Another Urology Clinic Hit With Ransomware

Another Urology Clinic is Victimized In late 2016, the Metropolitan Urology Group was hit with ransomware.  Now, Urology Austin, located in Austin, Texas, just released they were hit with ransomware on January 22, 2017.  Ransomware, the malware that locks critical files and demands a payment from the victim to release the files, has been taking the […]

Continue reading


Richmond Housing Agency Loses Data After Ransomware Attack

Richmond Housing Agency Lost a Month’s Worth of Data The Richmond Housing Agency, in Indiana, was recently hit with a ransomware attack.  The systems were infected in on February 27, 2017.  The ransomware variant is believed to have ties back to India.  After encrypting the housing agency’s systems, hackers demanded $8,000 to restore the company’s […]

Continue reading


Metropolitan Urology Group Suffers Breach Due to Ransomware Attack

Metropolitan Urology Group Found Patient Information Leaked During Ransomware Attack In November, 2016, the Metropolitan Urology Group (MUG) was hit with a ransomware attack.  Two months later, in January, 2017, MUG discovered the hackers obtained private, patient information during the attack.  The patients impacted are those who rendered services between 2003 and 2010.  The information exposed […]

Continue reading


Appropriate Defense Against Ransomware is Not Backups

The Today Show featured another piece on cyber security today, this time discussing ransomware.  During which, Tom Costello claimed the best way to protect yourself from a ransomware attack is to back up your data.  This cannot be further from the truth.  First of all, backups do not protect you from becoming a victim of ransomware.  It can be […]

Continue reading


Wood River Police Department Catches Ransomware Before Major Issues Presented

Wood River Police Department of Illinois Hit With Ransomware According to The Telegraph, on March 5, 2017 the Wood River Police Department was hit with a malicious phishing attack that included ransomware.  The phishing attack was successful, infecting one computer.  However, the issues that presented after the attack set off red flags for the officers. […]

Continue reading


State Senate Crippled After Ransomware Attack

PA State Senate Ransomware Attack Pennsylvania senators were unable to access their computer networks and data after ransomware took over the Pennsylvania Senate’s computer systems.  According to 10 TV, the attack hasn’t affected the state’s networks, which are separate from the Senate’s computers. The ransomware variant that successfully infiltrated the Senate’s system is not being disclosed, nor […]

Continue reading


Corporations Boost Bitcoin Supply in Preparation for Ransomware Attacks

Companies Are Prepping to Pay Cyber Criminals According to Coin Telegraph, many corporations are preparing for ransomware attacks by increasing their supply of the non-traceable currency, bitcoins.  Since bitcoins are not traceable, it is typically the currency of choice by hackers. Am I the only one who thinks this is absolutely absurd? Malware attacks of […]

Continue reading


Bingham County Struggles to Recover After Ransomware Attack

Bingham County Taken Offline After Ransomware Attack Bingham County of Idaho continues to struggle to get all of their systems back online after ransomware hit their systems last Wednesday.  On February 15, 2017 the county first discovered the ransomware.  Every county office has been impacted in some way, whether it is their phones, database, or […]

Continue reading


75% of Ransomware Developed Has Russian Ties

Russians Lead In Ransomware Development Russian based security company, Kaspersky, has confirmed 75% of crypto ransomware was developed by Russians or Russian-speaking individuals.  To some, that may be surprising.  For others, it may validate what they’ve assumed all along. According to Computing, there were 47 crypto ransomware variants that were developed by Russians or Russian-speaking individuals in 2016.  All […]

Continue reading


Illinois Police Department Corrupted With Ransomware

The Telegraph recently reported another ransomware attack, this time taking down an Illinois police department.  Roxana Police Department is remaining tight-lipped regarding the issue, but did confirm their systems have been infected with ransomware.  However, here is what we don’t know: When the attack took place How the ransomware got onto the police department’s systems The […]

Continue reading


UK City Council Loses Two Years Of Data After Ransomware Strikes

According to Mirror, UK City Council located in Tiverton has just lost two years worth of data after a town clerk, John Vanderwolfe, clicked on a malicious attachment.  Vanderwolfe stated clicking on the link was a lapse in judgement.  He said instead of populating the data he expected after clicking the link, it just came up as a […]

Continue reading


Ohio Government Completely Paralyzed After Ransomware Attack

Ransomware Hit County Government Hard… After a vicious ransomware attack, the Licking County websites, phones, computers and county’s network have been taken offline.  The systems are projected to remain offline until the end of this week.  The problem was discovered Tuesday evening, and critical systems were immediately taken offline.  The specific ransomware variant is not being disclosed, […]

Continue reading


Professor Infects California Nursing School With Ransomware

In November, 2016, a professor at California nursing school, Gurnick Acadamy, was attempting to access his lectures. The lectures were saved on an external storage device, which he plugged into his work PC.  It was then, he realized his lectures were gone.  Completely encrypted.  He contacted the school’s IT department for assistance.  Luckily, the IT department worked not […]

Continue reading


D.C. Surveillance Cameras Inoperable After Ransomware Attack

Surveillance Cameras Infected With Ransomware Days before Trump’s inauguration, the Metropolitan Police Department discovered 123 surveillance cameras were inoperable due to two separate ransomware infections.  The infections were found on January 12th and by January 15th the systems had been restored.  Investigators resolved the issues by identifying and disconnecting the infected devices.  All of the […]

Continue reading


“Bluff” Ransomware Reels in Thousands of Dollars

The threat of ransomware continues to grow on a daily basis.  Hackers are aware of this, and continue creating new ransomware variants to victimize new individuals.  It is now clear, just the thought of being infected has become enough to pay. “Bluff” Ransomware Who would’ve predicted cyber criminals would just send the ransom note, without actually infecting […]

Continue reading


Horse Racing Site Forced Offline After Third Consecutive Ransomware Attack

Three Strikes–You’re Out! Racing Pulse, a popular horse racing website that is based out of Bangalore, India, was forced offline on January 17, 2017 after suffering its third ransomware attack in a week.  The last, and most critical, encrypted their entire site. Dharma ransomware, the variant that took down Racing Pulse, encrypted all of the website’s data.  The […]

Continue reading


St. Louis City Public Library No Longer Offering Free PC Use

Update 1/27/2017: After two days, the St. Louis City Public Library technical staff was able to fix the impacted computers.  The system hard drives were wiped completely and restored with available back-ups.  The St. Louis City Public Library is currently unable to offer free computer use to the community due to a ransomware attack that […]

Continue reading


Hackers Demand $43K To Restore Indiana Cancer Services’ Systems

Cyber criminals have hit a new low, proving they don’t care who their victims are as long as it may lead to a large payout.  According to Network World, hackers breached Indiana Cancer Services’ systems on January 10, 2017.  They then encrypted a server, followed by a ransom demand of $43,000 to restore this server. […]

Continue reading


Ransomware Victimizes Kanawha County Schools

Kanawha County Schools Struggles To Regain Access Another county school was victimized by ransomware this week.  Kanawha County Schools, located in Charleston, West Virginia was hit with ransomware on January 11, 2017.  As of today, January 13, 2017, the school continues to work on regaining access to their encrypted files. Officials are not reporting the […]

Continue reading


The Latest Ransomware Craze – Holding MongoDB Databases Hostage

As if our jobs as IT admins isn’t difficult enough, hackers have taken to finding misconfigured MongoDB databases, and are holding them hostage, until a ransom has been paid. Similar to traditional ransomware, where files on a computer are encrypted until a fee has been paid, databases, are being held hostage, instead. The modus operandi […]

Continue reading


LA Community College District Pays $28K to Retrieve Locked Files

The first publicized ransomware attack of 2017 is a hefty one! After returning to school after the holiday break, Los Angeles Valley College found their computer files were inaccessible.  It didn’t take long for the college to determine it was a malicious cyber attack that took down their systems.  According to The Washington Times, the school notified […]

Continue reading


Ransomware Offers Decryption Keys if Victim Educates Themselves on Cyber Security

Ransomware, malware that encrypts your files and holds them for ransom, has taken an interesting turn.  Typically after encryption, the cyber criminals make a payment demand in order for the decryption keys to be sent to the victim.  However, a new ransomware has hit the market that makes a slightly different demand. Ransomware Offers Free […]

Continue reading


Another California Medical Center Struck With Ransomware

Ransomware Strikes Another California Medical Center This has been a rough year for California medical institutions being victimized by ransomware.  Another medical facility, East Valley Community Health Center, located in West Covina was struck with ransomware in October of 2016.  Reports by Health Data Management state the facilities computer systems were fixed within a day of the […]

Continue reading


Why Ransomware Continues to Spread

2016 – The Year of Ransomware CIO from IDG recently published an article regarding the upswing our nation has seen in ransomware infections in 2016.  It is without a doubt, 2016 has been the year of ransomware.  However, very little headway has been made to prevent future infections.  It seems the common consensus is to throw […]

Continue reading


Ransomware Holds South Carolina Police Department Files Hostage

Mount Pleasant Police Department, located in South Carolina, were the most recent victims of a ransomware attack.  The infection took place on December 12, 2016.  According to Post and Courier, the law enforcement agency was able to restore their files using their backup systems.  Therefore, they did not end up paying the ransom demands. To […]

Continue reading


Carleton University Corrupted with Ransomware

Carleton University, located in Ontario, Canada was recently hit with ransomware. CBC News stated the extent of the attack is still unknown, as any system that gained access to the main network could’ve been impacted. The ransomware variant used to lock the schools files is not being reported. Current ransom demands for the decryption keys […]

Continue reading


Spencer Chamber of Commerce Infected With Ransomware

In August, ransomware paralyzed the Spencer Chamber of Commerce, in Iowa. The infection was isolated to the Chamber; however, all of the Chamber’s computers run off of one server. Meaning, the infection in that one server, spread to all Chamber computers. Luckily, the infection did not spread to other city departments. The ransomware variant that […]

Continue reading


Ransomware Riddles Texan Dermatology Clinic

Seguin Dermatology Clinic, located in Seguin, Texas was hit with ransomware last Friday. According to Express News, confidential data was breached. This includes names, social security numbers and billing codes for medical services. At this time, it is unknown how many patient records were accessed. However, the clinic did notify patients of the security breach […]

Continue reading


Over 18K Pension Plans Hacked and Held Ransom

According to BNA, cyber criminals gained access to a pension plans affiliated with Missouri-based Schnucks, Dierbergs Markets and Shop ‘n Save supermarkets.  This hack impacted over 18,000 files, although the information retrieved by the hackers is unknown.  Collin Reischman, a spokesman for United Food and Commercial Workers Local 655 in Ballwin, Missouri reported the organization has […]

Continue reading


New Ransomware Found – Russians Are Suspected Creators

New Ransomware, Telecrypt, Released Into the Wild A new ransomware variant was recently found.  BleepingComputer reported the variant, named Telecrypt, requires an internet connection to infect computers.  Telecrypt uses Telegram and command and control servers to execute its infection.  To infect PCs the ransomware requires a binary to launch.  Upon launch, and there is a confirmation process of […]

Continue reading


New Locky Ransomware Campaign Sends 14M Emails In Five Hours

14M Emails Infected With Locky Ransomware Another ransomware campaign was sent out on October 24th, distributing 14 million emails with Locky ransomware attached.  The email included a “complaint letter”, which of course was really ransomware.  Upon opening the attachment, the ransomware went to work encrypting user’s files.  The typical ransom demand made with Locky infections […]

Continue reading


1,000 Procedures Canceled at Three Hospitals After Computer Virus Runs Rampant

Update: As of November 2nd, NHS is still struggling to get their systems up and running as normal.  According to Graham Cluley, outpatient and diagnostic procedures were cancelled for today, with the exception of a few select services.  NHS Trust canceled all operations at three hospitals after a computer virus spread throughout their systems.  It has […]

Continue reading


Blocking Ransomware Scripts with Exchange Transport Rules

One of the current tactics ransomware authors are using to infect your network, is to send email attachments containing malicious scripts. These scripts are often VBScript (.vbs), Windows Script Files (wsf), or JavaScript (.js) files, and when executed, will download a DLL or EXE to spawn the infection. An example JavaScript which downloads and executes […]

Continue reading


New Ransomware Encrypts Each File Seperately

CryPy ransomware takes the time to encrypt each file independently, to make decryption more difficult… Ransomware continues to evolve in various ways.  First, there was polymorphic ransomware, changing codes every few seconds to avoid detection from the traditional blacklist security software programs.  Then, there has been ransomware that will not only encrypt your data, but steal […]

Continue reading


Community Foundation Resolves Ransomware Attack to Find Data Breach

Hutchinson Community Foundation recovered from a ransomware attack, to find the criminals hacked their data too… On September 19, 2016, Hutchinson Community Foundation, in Hutchinson, Kansas, found out they had been hacked.  Not only had they been hacked, but they were hit a ransomware attack.  Ransomware is the malware that will encrypt users files, locking them until […]

Continue reading


Ransomware Protection : Major Opportunity for MSPs

MSPs, what protection are you offering your clients? Ransomware continues to spread at an epidemic level, and with that comes a need for an advanced security solution that includes ransomware protection.  From a Managed Service Provider (MSP) perspective, this is a massive opportunity to provide a higher level of protection to PC users.  MSPs provide various […]

Continue reading