The Latest Ransomware Craze – Holding MongoDB Databases Hostage

As if our jobs as IT admins isn’t difficult enough, hackers have taken to finding misconfigured MongoDB databases, and are holding them hostage, until a ransom has been paid. Similar to traditional ransomware, where files on a computer are encrypted until a fee has been paid, databases, are being held hostage, instead. The modus operandi […]

Continue reading


Four Months After Infection, Medical Facility Discloses Ransomware Attack

Ransomeware hit yet another medical facility.  On August 30, 2016, ransomware struck the Susan M. Hughes Center, impacted both office locations.  The Center is located in Glen Mills, Pennsylvania and Cherry Hill, New Jersey.  This attack impacted over 11,000 patient records.  However, the Center did not inform the patients of the security issue until late […]

Continue reading


LA Community College District Pays $28K to Retrieve Locked Files

The first publicized ransomware attack of 2017 is a hefty one! After returning to school after the holiday break, Los Angeles Valley College found their computer files were inaccessible.  It didn’t take long for the college to determine it was a malicious cyber attack that took down their systems.  According to The Washington Times, the school notified […]

Continue reading


Ransomware Offers Decryption Keys if Victim Educates Themselves on Cyber Security

Ransomware, malware that encrypts your files and holds them for ransom, has taken an interesting turn.  Typically after encryption, the cyber criminals make a payment demand in order for the decryption keys to be sent to the victim.  However, a new ransomware has hit the market that makes a slightly different demand. Ransomware Offers Free […]

Continue reading


Another California Medical Center Struck With Ransomware

Ransomware Strikes Another California Medical Center This has been a rough year for California medical institutions being victimized by ransomware.  Another medical facility, East Valley Community Health Center, located in West Covina was struck with ransomware in October of 2016.  Reports by Health Data Management state the facilities computer systems were fixed within a day of the […]

Continue reading


Why Ransomware Continues to Spread

2016 – The Year of Ransomware CIO from IDG recently published an article regarding the upswing our nation has seen in ransomware infections in 2016.  It is without a doubt, 2016 has been the year of ransomware.  However, very little headway has been made to prevent future infections.  It seems the common consensus is to throw […]

Continue reading


Ransomware Holds South Carolina Police Department Files Hostage

Mount Pleasant Police Department, located in South Carolina, were the most recent victims of a ransomware attack.  The infection took place on December 12, 2016.  According to Post and Courier, the law enforcement agency was able to restore their files using their backup systems.  Therefore, they did not end up paying the ransom demands. To […]

Continue reading


Howard County Crippled by Ransomware

Two separate malicious emails were sent to Howard County employees in November.  However, it was not the emails that were dangerous, but the “tracking slips” they downloaded within the malicious emails that led to a massive ransomware infection.  The Kokomo Perspective reported several employees were guilty of downloading these malicious attachments.  Post infection, over 33,000 […]

Continue reading


Carleton University Corrupted with Ransomware

Carleton University, located in Ontario, Canada was recently hit with ransomware. CBC News stated the extent of the attack is still unknown, as any system that gained access to the main network could’ve been impacted. The ransomware variant used to lock the schools files is not being reported. Current ransom demands for the decryption keys […]

Continue reading


San Francisco Muni Losing Over $550K Daily After Ransomware Attack

On November 25, 2016 San Francisco experienced a major ransomware attack that took down their Municipal Transportation Agency, also known as Muni. The ransomware took down over 2,000 Muni payment and scheduling systems. To accommodate the transportation needs of the San Francisco population, the city ordered all of the fare gates to be kept open. […]

Continue reading


Bigfork School District Paralyzed by Ransomware

Bigfork Schools located in Bigfork, Montana was recently infected with ransomware. The attack led the school’s files to be encrypted. School officials reported to the Billings Gazette that they hoped to have the files restored by this week to finish the grading period. The school did not disclose the ransom demand, or the malware variant […]

Continue reading


Locky Ransomware Spreads Through Facebook Messenger

Locky Ransomware Maneuvers Past Facebook Security Locky ransomware has wormed its way past the security features of Facebook Messenger. The malware is currently being spread by a malicious image link being sent through the messaging feature of the popular social media platform. Reports suggest Facebook is working to fix the issue. This all started with […]

Continue reading


Spencer Chamber of Commerce Infected With Ransomware

In August, ransomware paralyzed the Spencer Chamber of Commerce, in Iowa. The infection was isolated to the Chamber; however, all of the Chamber’s computers run off of one server. Meaning, the infection in that one server, spread to all Chamber computers. Luckily, the infection did not spread to other city departments. The ransomware variant that […]

Continue reading


Ransomware Riddles Texan Dermatology Clinic

Seguin Dermatology Clinic, located in Seguin, Texas was hit with ransomware last Friday. According to Express News, confidential data was breached. This includes names, social security numbers and billing codes for medical services. At this time, it is unknown how many patient records were accessed. However, the clinic did notify patients of the security breach […]

Continue reading


Over 18K Pension Plans Hacked and Held Ransom

According to BNA, cyber criminals gained access to a pension plans affiliated with Missouri-based Schnucks, Dierbergs Markets and Shop ‘n Save supermarkets.  This hack impacted over 18,000 files, although the information retrieved by the hackers is unknown.  Collin Reischman, a spokesman for United Food and Commercial Workers Local 655 in Ballwin, Missouri reported the organization has […]

Continue reading


New Ransomware Found – Russians Are Suspected Creators

New Ransomware, Telecrypt, Released Into the Wild A new ransomware variant was recently found.  BleepingComputer reported the variant, named Telecrypt, requires an internet connection to infect computers.  Telecrypt uses Telegram and command and control servers to execute its infection.  To infect PCs the ransomware requires a binary to launch.  Upon launch, and there is a confirmation process of […]

Continue reading


New Locky Ransomware Campaign Sends 14M Emails In Five Hours

14M Emails Infected With Locky Ransomware Another ransomware campaign was sent out on October 24th, distributing 14 million emails with Locky ransomware attached.  The email included a “complaint letter”, which of course was really ransomware.  Upon opening the attachment, the ransomware went to work encrypting user’s files.  The typical ransom demand made with Locky infections […]

Continue reading


Madison County Computers Inaccessible After Ransomware Attack

Update: After five days of battling to get systems back up and running, Madison County has paid the ransom demands to regain access.  Herald Bulletin reported, the county was encouraged to pay the ransom amount by their insurance provider, who paid the $28,000 demand.  The county was left paying the insurance deductible, along with $17,500 […]

Continue reading


1,000 Procedures Canceled at Three Hospitals After Computer Virus Runs Rampant

Update: As of November 2nd, NHS is still struggling to get their systems up and running as normal.  According to Graham Cluley, outpatient and diagnostic procedures were cancelled for today, with the exception of a few select services.  NHS Trust canceled all operations at three hospitals after a computer virus spread throughout their systems.  It has […]

Continue reading


Blocking Ransomware Scripts with Exchange Transport Rules

One of the current tactics ransomware authors are using to infect your network, is to send email attachments containing malicious scripts. These scripts are often VBScript (.vbs), Windows Script Files (wsf), or JavaScript (.js) files, and when executed, will download a DLL or EXE to spawn the infection. An example JavaScript which downloads and executes […]

Continue reading


Rainbow Children’s Clinic Looses Patient Files to Ransomware

A ransomware attack stuck three Rainbow Children’s Clinic locations in Texas in August.  Over 33,000 patients who have rendered services at these facilities, have had their information compromised.  The clinic is offering free credit monitoring services to those who have been impacted. Information Management reported some files have been completely lost due to the ransomware corruption.  […]

Continue reading


New Ransomware Encrypts Each File Seperately

CryPy ransomware takes the time to encrypt each file independently, to make decryption more difficult… Ransomware continues to evolve in various ways.  First, there was polymorphic ransomware, changing codes every few seconds to avoid detection from the traditional blacklist security software programs.  Then, there has been ransomware that will not only encrypt your data, but steal […]

Continue reading


Community Foundation Resolves Ransomware Attack to Find Data Breach

Hutchinson Community Foundation recovered from a ransomware attack, to find the criminals hacked their data too… On September 19, 2016, Hutchinson Community Foundation, in Hutchinson, Kansas, found out they had been hacked.  Not only had they been hacked, but they were hit a ransomware attack.  Ransomware is the malware that will encrypt users files, locking them until […]

Continue reading


Ransomware Protection : Major Opportunity for MSPs

MSPs, what protection are you offering your clients? Ransomware continues to spread at an epidemic level, and with that comes a need for an advanced security solution that includes ransomware protection.  From a Managed Service Provider (MSP) perspective, this is a massive opportunity to provide a higher level of protection to PC users.  MSPs provide various […]

Continue reading


NHS Remains Major Ransomware Target

The National Health Service remains the main ransomware target… NHS has been identified as the primary ransomware target for quite some time.  Several reports have suggested multiple ransomware attacks on the NHS, and a recent study suggests that won’t be slowing down anytime soon.  With a 400% increase in ransomware attacks, the NHS needs to […]

Continue reading


New Cyber Security Concern Threatens Privacy and Bank Account

The latest cyber security locks your files and steals your personal information… D0xware is the latest and arguably the most concerning form of malware to threaten PC users.  D0xware is a swift combination of personal data theft and ransomware rolled into one little package.  The malware will first encrypt your files, similar to ransomware.  Once […]

Continue reading


Two More Medical Facilities Infected With Ransomware

Ransomware infections are spreading from coast to coast… Marin Healthcare District Marin Healthcare District (MHD), located in Greenbrae, California was paralyzed after a ransomware attack that occurred in late July.  It is reported the infection stemmed from another attack that hit Marin Medical Practice Concepts in July as well.  MHD computers were down for a period […]

Continue reading


Free Decryptor Available For MarsJoke Ransomware Victims

MarsJoke, the ransomware targeting educational institutions and government agencies, can now be decrypted… Researchers have found the malware authors who created MarsJoke ransomware did nearly a perfect job, except for one little line of code.  This weak line of code allowed researchers to test several variants of decryption keys until a successful one was found.  According […]

Continue reading