fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

The Week In Ransomware – January 8th 2021 – $150 Million

The Week In Ransomware – January 8th 2021 – $150 Million

Even though the holidays are over in many countries, it has been a very quiet week for ransomware. Unfortunately, ransomware activity will likely pick up shortly.

This week’s biggest news was China APT hackers starting to use ransomware and Ryuk bitcoin wallets indicating they have earned $150 million in ransom payments.

We also had victims, such as Dassault Jet and TransLink, disclosing data breaches after ransomware attacks earlier this year. Other than that, it was your standard release of new variants of existing ransomware.

Contributors and those who provided new ransomware information and stories this week include: @Ionut_Ilascu@demonslay335@FourOctets@Seifreed@struppigel@VK_Intel@fwosar@malwrhunterteam@jorntvdw@PolarToffee@LawrenceAbrams@BleepinComputer@serghei@malwareforme@DanielGallagher@siri_urz@cPeterr@PogoWasRight@ValeryMarchive@IntelAdvanced@hyasinc@CheckPointSW@ProferoSec@GelosSnake@SecurityJoes@vxunderground@GrujaRS@0x4143, and @Emm_ADC_Soft.

January 2nd 2021

Apex Laboratory confirms ransomware attack; only recently discovered data theft

DataBreaches.net recently reported that Apex Laboratory Inc. had apparently been attacked by DoppelPaymer ransomware threat actors. Apex was added to their  leak site on December 15.

January 4th 2021

TransLink confirms ransomware data theft, still restoring systems

Metro Vancouver’s transportation agency TransLink has confirmed that the Egregor ransomware operators who breached its network at the beginning of December 2020 also accessed and potentially stole employees’ banking and social security information.

China’s APT hackers move to ransomware attacks

Security researchers investigating a set of ransomware incidents at multiple companies discovered malware indicating that the attacks may be the work of a hacker group believed to operate on behalf of China.

Also Read: EU GDPR Articles: Key For Business Security And Success

Male chastity belt ransomware discovered

Yeah, this is real. Keeps you, uh, locked up unless you pay a ransom.

New In-dev Sharp Ransomware

GrujaRS found the new in-development Sharp ransomware that appends the .0x0M4R extension to encrypted files.

New Knot Ransomware

MalwareHunterTeam found the new Knot Ransomware that appends the .encrypted extension to encrypted files.

January 5th 2021

Babuk Locker is the first new enterprise ransomware of 2021

It’s a new year, and with it comes a new ransomware called Babuk Locker that targets corporate victims in human-operated attacks.

Ryuk ransomware is the top threat for the healthcare sector

Healthcare organizations continue to be a prime target for cyberattacks of all kinds, with ransomware incidents, Ryuk in particular, being more prevalent.

New COVID21 MBRLocker

S!ri found a new MBRLocker calling itself Covid21.

Covid21

New HiddenTear ransomware variant

GrujaRS found a new HiddenTear variant that appends the .ZIEBF_4561drgf extension.

New Makop ransomware variant

GrujaRS found a new Makop ransomware variant that appends the .moloch extension.

January 6th 2021

Anti-Secrecy Activists Publish a Trove of Ransomware Victims’ Data

FOR YEARS, RADICAL transparency-focused activists like WikiLeaks have blurred the line between whistle-blowing and hacking. Often, they’ve published any data they consider to be of public interest, no matter how questionable the source. But now one leak-focused group is mining a controversial new vein of secrets: the massive caches of data stolen by ransomware crews and dumped online when victims refuse to pay.

January 7th 2021

Ryuk ransomware Bitcoin wallets point to $150 million operation

Security researchers following the money circuit from Ryuk ransomware victims into the threat actor’s pockets estimate that the criminal organization made at least $150 million.

FBI warns of Egregor ransomware extorting businesses worldwide

The US Federal Bureau of Investigation (FBI) has sent a security alert warning private sector companies that the Egregor ransomware operation is actively targeting and extorting businesses worldwide.

New Solaso Ransomware

0x4143 found the new Solaso Ransomware that appends the .solaso extension and drops a ransom note named __READ_ME_TO_RECOVER_YOUR_FILES. It may be a variant of the ‘Encrp ransomware.’

Also Read: Data Protection Framework: Practical Guidance for Businesses

January 8th 2021

Dassault Falcon Jet reports data breach after ransomware attack

Dassault Falcon Jet has disclosed a data breach that may have led to the exposure of personal information belonging to current and former employees, as well as their spouses and dependents.

New Bonsoir ransomware

Emmanuel_ADC-Soft found the new Bonsoir Ransomware that appends the .bonsoir and drops a ransom note named HOW-RECOVER-MY-FILES.txt.

New Niros Ransomware

S!ri found the new Niros Ransomware.

Niros

That’s it for this week! Hope everyone has a nice weekend!

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us