The Cuba ransomware Group, also known as Fidel, has modified their malware variant to exploit a vulnerability in Microsoft’s Windows Hardware Developer Program.  Contrary to its name, the Cuba group is believed to be based in Russia. For the past...

On Tuesday, August 8th, 2023, the White House held a cybersecurity summit to address a recent wave of ransomware attacks targeting U.S. schools.  According to The Hill, at least 48 school districts have been victimized by ransomware attacks in...

To address a ransomware attack, it’s vital to identify the attack vector. That’s not always easy: Ransomware groups may go to great lengths to hide their methods, particularly during targeted attacks.  However, the vast majority of incidents can be traced...

At Datarecovery.com, we operate four full-service laboratories to maintain the industry’s highest success rates for RAID arrays, hard drives, solid-state drives, and various other data storage technologies. We routinely recover cases that have been dismissed as “unrecoverable” by other firms,...

Ransomware works by encrypting key files and databases, preventing organizations from accessing them — but lost data is not the only potential result of a ransomware infection. Many ransomware groups are now selling stolen data online using the dark web...

Fortinet FortiGuard Labs has identified a new piece of ransomware that encrypts files while presenting fake Microsoft Windows updates and Word installers. The ransomware, nicknamed “Big Head,” is likely distributed via phishing. Victims are tricked into downloading an update for...

Ransomware remains an enormous threat for businesses of all sizes, and enterprises are particularly popular targets.  When an attack occurs, you need to ensure business continuity. Unfortunately, most organizations haven’t taken the necessary steps: New research from Cohesity indicates that...

The State Department is offering a reward of up to $10 million for information related to the activities of the CL0p Ransomware Gang, a notorious group of cyber actors believed to be responsible for recent attacks. In a tweet, the...

A new study indicates that paying for ransomware isn’t a reliable option for disaster recovery. Veeam’s 2023 Data Protections Trends Report found that a shocking 85% of organizations had faced at least one cyberattack in the last year. Among ransomware...

A new ransomware variant targets Zimbra servers — but doesn’t demand a direct payment for decryption.  The ransomware, dubbed MalasLocker by BleepingComputer, began affecting Zimbra users in March 2023. It encrypts emails, adding a message that reads:  This file...