The Week in Ransomware – June twenty third 2023


Reddit

It was a comparatively quiet week relating to ransomware information, with the BlackCat ransomware gang extorting Reddit and the continuing MOVEit Switch knowledge breaches being the primary focus.

This week the BlackCat gang claimed to be behind a Reddit data-theft assault that the corporate beforehand disclosed in February 2023.

In February, Reddit introduced that it suffered a breach the place menace actors gained entry to a few of its methods and will steal supply code and a restricted quantity of advertiser knowledge.

Nevertheless, in an replace on the BlackCat knowledge leak web site, the menace actors declare they stole 80 GB of compressed knowledge through the assault and now plan on leaking the info after they are saying Reddit ignored a $4.5 million ransom demand.

“The Reddit Information” publish on the BlackCat knowledge leak web site
Supply: BleepingComputer

Whereas no encryption was utilized on this assault, it’s noteworthy because the extortion group is a recognized ransomware operation.

At the moment, no Reddit knowledge has been leaked by the extortion gang. Nevertheless, they acknowledged, “We anticipate to leak the info.”

Relating to the MOVEit knowledge breaches, the scenario has escalated with the US authorities issuing an as much as $10 million reward for info on the Clop ransomware operation being linked to a international authorities after it was revealed they breached quite a few federal companies.

Nevertheless, the Clop gang continues to say they care nothing for politics and are solely in it for the cash, claiming to delete any authorities knowledge and persevering with to call new organizations impacted by the hacks.

On the flip aspect, impacted organizations proceed to return ahead, disclosing that they have been breached and what info was stolen.

At present, three corporations disclosed that they have been impacted by a MOVEit breach at their supplier PBI Analysis Companies (PBI) disclosed, the place the attackers stole the info of 4.75 million individuals.

As anticipated, this huge breach has led to a class motion lawsuit towards Progress Software program, the builders of MOVEit Switch.

Lastly, Sophos has launched the first episode of the ‘Assume You Know Ransomware?’ docuseries on YouTube

Contributors and those that supplied new ransomware info and tales this week embody: @demonslay335, @BleepinComputer, @fwosar, @serghei, @billtoulas, @Seifreed, @malwrhunterteam, @Ionut_Ilascu, @LawrenceAbrams, @NCCGroupplc, @NCSC, @pcrisk, @vxunderground, @AlvieriD, and @BrettCallow.

June seventeenth 2023

US govt presents $10 million bounty for information on Clop ransomware

The U.S. State Division’s Rewards for Justice program introduced as much as a $10 million bounty yesterday for info linking the Clop ransomware assaults to a international authorities.

June 18th 2023

Reddit hackers threaten to leak knowledge stolen in February breach

The BlackCat (ALPHV) ransomware gang is behind a February cyberattack on Reddit, the place the menace actors declare to have stolen 80GB of knowledge from the corporate.

June nineteenth 2023

Iowa’s largest faculty district confirms ransomware assault, knowledge theft

Des Moines Public Colleges, Iowa’s largest faculty district, confirmed as we speak {that a} ransomware assault was behind an incident that pressured it to take all networked methods offline on January 9, 2023.

June twentieth 2023

New STOP ransomware variants

PCrisk discovered new STOP ransomware variants that append the .bhtw and .bhui extensions.

June twenty first 2023

NCC Group Month-to-month Menace Pulse – Might 2023

New evaluation from NCC Group’s International Menace Intelligence staff has revealed that ransomware assaults are hovering, with 436 victims in Might. The brand new figures signify a 24% surge in comparison with April’s determine of 352 and a 56% improve in comparison with Might 2022.

Sophos releases ransomware docuseries

Sophos has launched the primary episiode of their ‘Assume You Know Ransomware?’ docuseries on YouTube.

New STOP ransomware variant

PCrisk discovered a brand new STOP ransomware variant that appends the .bhgr extension.

June twenty second 2023

MOVEit Information Breach Assaults Immediate Class-Motion Lawsuit In opposition to Progress Software program

Progress Software program, the maker of MOVEit cloud internet hosting and file-transfer providers, is dealing with a class-action lawsuit in reference to cyberattacks that resulted from a software program vulnerability.

Cyber Menace Report: UK Authorized Sector

An up to date report from the NCSC explaining how UK legislation corporations – of all sizes – can defend themselves from widespread cyber threats.

June twenty third 2023

MOVEIt breach impacts GenWorth, CalPERS as knowledge for 3.2 million uncovered

PBI Analysis Companies (PBI) has suffered a knowledge breach with three purchasers disclosing that the info for 4.75 million individuals was stolen within the latest MOVEit Switch data-theft assaults.

That is it for this week! Hope everybody has a pleasant weekend!



Related Articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest Articles