Search Results: revil

Notorious Ransomware Gang REvil Reportedly Taken Down By Russian Authorities

Russia's FSB says it arrested more than a dozen members of the REvil ransomware operation and seized nearly $7 million in assets.

January 14, 2022 Zachary Comeau Leave a Comment

Russia says it has shut down the REvil ransomware gang, arrested several individuals and seized a total of about $7 million from the well-organized cybercrime operation that has plagued businesses in the U.S. and abroad for years. In a press release, the FSB, Russia’s principal security agency, says it carried out the operation at the […]

McAfee Enterprise Sees Proliferation of REvil and DarkSide Ransomware Surge in Q2 2021

October 4, 2021 TechDecisions Staff Leave a Comment

Key Findings In Q2 2021, 73% of ransomware detections in Q2 2021 were related to the REvil/Sodinokibi family DarkSide Q2 ransomware attacks extended beyond Oil, Gas and Chemical sector to Legal Services, Wholesale and Manufacturing Government was the sector most targeted by ransomware Financial Services targeted most among reported cloud incidents SAN JOSE, Calif.–(BUSINESS WIRE)–McAfee […]

Cybersecurity Firm Releases Universal Decryption Key For REvil Victims

Bitdefender has made available a free universal decryption key for victims of REvil/Sodinokibi that had data encrypted before July 13.

September 17, 2021 Zachary Comeau Leave a Comment

Cybersecurity software provider Bitdefender has made available a free universal decryption key for victims of REvil/Sodinokibi ransomware that had their data encrypted by hackers using the ransomware variant before July 13. According to the company, the key was created in collaboration with a “trusted law enforcement partner” and can help victims restore their files and […]

Who is REvil and What Do They Do?

REvil, the notorious ransomware gang behind the JBS SA & Kaseya ransomware attacks are requesting some of the largest payments as of late.

July 14, 2021 Alyssa Borelli Leave a Comment

REvil, the notorious ransomware gang behind the JBS SA & Kaseya ransomware attacks are requesting some of the largest payments as of late.

Why Active Directory Attack Paths are the Secret to Many Successful Ransomware Attacks

By gaining control of an organization’s AD, the adversary seizes the power to deploy ransomware to all systems through several mechanisms.

January 19, 2022 Andy Robbins Leave a Comment

It’s no secret that most major enterprises across the globe use Microsoft Active Directory (AD) for identity and access management. This ubiquity is also one of the predominant reasons AD is such a popular and attractive target for adversaries. What remains a mystery to many enterprises, however, is how adversaries – including the malicious actors […]

FBI: Don’t Insert USB Drives That Suspiciously Arrive In The Mail

Organizations should be on the lookout for suspicious USB drives that arrive in the mail, as they may contain ransomware, FBI says.

January 10, 2022 Zachary Comeau Leave a Comment

Organizations in the transportation, defense and insurance industries should be on the lookout for suspicious USB drives that arrive in the mail, as they may contain malicious payloads and ransomware. According to a new FBI alert obtained by CNN, The Record, Bleeping Computer and other publications, the ransomware group FIN7—the same group behind the BlackMatter […]

This New Ransomware Strain Uses Safe Mode, Remote Desktop Tools

Sophos details new ransomware family that leverages Safe Mode and IT management tools to maintain persistence in victim networks.

December 22, 2021 Zachary Comeau Leave a Comment

Ransomware remains the top cybersecurity concern for businesses around the world, with new strains and operators popping up routinely, including one detailed by cybersecurity firm Sophos that leverages Safe Mode on target computers to disable third-party drivers and endpoint protection products. In a post and a series of tweets, the company introduces the IT community […]

Threat Actors Find Honeypot of Insecurely Exposed Services Within 24 Hours

Threat actors find 80% of misconfigured and exposed services in public cloud within 24hrs as part of Unit 42's global honeypot.

November 30, 2021 Alyssa Borelli Leave a Comment

Security researchers from Unit 42, the research arm of cybersecurity firm Palo Alto Networks, set out a honeypot infrastructure of 320 nodes globally to better understand the attacks against exposed services in public clouds, and  80% of the 320 honeypots were compromised within the first 24. According to the company’s report, all honeypots were compromised […]

Report: $590 Million Suspicious Ransomware Payments Over First Half Of 2021

The value of suspicious activity reports related to ransomware payments during the first six months of 2021 has already exceeded last year's.

October 18, 2021 TD Staff Leave a Comment

According to a new report from the U.S. Department of the Treasury on suspicious activity reports (SARs) filed by financial institutions, the value of suspicious activity reports filed related to ransomware payments during the first six months of the year has already exceeded the value reported for all of last year. The department’s Financial Trend […]

Amazon Unveils Black Friday-Worthy Deals Earlier Than Ever, Giving Customers Access to Incredible Holiday Savings Now Across Every Category

October 4, 2021 TechDecisions Staff Leave a Comment

Customers can shop early and save big with Black Friday-worthy deals available today—epic deals can be found across every category with incredible discounts on top brands, the season’s must-have products, and a wide selection from small businesses and handmade artisans Amazon revealed its biggest-ever selection of holiday gift guides, including the popular Holiday Toy List, […]