【ニュース】

◆The Week in Ransomware - May 7th 2021 - Attacking healthcare (BleepingComputer, 2021/05/07 18:13)
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-may-7th-2021-attacking-healthcare/

【関連まとめ記事】

◆全体まとめ
　◆資料・報告書 (まとめ)

◆The Week in Ransomware (まとめ)
https://malware-log.hatenablog.com/entry/The_Week_in_Ransomware

【詳細】

■2021年5月3日 (月)

◆Health care giant Scripps Health hit by ransomware attack (BleepingComputer, 2021/05/03 19:33)
https://www.bleepingcomputer.com/news/security/health-care-giant-scripps-health-hit-by-ransomware-attack/
⇒ https://malware-log.hatenablog.com/entry/2021/05/03/000000_5

◆N3TW0RM ransomware emerges in wave of cyberattacks in Israel (BleepingComputer, 2021/05/03 17:46)

Ransomware: N3TW0RM

https://www.bleepingcomputer.com/news/security/n3tw0rm-ransomware-emerges-in-wave-of-cyberattacks-in-israel/

◆New Nitro Ransomware variant (MalwareHunterTeam(Twitter), 2021/05/03)

Ransomware: Nitro

https://twitter.com/malwrhunterteam/status/1389281716460789760

◆New Galaxy Ransomware (Yelisey Boguslavskiy, 2021/05/03)

Ransomware: Galaxy

https://twitter.com/y_advintel/status/1389330275616710657

◆New Henry Ransomware (dnwls0719, 2021/05/03)

Ransomware: Henry

https://twitter.com/fbgwls245/status/1389397964741771266

■2021年5月4日 (火)

◆New WastedLocker variant (dnwls0719 (Twitter), 2021/05/04)

Ransomware: WastedLocker

https://twitter.com/fbgwls245/status/1389734218477936640

◆New Toxin Ransomware sold on hacker forums (3xp0rt(Twitter), 2021/05/04)

Ransomware: Toxin

https://twitter.com/3xp0rtblog/status/1389698905051385856

◆New STOP Ransomware variant (Michael Gillespie(Twitter), 2021/05/04)

Ransomware: STOP

https://twitter.com/demonslay335/status/1389987539059159046

◆Cuba Ransomware Group on a Roll (Global Threat Center, 2021/04)

Ransomware: Cuba

https://shared-public-reports.s3-eu-west-1.amazonaws.com/Cuba+Ransomware+Group+-+on+a+roll.pdf
⇒ https://malware-log.hatenablog.com/archive/2021/04/30

◆They Told Their Therapists Everything. Hackers Leaked It All (Wired, 2021/05/04 07:00)
https://www.wired.com/story/vastaamo-psychotherapy-patients-hack-data-breach/
⇒ https://malware-log.hatenablog.com/entry/2021/05/04/000000_3

■2021年5月6日 (木)

◆A student pirating software led to a full-blown Ryuk ransomware attack (BleepingComputer, 2021/05/06 12:08)

Ransomware: Ryuk

https://www.bleepingcomputer.com/news/security/a-student-pirating-software-led-to-a-full-blown-ryuk-ransomware-attack/

◆Darkside Ransomware (2021/05/06)

Ransomware: Darkside

http://chuongdong.com/reverse%20engineering/2021/05/06/DarksideRansomware/

■2021年5月7日 (金)

◆Data leak marketplaces aim to take over the extortion economy (BleepingComputer, 2021/05/07 08:16)
[データリークマーケットプレイスは、恐喝経済を引き継ぐことを目的としています]

Cybercriminals are embracing data-theft extortion by creating dark web marketplaces that exist solely to sell stolen data.
[サイバー犯罪者は、盗んだデータを販売するためだけにダークウェブ市場を立ち上げ、データ窃盗の強要を行っています]

https://www.bleepingcomputer.com/news/security/data-leak-marketplaces-aim-to-take-over-the-extortion-economy/

◆Cuba Ransomware partners with Hancitor for spam-fueled attacks (BleepingComputer, 2021/05/07 05:00)
[キューバ・ランサムウェアがHancitor社と提携し、スパムを利用した攻撃を開始]

The Cuba Ransomware gang has teamed up with the spam operators of the Hancitor malware to gain easier access to compromised corporate networks.
[キューバ・ランサムウェア・ギャングは、Hancitorマルウェアのスパム業者と手を組み、感染した企業ネットワークへのアクセスを容易にしています。]

Ransomware: Cuba

https://www.bleepingcomputer.com/news/security/cuba-ransomware-partners-with-hancitor-for-spam-fueled-attacks/

◆New GoNNaCry ransomware (dnwls0719(Twitter), 2021/05/07)

Ransomware: GoNNaCry
拡張子: .GoNNaCry

https://twitter.com/fbgwls245/status/1390519322326360065

◆Insurer AXA halts ransomware crime reimbursement in France (abcNEWS, 2021/05/07 07:04)
https://abcnews.go.com/Technology/wireStory/insurer-axa-halts-ransomware-crime-reimbursement-france-77540351