The Week in Ransomware - December 24th 2021 - No rest for the weary
December 24th 2021
Rook ransomware is yet another spawn of the leaked Babuk code
A new ransomware operation named Rook has appeared recently on the cyber-crime space, declaring a desperate need to make "a lot of money" by breaching corporate networks and encrypting devices.
Global IT services provider Inetum hit by ransomware attack
As first reported by Valéry Marchive, less than a week before the Christmas holiday, French IT services company Inetum Group was hit by a ransomware attack that had a limited impact on the business and its customers.
Noberus/ALPHV/BlackCat attacking during Christmas
It's not uncommon for ransomware gangs to take a bit of time off during the holidays. However, looks like BlackCat affiliates are continuing to work through the holidays.
ALPHV BlackCat - This year's most sophisticated ransomware
The new ALPHV ransomware operation, aka BlackCat, launched last month and could be the most sophisticated ransomware of the year, with a highly-customizable feature set allowing for attacks on a wide range of corporate environments.
The ransomware executable is written in Rust, which is not typical for malware developers but is slowly increasing in popularity due to its high performance and memory safety.
MalwareHunterTeam found the new ransomware and told BleepingComputer that the first ID Ransomware submission for the new operation was on November 21st.
There is a very interesting new Rust coded ransomware (first ITW?), BlackCat.
— MalwareHunterTeam (@malwrhunterteam) December 8, 2021
Another one used to encrypt companies' networks.
Already seen some victims from different countries, from the second half of past November.
Also look at that UI. Back to '80s?
@demonslay335 @VK_Intel pic.twitter.com/YttzWWUD3c
Android banking trojan spreads via fake Google Play Store page
An Android banking trojan targeting Itaú Unibanco, a large financial services provider in Brazil with 55 million customers globally, is using a fake Google Play store to spread to devices.
- December 24, 2021
- 10:27 AM
- 0
Get lifetime access to this huge cybersecurity course library for $59
Infosec4TC provides all the training you could ever need, with 90 courses covering every major topic and exam. Lifetime Platinum Membership is worth $999, but you can sign up today for just $58.65 using the festive promo code MERRY15.
- December 24, 2021
- 07:26 AM
- 0
That's it for this week! Hope everyone has a nice weekend!
Related Articles:
The Week in Ransomware - December 10th 2021 - Project CODA
Global IT services provider Inetum hit by ransomware attack
ALPHV BlackCat - This year's most sophisticated ransomware
The Week in Ransomware - December 17th 2021 - Enter Log4j
Kronos ransomware attack may cause weeks of HR solutions downtime
No comments:
Post a Comment