#ransomware

Abilene, Texas local government systems taken offline after cyberattack
The city of Abilene, Texas shut down multiple systems after detecting a cyberattack on April 19, 2025, which has impacted payment processing while emergency services remain operational as cybersecurity experts investigate the incident's scope and impact.

****
#cybersecurity #infosec #incident #ransomware
https://beyondmachines.net/event_details/abilene-texas-local-government-systems-taken-offline-after-cyberattack-w-p-j-j-8/gD2P6Ple2L

Cybersecurity experts report that FOG ransomware is being spread by cybercriminals falsely claiming connections to DOGE, as detailed in their investigation of malware samples containing this payload. #CyberSecurity #Ransomware https://www.trendmicro.com/en_us/research/25/d/fog-ransomware-concealed-within-binary-loaders-linking-themselve.html

Wan Hai Lines shipping company hit by cyberattack, website offline
Taiwan's 11th largest container shipping company, Wan Hai Lines, experienced a cyberattack on April 19, 2025 that temporarily took down their website. They claim no internal systems were breached and operations remained unaffected while they worked with external cybersecurity experts on incident response.

****
#cybersecurity #infosec #incident #ransomware
https://beyondmachines.net/event_details/wan-hai-lines-shipping-company-hut-by-cyberattack-website-offline-n-o-1-r-l/gD2P6Ple2L

Halcyon Launches First-Ever Ransomware Threat Intelligence Bounty Program https://www.halcyon.ai/blog/halcyon-launches-first-ever-ransomware-threat-intelligence-bounty-program

More: https://www.halcyon.ai/threat-research-incentive-program #cybersecurty #infosec #ransomware

#OverUnder 015 with @shellsharks !

His opinions about:

- #slashpages
- #indieweb
- #ransomware
- #octopus
- #sharks

#chipotle #blog #fediverse #mastodon

#100DaysToOffload : 046/100

https://lazybea.rs/ovr-015

Rainbow District School Board still doesn't provide answers to reasonable questions about its cyberattack, claiming exemptions under relevant Ontatio municipal freedom of information law:

https://www.sudbury.com/local-news/foi-reveals-ransom-demand-was-made-in-rainbow-board-cyber-incident-10547713

#Edusec #ransomware #databreach #transparency #FOI

FOG Ransomware Spread by Cybercriminals Claiming Ties to DOGE

An investigation of nine malware samples revealed FOG ransomware being distributed by cybercriminals impersonating the Department of Government Efficiency (DOGE). The ransomware, spread via email and phishing attacks, is concealed in a ZIP file named 'Pay Adjustment.zip'. The infection chain involves a multi-stage operation, downloading various scripts and executables. The ransomware checks for sandbox environments, decrypts its payload, and drops a ransom note. FOG ransomware has targeted multiple sectors, including technology, education, manufacturing, and transportation. The campaign either involves original FOG operators using DOGE references to troll users or other actors embedding FOG ransomware for impersonation purposes.

Pulse ID: 68063d6f5beb7958a54e2952
Pulse Link: https://otx.alienvault.com/pulse/68063d6f5beb7958a54e2952
Pulse Author: AlienVault
Created: 2025-04-21 12:43:27

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Education #Email #Government #InfoSec #Malware #Manufacturing #OTX #OpenThreatExchange #Phishing #RAT #RansomWare #Troll #ZIP #bot #AlienVault

Latest issue of my curated #cybersecurity and #infosec list of resources for week #16/2025 is out!

It includes the following and much more:

The European Commission is providing staff with burner phones and laptops for trips to the U.S.;

China is pursuing three alleged U.S. operatives for #cyberattacks on its infrastructure;

A whistleblower revealed that DOGE may have accessed sensitive labor data from the National Labor Relations Board (NLRB);

A new #ransomware called "DOGE BIG BALLS";

The U.S. government is ending funding for the Common Vulnerabilities and Exposures (CVE) program... and reverses course, extends MITRE CVE contract;

Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end

https://infosec-mashup.santolaria.net/p/infosec-mashup-16-2025

Hertz, Legends International, H&R Block, Australia (the entire country), Canada's CRA, JPMorgan Chase and Bank of BNY Mellon rounds out this week's insanity.

#News #TechNews #Cybersecurity #Privacy #DataBreach #Ransomware #Phising

https://youtu.be/Ug8bmTS-zUw

Daily podcast: Hertz, Legends International, H&R Block, Australia (the entire country), Canada's CRA, JPMorgan Chase and Bank of BNY Mellon rounds out this week's insanity.

#News #TechNews #Cybersecurity #Privacy #DataBreach #Ransomware #Phising #podcast

https://soundcloud.com/nickaesp/b2025-04-20

#Interlock #ransomware gang pushes fake #IT tools in #ClickFix attacks

https://www.bleepingcomputer.com/news/security/interlock-ransomware-gang-pushes-fake-it-tools-in-clickfix-attacks/

#cybersecurity

Cisco Webex reports Client-Side remote code execution vulnerability
#cybersecurity #infosec #advisory #ransomware
https://beyondmachines.net/event_details/cisco-webex-reports-client-side-remote-code-execution-vulnerability-o-m-m-h-6/gD2P6Ple2L

#Food #retail giant behind several major #US #supermarket #brands confirms #data stolen in major #ransomware breach

https://www.techradar.com/pro/security/food-retail-giant-behind-several-major-us-supermarket-brands-confirms-data-stolen-in-major-ransomware-breach

"Le Groupe 3R a été victime d’une intrusion informatique et d’un vol de données pouvant potentiellement occasionner une utilisation frauduleuse au détriment des patients.

Le Groupe 3R appelle l’ensemble de la patientèle de ses centres d’imagerie romands à la vigilance face à des contacts suspects qui pourraient survenir prochainement."

https://www.groupe3r.ch/fr/incident-de-securite-informatique-5030/

"Le Groupe 3R a été victime d’une intrusion informatique, avec vol de données et demande de rançon. L’incident a été immédiatement signalé à l'Office fédéral de la cybersécurité (OFCS) et une plainte pénale déposée. Conformément aux recommandations de la Confédération, le Groupe 3R a décidé de refuser de payer la rançon exigée."

https://www.groupe3r.ch/fr/le-groupe-3r/actualites/suite-a-un-vol-de-donnees-le-groupe-3r-appelle-les-patients-de-ses-centres-dimagerie-romands-a-la-prudence-5040/

#CyberVeille #Suisse #ransomware

Halcyon: Airport Retailer Faces $6.9M Lawsuit Settlement Following Ransomware Attack https://www.halcyon.ai/blog/airport-retailer-faces-6-9m-lawsuit-settlement-following-ransomware-attack #cybersecurity #infosec #ransomware

#AholdDelhaize confirms data theft after #INC #ransomware claims attack

https://www.bleepingcomputer.com/news/security/ahold-delhaize-confirms-data-theft-after-inc-ransomware-claims-attack/

#groceries #cybersecurity #DataBreach

#KRITIS Sektor #IT und #TK

Huge #ransomware campaign targets #AWS S3 storage: attackers have thousands of keys

"A massive database of over 1,200 unique #Amazon Web Services (AWS) access keys has been amassed and #exploited in a ransomware campaign. Administrators of exposed AWS S3 buckets are finding their files encrypted except for a ransom note demanding payment in bitcoin."
https://cybernews.com/security/aws-cloud-storage-bucket-ransomware-attacks/

https://www.europesays.com/2004370/ Australia’s cyber sector grows amid increasing attack risks #australia #Australia(Australian) #CriticalInfrastructure #CyberAttacks #DataProtection #DigitalTransformation #GenderDiversity #investment #NationalSecurity #ransomware #Transparency

SpyCloud, from yesterday: Exposed Credentials & Ransomware Operations: Using LLMs to Digest 200K Messages from the Black Basta Chats https://spycloud.com/blog/digesting-messages-from-the-black-basta-chats/ @spycloud #cybersecurity #infosec #ransomware

"The attack impacted some of the agency’s operations, including vehicle inspection stations, email and help desk services."

"The agency has released several updates since the attack, stating that it has no evidence of a data breach. In other words, the DEQ claims that, despite the incident, threat actors haven’t managed to exfiltrate any hosted data."

Bitdefender: Oregon Agency Officials Deny Breach Claim https://www.bitdefender.com/en-us/blog/hotforsecurity/hackers-say-they-breached-oregon-agency-officials-deny-the-claim #cybersecurity #infosec #databreach #ransomware