Upcoming Webinar – Tools and Tactics to solve the top 3 Open-Source Intelligence Challenges Learn More +

Ransomware Rewind

Weekly Update: 13 December 2022

Ransomware Rewind is a compilation of ransomware-related stories published over the past week.

Most Active Ransomware Operators

Volume of messages posted by operators during the last week.

Significant Campaigns & Incidents

Documents and discussion of significant ransomware campaigns, incidents, and associated actors.

Play ransomware claims attack on Belgium city of AntwerpBleeping Computer – Dec 12 2022 23:47
Rackspace warns of phishing risks following ransomware attackBleepingComputer.com – Dec 09 2022 19:51
Hive Ransomware Group Leaks Data from European RetailerBankInfoSecurity – Dec 09 2022 01:39
WI: Adams-Friendship Area School District hit by ransomwareDataBreaches.net – Dec 07 2022 15:00

Tactics & Techniques

Discussion and mentions of significant techniques deployed by threat actors.

New Ransom Payment Schemes Target Executives, TelemedicineKrebs on Security – Dec 08 2022 18:25
‘Resume[.]xll’ File Being Distributed in Korea (LockBit 2.0)ASEC Blog AhnLab English – Dec 07 2022 01:18

Researcher Analysis

Analysis, deep-dives and reverse engineering.

Ransomware: Which Industries Are Most Likely to PayCybereason Blog – Dec 12 2022 11:00
Babuk Ransomware Variant in Major New AttackMorphisec Blog – Dec 07 2022 15:05
Ransomware Spotlight: CubaTrend Micro Security News – Dec 07 2022 11:20
A Closer look at BlackMagic ransomwareCyble Blog – Dec 07 2022 11:19
Industries that should wary of seasonal ransomware attacksMedium Cybersecurity – Dec 07 2022 03:22

Legal Actions and Discussion

Actions, consequences, and policy discussion by governments and organisations.

Rackspace Hit With Lawsuits Over Ransomware AttackSecurityWeek – Dec 12 2022 12:21
No money changing hands in Chubb ransomware settlementBusiness Insurance – Dec 09 2022 00:00

The content in this report was compiled by the use of our award-winning intelligence product Silobreaker Online. Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of any content in this report and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content in the report.