We saw another ransomware operation shut down this week after first getting breached by law enforcement and then targeting critical infrastructure, putting them further in the spotlight of the US government.
While the Tor onion domain seizure was a game of tug of war between the FBI and BlackCat, instead of shutting down, the ransomware gang decided to continue operating and vowed to target US critical infrastructure in revenge.
According to an affiliate, Optum, Change Healthcare's parent company and a subsidiary of UnitedHealth, paid a $22 million ransom to the ransomware operation to prevent the leaking of stolen data and to receive a file decryptor.
It is only a matter of time before we see the ransomware operation rebrand under a new name to repeat this cycle.
Finally, the Swiss government also warned that 65,000 of its documents were leaked as part of a Play ransomware attack on Xplain.
March 4th 2024 BlackCat ransomware turns off servers amid claim they stole $22 million ransom.
The ALPHV/BlackCat ransomware gang has shut down its servers amid claims that they scammed the affiliate responsible for the attack on Optum, the operator of the Change Healthcare platform, of $22 million.
PCrisk found new STOP ransomware variants that append the.
The BlackCat ransomware gang is pulling an exit scam, trying to shut down and run off with affiliates' money by pretending the FBI seized their site and infrastructure.
GhostSec's joint ransomware operation and evolution of their arsenal.
Talos observed the GhostSec and Stormous ransomware groups operating together to conduct several double extortion attacks using the GhostLocker and StormousX ransomware programs against the victims in Cuba, Argentina, Poland, China, Lebanon, Israel, Uzbekistan, India, South Africa, Brazil, Morocco, Qatar, Turkiye, Egypt, Vietnam, Thailand and Indonesia according to our assessment of the disclosure messages posted by the group in their Telegram channels and Stormous ransomware data leak site.
Duvel Moortgat Brewery was hit by a ransomware attack late last night, bringing to a halt the beer production in the company's bottling facilities.
Switzerland: Play ransomware leaked 65,000 government documents.
The National Cyber Security Centre of Switzerland has released a report on its analysis of a data breach following a ransomware attack on Xplain, disclosing that the incident impacted thousands of sensitive Federal government files.
Optum's Change Healthcare has started to bring systems back online after suffering a crippling BlackCat ransomware attack last month that led to widespread disruption to the US healthcare system.
GhostSec's joint ransomware operation and evolution of their arsenal New Makop ransomware variant.
Capita, company providing UK's nuclear submarine training, confirms 'cyber incident' New MedusaLocker ransomware variants.
Trans-Northern Pipelines investigating ALPHV ransomware attack claims.
BlackCat ransomware turns off servers amid claim they stole $22 million ransom.
Ransomware gang claims they stole 6TB of Change Healthcare data.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Sat, 09 Mar 2024 15:40:24 +0000