EN, Search Security Resources and Information from TechTarget

News brief: KillSec, Yurei score successful ransomware attacks

<p>Ransomware gangs and strains come and go, and some reemerge stronger than ever.</p>
<p>Take the BlackCat ransomware gang, for example. It <a target=”_blank” href=”https://www.darkreading.com/cyberattacks-data-breaches/blackcat-goes-dark-again-reportedly-rips-off-change-healthcare-ransom” rel=”noopener”>shuttered operations</a> in March 2024 following an exit scam. Or LockBit, a ransomware gang that <a href=”https://www.techtarget.com/searchsecurity/news/366571377/LockBit-restores-servers-following-law-enforcement-takedown”>revived itself</a> days after law enforcement <a href=”https://www.techtarget.com/searchsecurity/news/366570614/Operation-Cronos-dismantles-LockBit-ransomware-gang”>took the group down</a>.</p>
<div class=”ad-wrapper ad-embedded”>
<div id=”halfpage” class=”ad ad-hp”>
<script>GPT.display(‘halfpage’)</script>
</div>
<div id=”mu-1″ class=”ad ad-mu”>
<script>GPT.display(‘mu-1’)</script>
</div>
</div>
<p>Then there are variants that just won’t stop — building off their predecessors with stronger, more resilient attack techniques. Also using LockBit as an example, it first emerged in 2019 and has just recently evolved into <a target=”_blank” href=”https://www.vectra.ai/blog/lockbit-is-back-whats-new-in-version-5-0″ rel=”noopener”>LockBit 5.0</a>, “boasting faster encryption, stronger evasion and a revamped affiliate program.”</p>
<p>This week’s featured articles cover an old and a new ransomware group, as well as the reemergence of &nbsp;Petya in a potential new strain.</p>
<section class=”section main-article-chapter” data-menu-title=”KillSec ransomware attacks Brazilian healthcare provider”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>KillSec ransomware attacks Brazilian healthcare provider</h2>
<p>On Sept. 8, the KillSec ransomware group attacked MedicSolution, a Brazilian healthcare software provider. It threatened to leak 34 GB of sensitive data, including more than 94,000 files containing lab results, X-rays and patient records.</p>
<p>The breach originated from insecure AWS S3 buckets, with the window of exposure potentially going back several months. MedicSolution provides cloud services to numerous medical practices, putting healthcare organizations at risk. Affected patients have not been

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.

This article has been indexed from Search Security Resources and Information from TechTarget

Read the original article: