A new report from WithSecure documents a recent rash of ransomware attacks, spanning at least eight months, initiated by a fake version of the KeePass password manager that was spread through Microsoft ads.
US federal grand jury has indicted Rim Jong Hyok of North Korea in connection with a 2022 campaign that saw the North Korean Hacker first conduct ransomware attacks against hospitals for profit, then turn those funds to conduct data theft attacks against the US Air Force, NASA and assorted defense contractors.
A recent ransomware attack on Industrial & Commercial Bank of China Ltd. (ICBC) demonstrates that cyber criminals are not entirely ignoring major Chinese businesses, and that the largest banks in the world can still fall victim to them.
The United States, EU members and select other countries (some 40 in total) have reached a formal agreement to refuse ransomware payments demanded of government agencies. At present, this has no impact on private organizations or companies.
Preventing ransomware attacks on critical infrastructure companies has been a major focus for the Biden administration, and a new program has tasked CISA with warning companies when major vulnerabilities are detected.
In 2021, organizations were facing pretty good odds of experiencing a ransomware attack (64%). Those odds declined tremendously in 2022 (25%), but it’s not time to celebrate just yet.
Everything that has been documented about Conti paints a picture of dedicated professionals that made an incredibly lucrative industry out of ransomware attacks. Highly prolific group conducted at least 850 successful attacks since 2020.
The NSA says that recent sanctions are creating difficulty for ransom payments leading to reduced ransomware attacks, which are still largely originating from Russia and allies such as Belarus.