San Francisco Muni Losing Over $550K Daily After Ransomware Attack

On November 25, 2016 San Francisco experienced a major ransomware attack that took down their Municipal Transportation Agency, also known as Muni. The ransomware took down over 2,000 Muni payment and scheduling systems. To accommodate the transportation needs of the San Francisco population, the city ordered all of the fare gates to be kept open. […]

Continue reading


Bigfork School District Paralyzed by Ransomware

Bigfork Schools located in Bigfork, Montana was recently infected with ransomware. The attack led the school’s files to be encrypted. School officials reported to the Billings Gazette that they hoped to have the files restored by this week to finish the grading period. The school did not disclose the ransom demand, or the malware variant […]

Continue reading


Locky Ransomware Spreads Through Facebook Messenger

Locky Ransomware Maneuvers Past Facebook Security Locky ransomware has wormed its way past the security features of Facebook Messenger. The malware is currently being spread by a malicious image link being sent through the messaging feature of the popular social media platform. Reports suggest Facebook is working to fix the issue. This all started with […]

Continue reading


Spencer Chamber of Commerce Infected With Ransomware

In August, ransomware paralyzed the Spencer Chamber of Commerce, in Iowa. The infection was isolated to the Chamber; however, all of the Chamber’s computers run off of one server. Meaning, the infection in that one server, spread to all Chamber computers. Luckily, the infection did not spread to other city departments. The ransomware variant that […]

Continue reading


Ransomware Riddles Texan Dermatology Clinic

Seguin Dermatology Clinic, located in Seguin, Texas was hit with ransomware last Friday. According to Express News, confidential data was breached. This includes names, social security numbers and billing codes for medical services. At this time, it is unknown how many patient records were accessed. However, the clinic did notify patients of the security breach […]

Continue reading


Over 18K Pension Plans Hacked and Held Ransom

According to BNA, cyber criminals gained access to a pension plans affiliated with Missouri-based Schnucks, Dierbergs Markets and Shop ‘n Save supermarkets.  This hack impacted over 18,000 files, although the information retrieved by the hackers is unknown.  Collin Reischman, a spokesman for United Food and Commercial Workers Local 655 in Ballwin, Missouri reported the organization has […]

Continue reading


New Ransomware Found – Russians Are Suspected Creators

New Ransomware, Telecrypt, Released Into the Wild A new ransomware variant was recently found.  BleepingComputer reported the variant, named Telecrypt, requires an internet connection to infect computers.  Telecrypt uses Telegram and command and control servers to execute its infection.  To infect PCs the ransomware requires a binary to launch.  Upon launch, and there is a confirmation process of […]

Continue reading


New Locky Ransomware Campaign Sends 14M Emails In Five Hours

14M Emails Infected With Locky Ransomware Another ransomware campaign was sent out on October 24th, distributing 14 million emails with Locky ransomware attached.  The email included a “complaint letter”, which of course was really ransomware.  Upon opening the attachment, the ransomware went to work encrypting user’s files.  The typical ransom demand made with Locky infections […]

Continue reading


Madison County Computers Inaccessible After Ransomware Attack

Update: After five days of battling to get systems back up and running, Madison County has paid the ransom demands to regain access.  Herald Bulletin reported, the county was encouraged to pay the ransom amount by their insurance provider, who paid the $28,000 demand.  The county was left paying the insurance deductible, along with $17,500 […]

Continue reading


1,000 Procedures Canceled at Three Hospitals After Computer Virus Runs Rampant

Update: As of November 2nd, NHS is still struggling to get their systems up and running as normal.  According to Graham Cluley, outpatient and diagnostic procedures were cancelled for today, with the exception of a few select services.  NHS Trust canceled all operations at three hospitals after a computer virus spread throughout their systems.  It has […]

Continue reading


Blocking Ransomware Scripts with Exchange Transport Rules

One of the current tactics ransomware authors are using to infect your network, is to send email attachments containing malicious scripts. These scripts are often VBScript (.vbs), Windows Script Files (wsf), or JavaScript (.js) files, and when executed, will download a DLL or EXE to spawn the infection. An example JavaScript which downloads and executes […]

Continue reading


Rainbow Children’s Clinic Looses Patient Files to Ransomware

A ransomware attack stuck three Rainbow Children’s Clinic locations in Texas in August.  Over 33,000 patients who have rendered services at these facilities, have had their information compromised.  The clinic is offering free credit monitoring services to those who have been impacted. Information Management reported some files have been completely lost due to the ransomware corruption.  […]

Continue reading


New Ransomware Encrypts Each File Seperately

CryPy ransomware takes the time to encrypt each file independently, to make decryption more difficult… Ransomware continues to evolve in various ways.  First, there was polymorphic ransomware, changing codes every few seconds to avoid detection from the traditional blacklist security software programs.  Then, there has been ransomware that will not only encrypt your data, but steal […]

Continue reading


Community Foundation Resolves Ransomware Attack to Find Data Breach

Hutchinson Community Foundation recovered from a ransomware attack, to find the criminals hacked their data too… On September 19, 2016, Hutchinson Community Foundation, in Hutchinson, Kansas, found out they had been hacked.  Not only had they been hacked, but they were hit a ransomware attack.  Ransomware is the malware that will encrypt users files, locking them until […]

Continue reading


Ransomware Protection : Major Opportunity for MSPs

MSPs, what protection are you offering your clients? Ransomware continues to spread at an epidemic level, and with that comes a need for an advanced security solution that includes ransomware protection.  From a Managed Service Provider (MSP) perspective, this is a massive opportunity to provide a higher level of protection to PC users.  MSPs provide various […]

Continue reading


NHS Remains Major Ransomware Target

The National Health Service remains the main ransomware target… NHS has been identified as the primary ransomware target for quite some time.  Several reports have suggested multiple ransomware attacks on the NHS, and a recent study suggests that won’t be slowing down anytime soon.  With a 400% increase in ransomware attacks, the NHS needs to […]

Continue reading


New Cyber Security Concern Threatens Privacy and Bank Account

The latest cyber security locks your files and steals your personal information… D0xware is the latest and arguably the most concerning form of malware to threaten PC users.  D0xware is a swift combination of personal data theft and ransomware rolled into one little package.  The malware will first encrypt your files, similar to ransomware.  Once […]

Continue reading


Two More Medical Facilities Infected With Ransomware

Ransomware infections are spreading from coast to coast… Marin Healthcare District Marin Healthcare District (MHD), located in Greenbrae, California was paralyzed after a ransomware attack that occurred in late July.  It is reported the infection stemmed from another attack that hit Marin Medical Practice Concepts in July as well.  MHD computers were down for a period […]

Continue reading


Free Decryptor Available For MarsJoke Ransomware Victims

MarsJoke, the ransomware targeting educational institutions and government agencies, can now be decrypted… Researchers have found the malware authors who created MarsJoke ransomware did nearly a perfect job, except for one little line of code.  This weak line of code allowed researchers to test several variants of decryption keys until a successful one was found.  According […]

Continue reading