested Matveev and charged him with creating malware used to extort companies.

Cybersecurity, Ransomware, Russia, Law Enforcement, Crime

7 points by todsacerdoti 143 days ago | 2 comments

Vodka maker Stoli files for bankruptcy in US after ransomware attack (bleepingcomputer.com)
Stoli Group's U.S. companies have filed for bankruptcy following an August ransomware attack and Russian authorities seizing the company's remaining distilleries in the country.

Ransomware, Business, Bankruptcy, Russia

5 points by gnabgib 143 days ago | 1 comments

US extradites Russian for extorting millions in Phobos ransomware payments (techcrunch.com)
The U.S. government has secured the extradition of an alleged Russian hacker who allegedly served as a key administrator of the prolific Phobos ransomware operation.

Cybersecurity, Russia, Extortion, Ransomware

7 points by impish9208 158 days ago | 3 comments

Columbus says ransomware gang stole personal data of 500k Ohio residents (techcrunch.com)
The City of Columbus, Ohio’s state capital, has confirmed that hackers stole the personal data of 500,000 residents during a July ransomware attack.

Ransomware, Cybersecurity, Data Breaches, Ohio, Government

4 points by pseudolus 173 days ago | 0 comments

UnitedHealth says Change Healthcare hack affects 100M – largest US health breach (techcrunch.com)
More than 100 million individuals had their private health information stolen during the ransomware attack on Change Healthcare in February, a cyberattack that caused months of unprecedented outages and widespread disruption across the U.S. healthcare sector.

Cybersecurity, Healthcare, Data Breaches, Ransomware

13 points by blackeyeblitzar 180 days ago | 5 comments

UnitedHealth Ransomware Attack Exposed 100M People (pcmag.com)
Data on over 100 million people was exposed because of the ransomware attack on UnitedHealth subsidiary Change Healthcare earlier this year, according to a document from the US Department of Health and Human Services' Office for Civil Rights.

Cybersecurity, Healthcare, Data Breaches, Ransomware

5 points by mostcallmeyt 182 days ago | 1 comments

Russia sentences REvil ransomware members to over 4 years in prison (bleepingcomputer.com)

Cybersecurity, Crime, Russia, Law, Ransomware

5 points by sandwichsphinx 182 days ago | 0 comments

Change Healthcare hack affects over 100M, largest-ever US healthcare data breach (techcrunch.com)
More than 100 million individuals had their private health information stolen during the ransomware attack on Change Healthcare in February, a cyberattack that caused months of unprecedented outages and widespread disruption across the U.S. healthcare sector.

Cybersecurity, Healthcare, Data Breaches, Ransomware

8 points by croes 183 days ago | 0 comments

Microsoft says more ransomware stopped before reaching encryption (theregister.com)
Microsoft says ransomware attacks are up 2.75 times compared to last year, but claims defenses are actually working better than ever.

Cybersecurity, Ransomware, Microsoft, Technology, Security

8 points by romperstomper 192 days ago | 1 comments

Would banning ransomware insurance stop the scourge? (theregister.com)
Ransomware attacks are costing businesses and governments billions of dollars and putting people's lives at risk – in some cases, reportedly causing their deaths.

Cybersecurity, Ransomware, Insurance, Economics

8 points by pseudolus 193 days ago | 3 comments

Would banning ransomware insurance stop the scourge? (theregister.com)
Ransomware attacks are costing businesses and governments billions of dollars and putting people's lives at risk – in some cases, reportedly causing their deaths.

Cybersecurity, Insurance, Ransomware

6 points by rntn 193 days ago | 2 comments

American Radio Relay League paid $1M ransom payment (databreaches.net)

Cybersecurity, Ransomware

33 points by austinallegro 234 days ago | 34 comments