The BlackCat ransomware gang claims to have stolen 6TB of data from Change Healthcare, including sensitive information from various healthcare providers and insurance companies.
Mar 06, 2024NewsroomCyber Crime / Ransomware The threat actors behind the BlackCat ransomware have shut down their darknet website and likely pulled an exit scam after uploading a bogus law enforcement seizure banner. “ALPHV/BlackCat did not get seized. They are exit scamming their affiliates,” security researcher Fabian Wosar said. “It is blatantly obvious when you […]
The U.S. government is warning about the resurgence of BlackCat (aka ALPHV) ransomware attacks targeting the healthcare sector as recently as this month. “Since mid-December 2023, of the nearly 70 leaked victims, the healthcare sector has been the most commonly victimized,” the government said in an updated advisory. “This is likely in response to the […]
Dec 19, 2023NewsroomRansomware / Cybercrime The U.S. Justice Department (DoJ) has officially announced the disruption of the BlackCat ransomware operation and released a decryption tool that victims can use to regain access to files locked by the malware. Court documents show that the U.S. Federal Bureau of Investigation (FBI) enlisted the help of a confidential […]
The BlackCat ransomware group has reportedly targeted Ho Chi Minh City Energy Company, a subsidiary of Vietnam Electricity. The alleged EVNHCMC data breach has raised concerns, prompting the hacker group ALPHV to threaten to report the incident to the Vietnam Department of Energy. The situation is unfolding, with 84 samples from the Vietnam Electricity data […]
The BlackCat ransomware gang added Henry Schein to its dark web leak site, saying it breached the company’s network and allegedly stole 35 terabytes of sensitive data. It re-encrypted the company’s devices after negotiations faltered.
Healthcare giant Henry Schein has been targeted by the BlackCat ransomware gang, who claim to have breached the company’s network and stolen 35 terabytes of data, including sensitive files such as payroll data and shareholder information.
The BlackCat group has yet again added a new tool to its arsenal to evade detection by security solutions offered by different vendors. The attackers have created a new utility called Munchkin that allows them to run the ransomware payload on remote machines, or to encrypt remote Server Message Block (SMB)/Common Internet File Shares (CIFS). […]
The BlackCat ransomware gang, suspected to be a rebrand of DarkSide/BlackMatter, has been using stolen Microsoft accounts and a new variant of the Sphynx encryptor to target Azure cloud storage.