Security News > 2020 > April > ‘Double Extortion’ Ransomware Attacks Spike
Victims of ransomware attacks now face a double whammy of headaches.
The ransomware tactic, call "Double extortion," first emerged in late 2019 by Maze operators - but has been rapidly adopted over the past few months by various cybercriminals behind the Clop, DoppelPaymer and Sodinokibi ransomware families.
A November 2019 ransomware attack against Allied Universal, a large American security staffing company, set the precedent for "Double extortion." After the company was hit by a Maze ransomware attack, and refused to cough up the 300 Bitcoin ransom, the attackers threatened to use sensitive information extracted from Allied Universal's systems, as well as stolen email and domain name certificates, for a spam campaign impersonating Allied Universal.
Attackers using the Sodinokibi ransomware have created a "Happy Blog" where they have recently published details of ransomware attacks on 13 targets, as well as company information stolen from the targeted organizations.
"With their focus on coronavirus patients, addressing a double extortion ransomware attack would be very difficult. We issue caution to hospitals and large organization, surging them to back up their data and educate their staff."
News URL
https://threatpost.com/double-extortion-ransomware-attacks-spike/154818/
Related news
- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks (source)
- Embargo ransomware escalates attacks to cloud environments (source)
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Ransomware attack forces UMC Health System to divert some patients (source)
- Underground ransomware claims attack on Casio, leaks stolen data (source)
- Casio confirms customer data stolen in a ransomware attack (source)
- Schools bombarded by nation-state attacks, ransomware gangs, and everyone in between (source)
- BianLian ransomware claims attack on Boston Children's Health Physicians (source)
- Microsoft: Ransomware Attacks Growing More Dangerous, Complex (source)
- Tech giant Nidec confirms data breach following ransomware attack (source)