Category: Ryuk Ransomware

First is the news related to Russian hackers infiltrating an email account of a British Member of Parliament to steal intelligence. According to the sources reporting to Cybersecurity Insiders, threat actors, probably funded by Kremlin, hacked the email account of Stewart McDonald via a spear-phishing act.

The MP belonging to the Scottish National Party (SNP) witnessed suspicious behavior on his personal email account and launched an investigation to find the truth. NCSC is busy finding evidence on foreign indulgence, while Parliament’s cybersecurity team has confirmed that a foreign state launched the attack.

Second is the news related to the leak of sensitive details belonging to over 20 million users created between the time frame of 2011 and 2019. The database from which the data leaked belongs to background checking service Instant Checkmate and TruthFinder, both business units of PeopleConnect and the leak details are already available on ‘Have I Been Pawned’ of Troy Hunt.

Third is the news belonging to the Food delivery service titled Weee! News is out that the Asian and Hispanic grocery store in North America suffered a sophisticated cyber attack through which personal info of over 1.1 million customers was accessed/leaked.

Weee! was notified of the incident when a hacker named ‘IntelBroker’ posted the accessed details on a data breach forum.

Fourth is the news related to a Russian national founded guilty in a US Court. According to DoJ, Denis Mihaqlovic Dunikov,30, arrested in Netherlands in August last year, was found guilty of laundering funds in connection with Ryuk Ransomware attacks. Denis, the co-founder of Coyote Crypto and Eggchange, was found guilty of laundering funds on the darknet and holding scams, fraud shops and connections with ransomware operators, thus earning millions as a fee for arbitration. Last sentence is due to be pronounced on April 21st of this year.

Fifth is the news belonging to the German Kitchen brand Hafele that became a victim of a ransomware attack and had to shut down its systems worldwide. However, the company is having an efficient business continuity plan in place and so is likely to recover from the incident by the third week of this month.

Vesuvius, a metal extraction firm from Britain, is trending on the news headlines of Google for becoming a victim of a cyber incident that could expose a portion of data to hackers. And as a precautionary measure, the molten metal flow business dealer has shut down its IT systems until further notice.

 

The post Cyber Attack news headlines trending on Google appeared first on Cybersecurity Insiders.

France-based Dordogne Groupements Hospitaliers de Territoire (Dordogne GHT) has stopped RYUK Ransomware attack on its servers by using the AI propelled DarkTrace Threat monitoring and detection solution.

DarkTrace offers Antigena, an autonomous response technology against cyber threats such as ransomware attacks.

And in the year 2021, Dordongne GHT, a healthcare service provider from France, chose DarkTrace Antigena to protect its entire corporate network of medical devices and computers from cyber risks.

Just after 2 months of deployment, the RYUK ransomware group, a notorious gang of malware spreading criminals, suspected to be funded by Russian intelligence, targeted the healthcare company that has.

RYUK steals data from its victim’s database and locks down access to it with encryption until a ransom is paid. Interestingly, this gang of cyber crooks is also known to target backup systems meant to recover information and resources at the time of the disaster.

DarkTrace Antigena immediately blocked the RYUK ransomware invasion of Dordogne GHT without the need of any human intervention. It immediately involved an intelligent action to enforce normal operations, eventually stopping the attack.

If the solution was absent, then the company would have suffered severe losses and sometimes could have resulted in patient death. As most of the IT systems in the hospitals could have been inactive, thus making the doctors and medical practitioners helpless in prescribing the right treatment and medicine.

Note- UK based Cybersecurity Company Darktrace, that has over 30 offices worldwide, is the only business that enables IT infrastructure to learn ways to defend themselves from threats lurking in the cyber landscape. And it does so by employing Artificial Intelligence technology into its threat monitoring and mitigation services.

 

The post Artificial Intelligence blocks RYUK Ransomware invasion appeared first on Cybersecurity Insiders.