On-demand Webinar – World vs Cyber: Bridging the Gap to Mitigate Threats Learn More +

Ransomware Rewind

Weekly Update: 08 November 2022

Ransomware Rewind is a compilation of ransomware-related stories published over the past week.

Most Active Ransomware Operators

Volume of messages posted by operators during the last week.

Significant Campaigns & Incidents

Documents and discussion of significant ransomware campaigns, incidents, and associated actors.

Ransomware gang threatens to release stolen Medibank dataBleepingComputer.com – Nov 07 2022 17:50
Ransomware attack on Take Solutions Ltd’s ERPEquity Bulls – Nov 05 2022 05:32
Landi Renzo S.p.A. victim of cyberattack by HiveDataBreaches.net – Nov 04 2022 15:54
Cyber incident at Boeing subsidiary causes flight planning disruptionsThe Record by Recorded Future – Nov 03 2022 19:26
LockBit ransomware claims attack on Continental automotive giantBleepingComputer.com – Nov 03 2022 18:25
Osaka hospital hit by ransomware: reportHealthCareIT News – Nov 02 2022 08:40
Ecuador’s military denies ransomware attack after website goes offlineThe Record by Recorded Future – Nov 01 2022 14:40

Tactics & Techniques

Discussion and mentions of significant techniques deployed by threat actors.

LockBit 3.0 Being Distributed via Amadey BotASEC Blog AhnLab English – Nov 08 2022 00:35
Surtr Ransomware Being Distributed in KoreaASEC Blog AhnLab English – Nov 03 2022 05:23
Elbie Ransomware Being Distributed in KoreaASEC Blog AhnLab English – Nov 02 2022 01:22

Researcher Analysis

Analysis, deep-dives and reverse engineering.

CHAOS Ransomware YASHMA Wreaking Havoc – K7 LabsK7 Computing Lab Blog – Nov 08 2022 11:44
RanHassan Ransomware Decryptor Now AvailableBitdefender Labs – Nov 07 2022 14:00
Avast Threat Labs releases Q3 2022 Threat ReportAvast Blog – Nov 02 2022 08:58

Legal Actions and Discussion

Actions, consequences, and policy discussion by governments and organisations.

Basics Will Block Most Ransomware Hits, Says UK Cyber ChiefBankInfoSecurity – Nov 07 2022 21:09

The content in this report was compiled by the use of our award-winning intelligence product Silobreaker Online. Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of any content in this report and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content in the report.