Tootfinder

Opt-in global Mastodon full text search. Join the index!

@kubikpixel@chaos.social
2026-02-05 07:00:06

»Schweizer Unternehmen Trisa AG Opfer der LYNX Ransomware? AI-gestützte Angriffe auf AWS binnen Minuten erfolgreich«
— von @…
Ich gehe mal davon aus, dass AWS (Amazon) sich wider raus redet. Denn anscheinend sei ihr Host falsch von Konden konfiguriert zu sein. Anderseits, weshalb benötigt man Daten um Zähne zu putzen & Haare zu kämmen? Die KI Angriffe…

Schweizer Unternehmen Trisa AG Opfer der LYNX Ransomware? AI-gestützte Angriffe auf AWS binnen Minuten erfolgreich
Die in der Schweiz beheimatete Trisa AG ist als Gruppe im Bereich der Mund- (Zahnbürsten), Haar- (Bürsten) und Schönheitspflege unterwegs. Mir vorliegenden Berichten soll das Unternehmen Opfer der…

@heiseonline@social.heise.de
2026-02-06 10:27:09

Wenn Cybercrime zeigt, dass wirklich niemand verschont bleibt. 🫠 Ein Ransomware-Angriff auf die Werkstatt Bremen hat auch Auswirkungen auf die IT-Systeme der polizeilichen Beweisstückstelle.
Zum Artikel: heise.de/-11165825?wt_mc=sm.re

Im Bild sieht man eine Hand an einer Tastatur. Im Bild steht: "Tatwerkzeuge sicher, Computer nicht IT-Angriff trifft Beweisstückstelle der Polizei in Bremen" darunter steht: "Nach einem Ransomware-Angriff auf die Werkstatt Bremen ist auch die IT der polizeilichen Beweisstückstelle betroffen. Die Staatsanwaltschaft hat Ermittlungen aufgenommen."
@newsie@darktundra.xyz
2026-03-05 18:13:32

Phobos ransomware leader facing 20 years in prison after pleading guilty to hacking charges therecord.media/phobos-ransomw

Phobos ransomware leader facing 20 years in prison after pleading guilty to hacking charges
Ptitsyn and several others began using the Phobos ransomware in November 2020, attacking more than 1,000 organizations around the world. He was arrested in South Korea and extradited in November 2024.

@metacurity@infosec.exchange
2026-02-05 14:35:08

Check out today's Metacurity for the most crucial infosec developments you should know, including
--Italy says it foiled Russian cyberattacks on foreign ministries, Olympics websites,
--NFL deploys cyber squad to secure Super Bowl,
--ShinyHunters takes credit for UPenn and Harvard attacks,
--Ransomware gangs are exploiting high-severity VMware ESXi sandbox escape vulnerability,
--Canada Computers & Electronics breach reached 1,300,
--SystemBC malwar…

Italy says it foiled Russian cyberattacks on foreign ministries, Olympics websites
NFL deploys cyber squad to secure Super Bowl, ShinyHunters takes credit for UPenn and Harvard attacks, Ransomware gangs are exploiting high-severity VMware ESXi sandbox escape vulnerability, Canada Computers & Electronics breach reached 1,300, SystemBC malware affects 10K IP addresses, much more

@kubikpixel@chaos.social
2026-02-04 07:45:10

»Ransomware-Angriffe in der DACH-Region steigen deutlich:
Die Bedrohung durch Ransomware wächst weiter. Kaspersky registrierte 2025 in Deutschland 384 Angriffe – ein deutlicher Anstieg im Vergleich zu 233 im Jahr 2024.«
Betreffen kann dies uns alle aber das min die E-Mails kryptografisch signiert sind wenn nicht verschlüsselt, wäre ein Punkt mehr für mehr Sicherheit und setzt nicht blind ua auf Microschrott.
🔓

Ransomware-Angriffe in der DACH-Region steigen deutlich
Die Bedrohung durch Ransomware wächst weiter. Kaspersky registrierte 2025 in Deutschland 384 Angriffe – ein deutlicher Anstieg im Vergleich zu 233 im Jahr 2024.

@metacurity@infosec.exchange
2026-02-03 18:11:21

CISA updated ransomware intel on 59 bugs last year without telling defenders
theregister.com/2026/02/03/gre

CISA updated ransomware intel on 59 bugs last year without telling defenders
: GreyNoise's Glenn Thorpe counts the cost of missed opportunities

@Techmeme@techhub.social
2026-02-26 14:20:42

Total on-chain ransomware payments fell 8% YoY to $820M in 2025, despite a record 50% rise in claimed victims; the median payment grew 368% YoY to nearly $60K (Chainalysis)
chainalysis.com/blog/crypto-ra

Crypto Ransomware: 2026 Crypto Crime Report
In 2025, total on-chain ransomware payments fell by approximately 8% to $820 million in 2025, even as claimed attacks rose 50%.

@thoralf@soc.umrath.net
2026-01-30 08:36:12

"Opfer der Sicarii-Ransomware sollten besser kein Lösegeld zahlen. Die Daten lassen sich aufgrund eines Fehlers ohnehin nicht mehr entschlüsseln."
Schöne neue Welt. 🤦
golem.de/news/vibe-coding-verd

Vibe-Coding-Verdacht: Ransomware-Panne mündet in totalem Datenverlust - Golem.de
Opfer der Sicarii-Ransomware sollten besser kein Lösegeld zahlen. Die Daten lassen sich aufgrund eines Fehlers ohnehin nicht mehr entschlüsseln.

@newsie@darktundra.xyz
2026-02-06 12:04:13

Romania’s oil pipeline operator confirms cyberattack as hackers claim data theft therecord.media/romania-conpet

Romania’s oil pipeline operator confirms cyberattack as hackers claim data theft
Romania’s national oil pipeline operator Conpet said a cyberattack disrupted parts of its technology infrastructure and knocked its website offline earlier this week, adding that oil transport operations were not affected.

@gwire@mastodon.social
2026-02-06 14:40:30

The US federal government might consider decriminalising ransomware in order to help shore up Bitcoin.

@metacurity@infosec.exchange
2026-02-03 12:06:58

This is a neat event that DOE hosts every year: A full-scale cyber training event designed to strengthen U.S. energy grid resilience on Plum Island, New York, across an 840-acre grid that mirrors real utility environments.

DOE’s Liberty Eclipse simulates ransomware and stealth attacks to prepare utilities for real-world grid cyber threats - Industrial Cyber
DOE’s Liberty Eclipse simulates ransomware and stealth attacks to prepare utilities for real-world grid cyber threats, build resilience.

@heiseonline@social.heise.de
2026-01-01 17:15:15

Etwas mehr der heute besonders häufig geteilten #News:
39C3: CCC-Hacker fordern Bundesdatensicherungsspiele gegen Ransomware-Albträume

39C3: CCC-Hacker fordern Bundesdatensicherungsspiele gegen Ransomware-Albträume
Vom Cyberdome zu „AI Slop“: Experten analysieren den Status quo der IT-Sicherheit und enthüllen eine nahe Zukunft, in der Backups Leistungssport werden dürften.

@cdarwin@c.im
2026-02-25 19:55:16

Conduent Data Breach Notification Letters Sent to Millions
as Ransomware Group Claims
⚡️ 8 Terabytes Stolen in One of the Largest U.S. Incidents.
Letters began reaching affected individuals this month detailing a major data breach at #Conduent Business Services, LLC,
a government technology contractor that processes payments, healthcare claims, and back-office services for clients n…

Conduent Data Breach - Largest Data Breach in U.S. History As Ransomware Group Stolen 8 TB of Data
Conduent Data Breach Notification Letters Sent to Millions as Ransomware Group Claims 8 Terabytes Stolen in One of the Largest U.S. Incidents.

@macandi@social.heise.de
2026-01-23 14:01:00

Fertiger Luxshare: Ransomware-Gruppe will Apple-Daten erbeutet haben
Neben Foxconn ist Luxshare Precision mittlerweile einer der wichtigsten Produzenten von Apple-Hardware. Dort soll es einen Datenabfluss gegeben haben.

Fertiger Luxshare: Ransomware-Gruppe will Apple-Daten erbeutet haben
Neben Foxconn ist Luxshare Precision mittlerweile einer der wichtigsten Produzenten von Apple-Hardware. Dort soll es einen Datenabfluss gegeben haben.

@heiseonline@social.heise.de
2026-01-02 06:15:21

Noch einige der zuletzt hier besonders häufig geteilten #News:
39C3: CCC-Hacker fordern Bundesdatensicherungsspiele gegen Ransomware-Albträume

39C3: CCC-Hacker fordern Bundesdatensicherungsspiele gegen Ransomware-Albträume
Vom Cyberdome zu „AI Slop“: Experten analysieren den Status quo der IT-Sicherheit und enthüllen eine nahe Zukunft, in der Backups Leistungssport werden dürften.

@kubikpixel@chaos.social
2026-01-30 10:55:07

»Vibe-Coding-Verdacht — Ransomware-Panne mündet in totalem Datenverlust:
Opfer der Sicarii-Ransomware sollten besser kein Lösegeld zahlen. Die Daten lassen sich aufgrund eines Fehlers ohnehin nicht mehr entschlüsseln.«
Nun ja ist eben so und alles andere als überraschend. Ich frage mich weshalb immer noch Firmen attackiert werden, lassen die ihre Fenster offen?!??
🤷

Vibe-Coding-Verdacht: Ransomware-Panne mündet in totalem Datenverlust - Golem.de
Opfer der Sicarii-Ransomware sollten besser kein Lösegeld zahlen. Die Daten lassen sich aufgrund eines Fehlers ohnehin nicht mehr entschlüsseln.

@metacurity@infosec.exchange
2026-02-04 15:21:37

You won't want to miss today's insanely packed Metacurity for the latest news across the cybersecurity sectors, including
--Russian space vehicles are tapping comms from key European satellites, report,
--Incognito Market operator sentenced to 30 years,
--CISA silently tweaked CVEs used for ransomware attacks,
--Russian hackers reportedly disabled critical Ukraine military registration platforms,
--Hackers and trolls are targeting ICE spotting apps,

Russian space vehicles are tapping comms from key European satellites, report
Incognito Market operator sentenced to 30 years, CISA silently tweaked CVEs used for ransomware attacks, Russian hackers reportedly disabled critical Ukraine military registration platforms, Hackers and trolls are targeting ICE spotting apps, Coinbase confirms new insider breach, more

@newsie@darktundra.xyz
2026-03-02 19:23:13

University of Hawaiʻi Cancer Center confirms data leak following ransomware attack therecord.media/university-of-

University of Hawaiʻi Cancer Center confirms data leak following ransomware attack
Part of the breach was traced back to a Multiethnic Cohort (MEC) Study established in 1993, which used driver’s license numbers and voter registration records to recruit participants.

@metacurity@infosec.exchange
2026-02-26 14:20:33

Ransomware payments dropped in 2025 as attack numbers reached record levels: Chainalysis
therecord.media/ransomware-pay

Ransomware payments dropped in 2025 as attack numbers reached record levels: Chainalysis
The rate at which ransomware victims paid cybercriminals fell last year while the overall number of attacks ballooned, Chainalysis found.

@Techmeme@techhub.social
2025-12-30 18:30:36

Two ex-staffers of cybersecurity incident response companies Sygnia and DigitalMint plead guilty to targeting US companies in 2023's BlackCat ransomware attacks (Sergiu Gatlan/BleepingComputer)
bleepingcomputer.com/news/secu<…

@deepthoughts10@infosec.exchange
2025-12-09 03:35:48

Picus Security, an interesting security vendor I only recently became aware of, has a report out on the Fog Ransomware group. An easy protective control to put in place based on this group's TTPs is to block *.netlify.app. This is the domain used by Netlify's free tier apps and is being abused. Note that most legitimate business customers of Netlify will use their own domains to access Netlify apps, so blocking their free tier domain is not likely to impact your users.

Fog Ransomware 2025: Deep Dive into TTPs
Fog ransomware is a dynamic cyber threat employing APT-like TTPs, double-extortion, and a sophisticated multi-stage infection lifecycle.

@johnleonard@mastodon.social
2026-01-30 11:43:34

This time we look at why you may not be able to hand your household chores over to robots just yet, Delhi Police’s dystopian turn and Japan’s biggest port under ransomware attack.
computing.co.uk/news/2026/are-

Are you ready for the humanoid robot bubble? - Asian Tech Roundup

@toooobeeee@social.linux.pizza
2026-01-28 14:06:35

Ich teile mal hier diese interessante Diskussion auf administrator.de #administrator #cybersecurity #depol

Cybervorfälle - Doch nicht in meiner Stadt!
Ich erhalte immer wieder tiefe Einblicke in die IT-Austattungen von Schulen und Verwaltungen in ganz Deutschland. Sehr oft sehr unschöne Zustände....

@metacurity@infosec.exchange
2025-12-30 12:16:13

theguardian.com/technology/202
“S-RM now claims the UK’s largest cyber-incident response team. Its first-responder service is comprised of about 150 experts world…

‘Why should we pay these criminals?’: the hidden world of ransomware negotiations
Cybersecurity experts reveal what they do for high-profile clients targeted by hackers such as Scattered Spider

@newsie@darktundra.xyz
2025-12-30 16:53:29

Ransomware responders plead guilty to using ALPHV in attacks on US organizations therecord.media/ransomware-res

Ransomware responders plead guilty to using ALPHV in attacks on US organizations
Two Americans who worked for incident response firms face up to 20 years in prison for turning ransomware upon U.S. businesses.

@newsie@darktundra.xyz
2026-02-26 13:28:46

Ransomware payments dropped in 2025 as attack numbers reached record levels: Chainalysis therecord.media/ransomware-pay

Ransomware payments dropped in 2025 as attack numbers reached record levels: Chainalysis
The rate at which ransomware victims paid cybercriminals fell last year while the overall number of attacks ballooned, Chainalysis found.

@heiseonline@social.heise.de
2026-01-26 21:05:00

Nike prüft möglichen Cyberangriff
Eine Ransomware-Bande behauptet, Daten von Nike erbeutet zu haben. Das Unternehmen untersucht den Vorfall. Angeblich wurden auch Designprototypen gestohlen.
he…

Nike prüft möglichen Cyberangriff
Eine Ransomware-Bande behauptet, Daten von Nike erbeutet zu haben. Das Unternehmen untersucht den Vorfall. Angeblich wurden auch Designprototypen gestohlen.

@newsie@darktundra.xyz
2026-01-02 17:43:28

Sedgwick confirms cyber incident affecting its major federal contractor subsidiary therecord.media/sedgwick-cyber

Sedgwick confirms cyber incident affecting its major federal contractor subsidiary
The claims administration company Sedgwick confirmed that a subsidiary that contracts with a handful of sensitive federal agencies is dealing with a cybersecurity incident.

@metacurity@infosec.exchange
2026-02-26 13:06:12

This takes cojones, if true.
A Moscow resident has been accused of trying to extort money from the notorious Conti ransomware group by posing as an officer of Russia’s Federal Security Service (FSB).
therecord.media/moscow-man-acc

Moscow man accused of posing as FSB officer to extort Conti ransomware gang
A Moscow resident has been accused of trying to extort money from the notorious Conti ransomware group by posing as an officer of Russia’s Federal Security Service, according to local media reports.

@mia@hcommons.social
2026-02-13 17:19:59

On ransomware and under-funded GLAMs: 'At no point was the British Library particularly negligent or unprepared. Instead, it was hindered by vulnerabilities shared by the majority of cultural institutions. In this respect, the attack doesn’t just represent an isolated failure – it’s a warning to the whole sector.'

@heiseonline@social.heise.de
2025-12-24 09:18:00

Cybersicherheit: Von Ninjas, die durchs Dachfenster kommen – bei offenen Türen
Ransomware, KI-Spear-Phishing und Angst im Mittelstand: Zac Warren, Chief Security Advisor bei Tanium, über die aktuelle Lage – und Besonderheiten in der EU.

Cybersicherheit: Von Ninjas, die durchs Dachfenster kommen – bei offenen Türen
Ransomware, KI-Spear-Phishing und Angst im Mittelstand: Zac Warren, Chief Security Advisor bei Tanium, über die aktuelle Lage – und Besonderheiten in der EU.

@donelias@mastodon.cr
2026-01-13 16:56:19

Ransomware: software que secuestra sus datos.
Randomware: software que hace lo que le da la gana y secuestra sus esperanzas.
#shitpost

@newsie@darktundra.xyz
2025-12-29 20:03:35

Two more banks notifying thousands of victims about Marquis Software ransomware attack therecord.media/banks-marquis-

Two more banks notifying thousands of victims about Marquis Software ransomware attack
Two banks have informed regulators in Maine that recent data breaches were sourced back to a cyberattack on Marquis Software.

@metacurity@infosec.exchange
2025-12-20 17:24:38

Ukrainian national Artem Aleksandrovych Stryzhak pleaded guilty to his role in launching Netflix ransomware attacks. He faces a maximum penalty of ten years in prison.
justice.gov/opa/pr/ukrainian-n

Ukrainian National Pleads Guilty to Conspiracy to Use Nefilim Ransomware to Attack Companies in the United States and Other Countries
A Ukrainian national pleaded guilty today to one count of conspiracy to commit computer fraud for his role in a series of international ransomware attacks.

@publicvoit@graz.social
2026-01-10 12:54:31

In 2025, the top 5 known exploited vulnerability (#KEV) vendors as of cyble.com/blog/cisa-kev-2025-e were:
Microsoft (39)
<…

2025 CISA KEV Catalog Hits 1,484 Exploited Vulnerabilities
CISA KEV added 245 flaws in 2025, raising total known exploited vulnerabilities to 1,484 and highlighting rising ransomware risks.

@newsie@darktundra.xyz
2026-02-23 11:03:55

Ransomware gangs advancing Moscow’s geopolitical aims, Romanian cyber chief warns therecord.media/ransomware-gan

Ransomware gangs advancing Moscow’s geopolitical aims, Romanian cyber chief warns
Recent ransomware attacks targeting Romania’s critical infrastructure were likely part of a broader Russian hybrid operation aimed at undermining the country’s stability, Romania’s top cybersecurity official said.

@newsie@darktundra.xyz
2026-02-24 13:58:09

UAE claims it stopped ‘terrorist’ ransomware attack therecord.media/uae-claims-it-

UAE claims it stopped ‘terrorist’ ransomware attack
The country’s Cyber Security Council published a statement on Saturday that said they “successfully thwarted organized cyberattacks of a terrorist nature that targeted the country’s digital infrastructure and vital sectors in an attempt to destabilize the nation and disrupt essential services.”

@metacurity@infosec.exchange
2026-01-13 13:28:18

Yet another major Korean cyber incident
Kyowon Group shuts down internal network after suspected ransomware attack
koreajoongangdaily.joins.com/n

Kyowon Group shuts down internal network after suspected ransomware attack
Kyowon Group said on Monday it had shut down parts of its internal network after detecting what it believes to be a ransomware attack and is investigating whether any customer data was compromised.

@newsie@darktundra.xyz
2026-02-24 11:33:58

North Korean state hackers seen using Medusa ransomware in attacks on US, Middle East therecord.media/north-korean-h

North Korean state hackers seen using Medusa ransomware in attacks on US, Middle East
Cybersecurity researchers said they saw Medusa attacks launched by members of Lazarus — a well-known North Korean hacking operation housed within the country’s military — against a company in the Middle East and a healthcare organization in the U.S.

@metacurity@infosec.exchange
2026-01-26 14:37:43

A lot happened over the weekend. Check out today's Metacurity for the most critical infosec developments you might have missed, including
--Proposed Israeli cyber law calls for cyber incident reporting in real time,
--Russia is likely the source of wiper malware that targeted Poland's energy sector,
--Russian national pleads guilty to targeting 50 victims with ransomware,
--DPRK group Konni is targeting blockchain engineers with malware,
--Critical flaw i…

Proposed Israeli cyber law calls for cyber incident reporting in real time
Russia is likely the source of wiper malware that targeted Poland's energy sector, Russian national pleads guilty to targeting 50 victims with ransomware, DPRK group Konni is targeting blockchain engineers with malware, Critical flaw in Solana's validator client fixed, much more

@newsie@darktundra.xyz
2026-02-19 15:08:42

Ransomware gang threatens Cheyenne and Arapaho Tribes after shutting down schools therecord.media/cheyenne-arapa

Ransomware gang threatens Cheyenne and Arapaho Tribes after shutting down schools
The government of the Cheyenne and Arapaho Tribes in Oklahoma is being extorted by cybercriminals after a ransomware attack shut down its schools and critical systems in January.

@newsie@darktundra.xyz
2025-12-22 13:18:15

Romanian national water agency hit by BitLocker ransomware attack therecord.media/romania-nation

Romanian national water agency hit by BitLocker ransomware attack
Workstations and servers at Romania's water agency have been disrupted by a ransomware incident, but officials said critical infrastructure was still operating normally.

@newsie@darktundra.xyz
2025-12-22 15:28:40

Nefilim ransomware hacker pleads guilty to computer fraud therecord.media/nefilim-ransom

Nefilim ransomware hacker pleads guilty to computer fraud
A Ukrainian national pleaded guilty in U.S. federal court to one charge stemming from attacks using Nefilim ransomware on companies in the U.S., Canada and Australia.

@newsie@darktundra.xyz
2026-02-17 19:33:55

Polish police detain alleged cybercriminal with Phobos ransomware ties therecord.media/poland-phobos-

Polish police detain alleged cybercriminal with Phobos ransomware ties
A 47-year-old man was arrested by Polish police for his alleged involvement with the Phobos ransomware operation.

@metacurity@infosec.exchange
2026-01-28 11:48:52

Great little story here about how a small town in Spain was hit with a ransomware attack, with the attackers demanding $5,000 in Bitcoin.
The town told the obviously small-time cybercriminals to go pound sand because they had sufficient backups to restore everything.
cryptopolitan…

@metacurity@infosec.exchange
2026-02-18 14:45:16

So much infosec news, so little time. Check out today's Metacurity for the most critical cybersecurity developments you need to know, including
--ID documents for billionaires and top pols at Abu Dhabi conference were exposed online,
--Angola journalist was hacked with Intellexa spyware,
--Poland arrests Phobos ransomware affiliate,
--Severe flaw found in Dell RecoverPoint for Virtual Machine,
--Hacker who paid only a penny for a luxury hotel room was busted …

ID documents for billionaires and top politicians at Abu Dhabi conference were exposed online
Angola journalist was hacked with Intellexa spyware, Poland arrests Phobos ransomware affiliate, Severe flaw found in Dell RecoverPoint for Virtual Machine, Hacker who paid only a penny for a luxury hotel room busted in Spain, Oz financial technology company YouX suffered a massive breach, much more

@newsie@darktundra.xyz
2026-02-19 23:28:18

Leading Japanese semiconductor supplier responding to ransomware attack therecord.media/leading-japane

Leading Japanese semiconductor supplier responding to ransomware attack
The company said it detected unusual activity within its IT environment on Sunday and activated incident response protocols and isolated the impacted systems.

@newsie@darktundra.xyz
2026-02-25 11:28:33

Moscow man accused of posing as FSB officer to extort Conti ransomware gang therecord.media/moscow-man-acc

Moscow man accused of posing as FSB officer to extort Conti ransomware gang
A Moscow resident has been accused of trying to extort money from the notorious Conti ransomware group by posing as an officer of Russia’s Federal Security Service, according to local media reports.

@metacurity@infosec.exchange
2026-01-20 14:21:06

Don't miss today's Metacurity for a concise round-up of the most critical infosec developments you should know, including
--UK's NCSC warns of Russian-aligned hacktivist groups,
--UK and China enter a forum to discuss cyberattacks,
--Makina Finance lost $4.2m in an exploit,
--Ingram Micro report ransomware attack affecting 42k,
--Minnesota DHS breach affected 304k,
--SK Telecom appeals $91m fine,
--NexShield malvertising campaign crashes b…

UK's NCSC warns of Russian-aligned hacktivist groups
UK and China enter a forum to discuss cyberattacks, Makina Finance lost $4.2m in an exploit, Ingram Micro report ransomware attack affecting 42k, Minnesota DHS breach affected 304k, SK Telecom appeals $91m fine, NexShield malvertising campaign crashes browsers, much more

@newsie@darktundra.xyz
2026-02-23 17:03:28

Air Côte d'Ivoire confirms cyberattack following ransomware claims therecord.media/air-cote-divoi

Air Côte d'Ivoire confirms cyberattack following ransomware claims
Air Côte d'Ivoire did not respond to requests for comment but released a statement on Friday confirming reports that hackers had breached its systems on February 8. Last week, the INC ransomware gang claimed it stole 208 GB of data from the airline.

@newsie@darktundra.xyz
2026-02-09 14:18:55

Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack therecord.media/payment-tech-p

Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack
BridgePay Network Solutions initially warned customers on Friday that it was dealing with system-wide outages and later said that it was working with the FBI and U.S. Secret Service forensic team to resolve a ransomware attack.

@metacurity@infosec.exchange
2026-01-09 15:22:08

It's finally Friday, so before you stop working for the week, check out today's Metacurity for the most crucial cybersecurity developments you should know, including
--Trump cuts off US access to organizations seeking to strengthen cybersecurity,
--Prisoner swap sends alleged ransomware payment negotiator back to Russia,
--CISA retires ten emergency directives at once,
--Cambodian cybercrime kingpin extradited to China,
--Fugitive wanted for Desjardins br…

Trump ends US participation in organizations devoted to stronger cybersecurity
Prisoner swap sends alleged ransomware payment negotiator back to Russia, CISA retires ten emergency directives at once, Cambodian cybercrime kingpin extradited to China, Fugitive wanted for Desjardins breach arrested in Spain, Trans activists hacked Free Speech Union, much more

@newsie@darktundra.xyz
2026-01-13 15:48:27

Suspected ransomware attack threatens one of South Korea’s largest companies therecord.media/kyowon-group-s

Suspected ransomware attack threatens one of South Korea’s largest companies
Kyowon Group, a conglomerate owned by one of South Korea's richest people, is the latest company there to report suspicious cyber activity to authorities.

@metacurity@infosec.exchange
2025-12-09 12:08:51

The NHS Barts Health Hospital wants to legally ban the publication, use, or sharing of data stolen by the Clop gang by anyone.
bankinfosecurity.com/uk-hospit

@newsie@darktundra.xyz
2025-12-08 21:18:20

More than $2 billion in payments from 4,000 ransomware incidents reported to Treasury in recent years therecord.media/fincen-treasur

More than $2 billion in payments from 4,000 ransomware incidents reported to Treasury in recent years
The Treasury Department’s Financial Crimes Enforcement Network (FinCEN) released a study last week covering 4,194 ransomware incidents that were reported through the Bank Secrecy Act over the three-year period.

@metacurity@infosec.exchange
2025-12-22 14:21:44

My sister used to teach courses for the University of Phoenix. Ugh.
University of Phoenix data breach impacts nearly 3.5 million individuals
bleepingcomputer.com/news/secu

University of Phoenix data breach impacts nearly 3.5 million individuals
The Clop ransomware gang has stolen the data of nearly 3.5 million University of Phoenix (UoPX) students, staff, and suppliers after breaching the university's network in August.

@metacurity@infosec.exchange
2025-12-19 12:08:39

"Ryan Clifford Goldberg, a former incident response supervisor at Sygnia Consulting Ltd., and Kevin Tyler Martin, who was a ransomware negotiator for DigitalMint, pleaded guilty to one count each of conspiracy to interfere with commerce by extortion."

@metacurity@infosec.exchange
2026-01-15 07:17:28

Apparently ransomware hackers are stealing people now.

@metacurity@infosec.exchange
2026-01-19 12:02:49

Seems like the funeral industry in Korea has failed to meet its cybersecurity requirements. Gotta wonder if this is true everywhere. (not that most organizations aren't bad at cyber -- they are -- but haven't read much about the funeral industry).
Exclusive: Funeral Industry Faces Security Gaps as Top Firms Lack Key Certifications

Exclusive: Funeral Industry Faces Security Gaps as Top Firms Lack Key Certifications
Exclusive: Funeral Industry Faces Security Gaps as Top Firms Lack Key Certifications Despite managing sensitive data of millions, funeral companies remain exempt from information security regulations, raising concerns over data protection and ransomware risks

@newsie@darktundra.xyz
2026-01-29 13:38:36

Notorious Russia-based RAMP cybercrime forum apparently seized by FBI therecord.media/notorious-russ

Notorious Russia-based RAMP cybercrime forum apparently seized by FBI
RAMP was used by Russian, Chinese and English-speaking cybercriminals and particularly catered to ransomware groups and their affiliates.

@metacurity@infosec.exchange
2025-12-15 14:21:36

Check out today's Metacurity for the most critical infosec developments you might have missed over the weekend, including
--Trump to hand some offsec ops against adversaries to the private sector, report,
--Canada to probe billboard facial recognition use,
--Pope Leo weighs in on Italian spyware scandal,
--Oracle bug led to theft of sensitive NHS docs,
--Coupang founder will go MIA at parliamentary hearing,
--Asahi will change cyber posture after ransom…

Trump to hand some offsec ops against adversaries to the private sector, report
Canada to probe billboard facial recognition use, Pope Leo weighs in on Italian spyware scandal, Oracle bug led to theft of sensitive NHS docs, Coupang founder will go MIA at parliamentary hearing, Asahi will change cyber posture after ransomware attack, Apple issues emergency updates, much more

@newsie@darktundra.xyz
2025-12-17 21:58:46

FBI takes down alleged money laundering service for ransomware groups therecord.media/fbi-takes-down

FBI takes down alleged money laundering service for ransomware groups
According to a DOJ announcement, the exchange E-Note was used to process funds stolen by criminals in cyberattacks on healthcare entities and critical infrastructure, among other targets.

@metacurity@infosec.exchange
2026-01-13 14:55:18

So much cybersecurity news, so little time. Check out today's Metacurity for a quick run-down of the most crucial infosec developments you should know today, including
--Hackers claim to be selling Target's internal source code,
--Poland thwarted power system cyberattack,
--Hackers accessed the systems of Spanish energy provider Endesa and Energía XXI,
--Personal finance platform Betterment was hacked through third-party,
--Dutch national sentenced to sev…

Hackers claim to be selling Target's internal source code
Poland thwarted power system cyberattack, Hackers accessed the systems of Spanish energy provider Endesa and Energía XXI, Personal finance platform Betterment was hacked through third-party, Dutch national sentenced to seven years for hacking, Korea's Kyowon Group hit with ransomware, much more

@newsie@darktundra.xyz
2026-02-09 19:08:45

Senegal confirms breach of national ID card department after ransomware claims therecord.media/senegal-breach

Senegal confirms breach of national ID card department after ransomware claims
A cybersecurity incident affecting the government of Senegal has forced the closure of an office tasked with managing sensitive information, including national ID cards, passports and other biometric data.