DarkSide ransomware

BlackByte Stormous Ransomware

CISA, FBI Post Ransomware Alert Ahead of Holiday Weekend

| | cisa, DarkSide ransomware, FBI alert, Ransomware, REvil ransomware
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have observed an increase in highly impactful ransomware attacks occurring on holidays and weekends—when offices are normally closed—in the United States as ...
Security Boulevard
Ransomware Gangs and the Name Game Distraction

Ransomware Gangs and the Name Game Distraction

| | Babuk ransomware, Bitpaymer, BlackMatter ransomware, cerber, CrowdStrike, Cryptolocker, DarkSide ransomware, Doppelpaymer, Dridex, Emsisoft, Evgeniy Mikhailovich Bogachev, Evil Corp., Fabian Wosar, Gameover ZeuS, gandcrab, Grief ransomware, Indrik Spider, Mark Arena, Ransomware, REvil ransomware, TA505, The Business Club, WastedLocker, zeus
It's nice when ransomware gangs have their bitcoin stolen, malware servers shut down, or are otherwise forced to disband. We hang on to these occasional victories because history tells us that most ...
Krebs on Security
Justice Dept. Claws Back $2.3M Paid by Colonial Pipeline to Ransomware Gang

Justice Dept. Claws Back $2.3M Paid by Colonial Pipeline to Ransomware Gang

| | A Little Sunshine, Colonial Pipeline, DarkSide ransomware, Elliptic, Ne'er-Do-Well News, Nicholas Weaver, Ransomware, rEvil, Sodinokibi, Tom Robinson, U.S. Department of Justice
The U.S. Department of Justice said today it has recovered $2.3 million worth of Bitcoin that Colonial Pipeline paid to ransomware extortionists last month. The funds had been sent to DarkSide, a ...
Krebs on Security
Introducing RDP Inferences

Introducing RDP Inferences

| | Alert AA21-131A, Announcements, APT39, APT40, Corelight Labs, Crowbar, DarkSide ransomware, Duo, Emotet, encrypted traffic, encrypted traffic collection, JA3, Matrix ransomware, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, Palo Alto Networks, RDP, RDPBCGR, Richard Bejtlich, rsa, RSAConference, Vern Paxson, Zeek, Zscaler
By Anthony Kasza, Technical Director, Corelight Corelight recently released a new package, focused on RDP inferences, as part of our Encrypted Traffic Collection. This package runs on Corelight Sensors and provides network ...
Bright Ideas Blog
Try This One Weird Trick Russian Hackers Hate

Try This One Weird Trick Russian Hackers Hate

| | Allison Nixon, Colonial Pipeline ransomware attack, Cybereason, DarkSide ransomware, FBI, Lance James, Microsoft Windows, Ransomware, rEvil, Security Tools, Sodinokibi, Twitter, Unit221B
In a Twitter discussion last week on ransomware attacks, KrebsOnSecurity noted that virtually all ransomware strains have a built-in failsafe designed to cover the backsides of the malware purveyors: They simply will ...
Krebs on Security
DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

| | Avaddon, BitMix, Colonial Pipeline ransomware attack, DarkSide ransomware, Intel 471, Ne'er-Do-Well News, Ransomware, rEvil, XSS
The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. The ...
Krebs on Security
A Closer Look at the DarkSide Ransomware Gang

A Closer Look at the DarkSide Ransomware Gang

| | A Little Sunshine, Colonial Pipeline ransomware attack, Coveware, DarkSide ransomware, Flashpoint, Intel 471, Ransomware
The FBI confirmed this week that a relatively new ransomware group known as DarkSide is responsible for an attack that caused Colonial Pipeline to shut down 5,550 miles of pipe, stranding countless ...
Krebs on Security