Tag Archives: Ransomware

Ransomware infection at LG, data exfiltrated?

Posted on 2020-06-28 by guenni

[German]I have received information through various channels that the internationally active Korean company LG was the victim of a ransomware attack. The Maze Group is making a complaint and threatening to release sensitive data. Advertising

Posted in Security | Tagged , | Leave a comment
Advertising

Fake Ransomware Decryptor encrypts files again

Posted on 2020-06-08 by guenni

[German]Cyber criminals ostensibly offer a decryption tool for files encrypted by ransomware. If you use the STOP Divu Ransomware-Decryptor tool, the encrypted files are encrypted a second time. Advertising

Posted in Security, Windows | Tagged , | 1 Comment

Hacker attack on Sophos firewalls via 0-day exploit

Posted on 2020-05-26 by guenni

[German]Hackers have attempted to use a 0-day exploit in Sophos firewalls for attacks. However, the vendor responded quickly with a patch, and the attacks failed on updated systems. Advertising

Posted in Security | Tagged , | Leave a comment

Compromised SilkTide Cookie-Consent logo – Part 3

Posted on 2020-05-23 by guenni

[German]The compromised Amazon AWS S3 Buckets, which I addressed in the blog post Warning: Infected Cookie Consent logo delivers Ransomware seems delivering constantly new payloads via compromised files. Advertising

Posted in Security | Tagged , | Leave a comment

Compromised SilkTide Cookie-Consent Logo – Part 2

Posted on 2020-05-23 by guenni

[German]In the blog post Warning: Infected Cookie Consent logo delivers Ransomware I reported a few days ago about a logo file for a Cookie Consent solution on Amazon AWS that has been replaced by a malware script. Meanwhile I found … Continue reading

Posted in Security | Tagged , | Leave a comment
Advertising

City of Weiz (Austria): Computers infected with ransomware?

Posted on 2020-05-22 by guenni

[German]The group behind the ransomware NetWalker claim to have infiltrated the computer networks of the city of Weiz in Austria. Currently I only have two sources, but no confirmation from the city, on this subject. Advertising

Posted in Security | Tagged , | 5 Comments

Warning: Infected Cookie Consent logo delivers Ransomware

Posted on 2020-05-20 by guenni

[German]An immediate warning: It seems that cyber criminals has obtained an old (orphaned) Amazon AWS S3 bucked used some times ago to host a Cookie Consent solution. Now the Cookie Consent logo delivered from the Amazon CDN contains a malware/ransomware … Continue reading

Posted in Security | Tagged , | 2 Comments

News on the ransomware attack on Ludwigshafen supplier

Posted on 2020-05-15 by guenni

[German]New information about the attack by clop ransomware group on the energy supplier of Ludwigshafen, Technische Werke Ludwigshafen (TWL), has become public. Customer data was stolen in the ransomware attack and has now been published. Advertising

Posted in Security | Tagged , | Leave a comment
Advertising

Diebold Nixdorf victim of a Ransomware Attack

Posted on 2020-05-12 by guenni

[German]The ATM manufacturer Diebold Nixdorf has already fallen victim to a cyber attack with ransomware on April 25, 2020. This was reported by various media. Advertising

Posted in Security | Tagged , | Leave a comment

Clop Ransomware attack at Technische Werke Ludwigshafen

Posted on 2020-05-12 by guenni

[German]The power/energy supplier of Ludwigshafen, Technische Werke Ludwigshafen (TWL), was victim of a ransomware attack last week. Now the responsible Clop Ransomware Group has published captured customer data.  Advertising

Posted in Security | Tagged , | Leave a comment