Malware

Japanese Manufacturer Yamabiko Targeted by Babuk Ransomware

Phil Muncaster reports: A ransomware group that claimed to be retiring after an audacious attack on Washington DC’s police department appears to be back in action after reportedly targeting a Japanese firm. Yamabiko, a Tokyo-headquartered manufacturer of power tools and agricultural and industrial machinery, was apparently added to the data leak site used by...

No: Volue ASA hit by Ryuk ransomware

Volue is Norwegian software company.  On May 5, they reportedly became a victim of a ransomware attack. In a statement on their site, they explained: Volue ASA was today subject to a cyber-attack impacting operation in some of the company’s business areas. Mitigating actions were immediately implemented. Currently, there seems to be limited impact...

“We are apolitical” — DarkSide threat actors

By now, probably everyone has heard about the Colonial Pipeline security incident that has been linked to threat actors known as DarkSide. On April 12, this site published an email chat with DarkSide. If you missed that chat write-up, you can read it here.  On May 8, after the mainstream media reported that the...

Es: IT services of the Oviedo City Council knocked out

Gonzalo Diaz-Rubin reports that all of the IT services of the Oviedo City Council have been crippled. Machine translation: A malicious program blocked access to servers and data and the municipal contractor has been forced to pull the rest of the support to stop the invasion. It is, according to municipal sources, a ransomware cyber-attack,...