Security News
Cactus ransomware has been exploiting critical vulnerabilities in the Qlik Sense data analytics solution to get initial access on corporate networks. In a recent report, cybersecurity company Arctic Wolf warns of Cactus ransomware actively exploiting these flaws on publicly-exposed Qlik Sense instances that remain unpatched.
The Black Basta ransomware group has reportedly generated upwards of $100 million in revenue since it started operations in April 2022. Black Basta is believed to be a ransomware offshoot of the former Conti group, assembled before its closure in May 2022.
A CACTUS ransomware campaign has been observed exploiting recently disclosed security flaws in a cloud analytics and business intelligence platform called Qlik Sense to obtain a foothold into...
Russia-linked ransomware gang Black Basta has raked in at least $100 million in ransom payments from more than 90 victims since it first surfaced in April 2022, according to joint research from Corvus Insurance and Elliptic. Over 329 victims worldwide were targeted by the cybercrime operation in double extortion attacks where the gang's affiliates steal sensitive data from compromised systems before deploying ransomware payloads across the targets' networks to encrypt hacked systems.
A variant of a ransomware strain known as DJVU has been observed to be distributed in the form of cracked software. "While this attack pattern is not new, incidents involving a DJVU variant that...
The Qilin ransomware group has claimed responsibility for a cyber attack on Yanfeng Automotive Interiors, one of the world's largest automotive parts suppliers. The Qilin ransomware group, also known as "Agenda," claimed the attack on Yanfeng by adding them to their Tor data leak extortion site yesterday.
International logistics giant DP World has confirmed that data was stolen during a cyber attack that disrupted its operations in Australia earlier this month. "DP World Australia's investigation has confirmed that the incident was confined to the Australian operations and did not impact any other markets where DP World operates," DP World told BleepingComputer.
Slovenian power generation company Holding Slovenske Elektrarne has been hit by ransomware and has had some of its data encrypted. HSE is a state-owned company that controls numerous hydroelectric, thermal and coal-fired power plants.
A few low-level stragglers remain on the loose, but biggest fish have been hooked International law enforcement investigators have made a number of high-profile arrests after tracking a major...
Law enforcement and judicial authorities from seven countries have joined forces with Europol and Eurojust to dismantle and apprehend in Ukraine key figures behind significant ransomware operations. More than 20 investigators from Norway, France, Germany and the United States were deployed to Kyiv to assist the Ukrainian National Police with their investigative measures.