Does All Ransomware Come From Russian Cybercriminal Groups?

At Datarecovery.com, we frequently work with businesses, healthcare organizations, and other enterprises that have fallen victim to ransomware. Many of these cases are recoverable — while many of the most well-known ransomware variants are well designed, some have design vulnerabilities...
July 13, 2021

Computer Forensics: What Is It, and How Is It Used?

A phrase like “computer forensics” might sound like something you’d hear tossed around on an episode of Law & Order: SVU or a rerun of Criminal Minds, but this is no made-for-TV thing: Computer forensics is a legitimate industry with...
March 30, 2021

Baltimore Stored Data On Local Hard Drives Before Ransomware Attack

On May 7, 2019, Baltimore suffered a crippling ransomware attack that limited access to services, including online bill payments and municipal employees’ emails. Now, the city is trying to figure out what went wrong, and an audit has turned up...
October 4, 2019

Quick Tips For Properly Responding To Ransomware Infections

You’ve probably heard about ransomware, but if you’ve never suffered an infection, it probably seems like a negligible threat. Unfortunately, that’s not the case. Ransomware attacks are fairly commonplace, with major attacks compromising data at large enterprises, hospitals, government...
October 2, 2019

Why Ransomware Criminals are Moving Away from Bitcoin

Bitcoin used to be the preferred payment method of cybercriminals. Last year, we reported that the hackers behind the WannaCry ransomware infected PCs worldwide, and demanded payment in the form of Bitcoin from their victims. Hackers asked for Bitcoin because...
June 29, 2018

SamSam Ransomware Infection And Decryption Services

SamSam ransomware (also known as Samas, SamSamCrypt, and MSIL) is a quickly evolving type of malware that targets hospitals, municipalities, and other large organizations. After installing malicious software through compromised servers, the hackers encrypt network files, making them unusable, and...
April 11, 2018

City of Atlanta Hit by SamSam Ransomware

A ransomware attack on the city of Atlanta on Mar. 22 has left officials scrambling to provide services to residents. Many critical services, like public-safety and wastewater treatment, have been unaffected. Meanwhile, other systems have ground to a halt or...
April 1, 2018

Only Half of Ransomware Payments Resulted in Decrypted Files

A report from a leading research firm found a startling statistic for 2017: only half of ransomware victims who paid a ransom were able to successfully decrypt their files. These findings and others in the report offer even more incentive...
March 21, 2018

SamSam Ransomware Infects CDOT

SamSam ransomware has infected thousands of computers at the Colorado Department of Transportation. Over 2,000 employee computers were shut down to stop the spread of the malware after it was discovered on Feb. 21, and systems are still not back...
March 19, 2018

US and Britain Blame Russian Military for NotPetya

British and US officials publicly blamed Russia for the NotPetya ransomware attack that occurred on June 27, 2017. Ukrainian organizations, including the state power company and Kiev’s main airport, were among the first to report being affected, and approximately 80 ...
February 20, 2018