In recent news, CDW Technology, a technology service provider, has fallen victim to the LockBit ransomware. The cybercriminals behind the attack are demanding a staggering $80 million to release the compromised systems. Reports indicate that CDW’s staff has offered only $1 million for a decryption key, but negotiations have been unsuccessful so far. A forensic investigation is underway, and further updates are anticipated.
The court systems in Kansas, including Sedgwick County, have been forced to resort to pen and paper due to a suspected ransomware attack. While the disruption is acknowledged by Kansas Judge Phil Journey, it is still under investigation and not officially labeled as a cyber-attack. Some online submissions may experience delays, impacting the efficiency of digital analysis and case processing.
Colonial Pipeline, a major fuel pipeline operator, has faced rumors of a ransomware attack. However, the company has denied any service disruptions and labeled the claims as false. A ransomware group called Ransomed.vc released some data allegedly siphoned from an Excel file, but its value appears to be insignificant.
A criminal group known as Void Rabisu, also known by aliases UNC2596, Tropical Scorpius, and Storm-0978, has targeted women leaders in the European Union. This Cuba ransomware-linked gang is launching attack campaigns to distribute the PEAPOD malware, capable of collecting intelligence and wiping data when necessary. The targets are women political leaders who support Ukraine and have ties to North Korean intelligence for data exchange.
Security teams are urging companies that utilize Progress Software to patch their WS_FTP servers promptly. Ransomware groups, including Reichsadler Cybercrime Group, are exploiting vulnerabilities in Progress Software. These groups have been observed deploying ransomware on computer networks linked to the healthcare industry. Swift action and vigilance are crucial in preventing potential security breaches.
In conclusion, the