Newsletter Archive - "eCrime.ch Ransomware Highlights"

For 2024-11-21
Article language: in English - Industry: Law Enforcement - Organisation/company: Norfolk Sheriff's Office
Norfolk Sheriff's Office says they were the 'victim of a cybersecurity event' | 13newsnow.com
2024-11-21
There is no security threat, but Sheriff Joe Baron said the cyber attack impacts their records and other operational systems.
Article language: in English
5 Defendants Charged Federally with Running Scheme that Targeted Victim Companies via Phishing Text Messages
2024-11-20
Law enforcement today unsealed criminal charges against five defendants who allegedly targeted employees of companies nationwide with phishing text messages and then used the harvested employee credentials to log in and steal non-public company data and information and to hack into virtual currency accounts to steal millions of dollars in cryptocurrency.

The following defendants are charged by a federal grand jury indictment with one count of conspiracy to commit wire fraud, one count of conspiracy, and one count of aggravated identity theft:

Ahmed Hossam Eldin Elbadawy, 23, a.k.a. “AD,” of College Station, Texas;
Noah Michael Urban, 20, a.k.a. “Sosa” and “Elijah,” of Palm Coast, Florida;
Evans Onyeaka Osiebo, 20, of Dallas, Texas; and
Joel Martin Evans, 25, a.k.a. “joeleoli,” of Jacksonville, North Carolina.
Article language: in English - Industry: Financial Services - Organisation/company: Finastra Ltd.
Fintech Giant Finastra Investigating Data Breach - Krebs on Security
2024-11-20
The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of the security incident after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen from the company.
Article language: in English
Phobos Ransomware Administrator Extradited from South Korea to Face Cybercrime Charges
2024-11-18
Russian National Alleged to Have Coordinated Sale, Distribution, and Operation of Phobos Ransomware as Part of International Hacking and Extortion Conspiracy
The Justice Department unsealed criminal charges today against Evgenii Ptitsyn, 42, a Russian national, for allegedly administering the sale, distribution, and operation of Phobos ransomware. Ptitsyn made his initial appearance in the U.S. District Court for the District of Maryland on Nov. 4 after being extradited from South Korea. Phobos ransomware, through its affiliates, victimized more than 1,000 public and private entities in the United States and around the world, and extorted ransom payments worth more than $16 million dollars.

“The Justice Department is committed to leveraging the full range of our international partnerships to combat the threats posed by ransomware like Phobos,” said Deputy Attorney General Lisa Monaco. “Evgenii Ptitsyn allegedly extorted millions of dollars of ransom payments from thousands of victims and now faces justice in the United States thanks to the hard work and ingenuity of law enforcement agencies around the world — from the Republic of Korea to Japan to Europe and finally to Baltimore, Maryland. Together with our partners across the globe, we will continue to hold cybercriminals accountable and protect innocent victims.”
Article language: in German - Industry: Government Administration - Organisation/company: Stadt Bergen auf RĂ¼gen
Hackerangriff auf das Amt Bergen auf Rügen: Cyberkriminelle legen Systeme lahm
2024-11-18
Bergen. Schlechte Nachrichten aus dem Rathaus Bergen auf Rügen: Wie Bürgermeisterin Anja Ratzke (parteilos) am Montag bestätigt hat, ist die Verwaltung des Amtes Bergen Opfer eines Hackerangriffs geworden. Damit fallen sämtliche digitalen Systeme aus.

„Ja, es stimmt. Unsere Daten sind verschlüsselt worden und die Verwaltung ist aktuell nicht arbeitsfähig.“ Die Polizei sei vor Ort und gemeinsam mit den Ämtern und IT-Spezialisten werde nach Wegen gesucht, das digitale Amt möglichst bald wieder „hochzufahren“. „Es gibt mehrere Ansätze, die müssen jetzt geprüft werden.“
Article language: in German - Industry: Government Administration - Organisation/company: Stadt Aschaffenburg
Kriminalität: Hackerangriff auf Stadt Aschaffenburg abgewehrt | STERN.de
2024-11-14
Hacker haben die IT der unterfränkischen Stadt attackiert. Bürgerinnen und Bürger können die Stadt nicht erreichen - auch das Rathaus ist geschlossen. Doch die Stadt hatte vermutlich Glück im Unglück.
Aufgrund eines Hackerangriffs hat die Stadt Aschaffenburg ihre komplette IT vom Netz genommen. Die Stadt ist nach eigenen Angaben derzeit weder per E-Mail noch per Telefon erreichbar. Auch das Rathaus bleibe geschlossen, da die Mitarbeiterinnen und Mitarbeiter auf keine PC-Anwendungen und Daten zugreifen könnten.