Latest BlackCat news

Colombian energy supplier EPM hit by BlackCat ransomware attack

Colombian energy company Empresas Públicas de Medellín (EPM) suffered a BlackCat/ALPHV ransomware attack on Monday, disrupting the company's operations and taking down online services.
- Lawrence Abrams
- December 16, 2022
- 01:47 PM
- 0
Ransomware data theft tool may show a shift in extortion tactics

Data exfiltration malware known as Exmatter and previously linked with the BlackMatter ransomware group is now being upgraded with data corruption functionality that may indicate a new tactic that ransomware affiliates might switch to in the future.
- Sergiu Gatlan
- September 25, 2022
- 11:14 AM
- 0
The Week in Ransomware - September 23rd 2022 - LockBit leak

This week we saw some embarrassment for the LockBit ransomware operation when their programmer leaked a ransomware builder for the LockBit 3.0 encryptor.
- Lawrence Abrams
- September 23, 2022
- 05:25 PM
- 2
BlackCat ransomware’s data exfiltration tool gets an upgrade

The BlackCat ransomware (aka ALPHV) isn't showing any signs of slowing down, and the latest example of its evolution is a new version of the gang's data exfiltration tool used for double-extortion attacks.
- Bill Toulas
- September 22, 2022
- 06:00 AM
- 0
Emotet botnet now pushes Quantum and BlackCat ransomware

While monitoring the Emotet botnet's current activity, security researchers found that the malware is now being used by the Quantum and BlackCat ransomware gang to deploy their payloads.
- Sergiu Gatlan
- September 17, 2022
- 11:17 AM
- 0
The Week in Ransomware - September 9th 2022 - Schools under fire

Ransomware gangs have been busy this week, launching attacks against NAS devices, one of the largest hotel groups, IHG, and LAUSD, the second largest school district in the USA.
- Lawrence Abrams
- September 09, 2022
- 04:14 PM
- 0
BlackCat ransomware claims attack on Italian energy agency

The BlackCat/ALPHV ransomware gang claimed responsibility for an attack that hit the systems of Italy's energy agency Gestore dei Servizi Energetici SpA (GSE) over the weekend.
- Sergiu Gatlan
- September 02, 2022
- 04:05 PM
- 0
Automotive supplier breached by 3 ransomware gangs in 2 weeks

An automotive supplier had its systems breached and files encrypted by three different ransomware gangs over a two-week span in May, two of the attacks happening within just two hours.
- Sergiu Gatlan
- August 10, 2022
- 05:07 PM
- 0
BlackCat ransomware claims attack on European gas pipeline

The ransomware group known as ALPHV (aka BlackCat) has assumed over the weekend responsibility for the cyberattack that hit Creos Luxembourg last week, a natural gas pipeline and electricity network operator in the central European country.
- Bill Toulas
- August 01, 2022
- 10:20 AM
- 1
Bandai Namco confirms hack after ALPHV ransomware data leak threat

Game publishing giant Bandai Namco has confirmed that they suffered a cyberattack that may have resulted in the theft of customers' personal data.
- Lawrence Abrams
- July 13, 2022
- 04:50 PM
- 1
The Week in Ransomware - June 17th 2022 - Have I Been Ransomed?

Ransomware operations are constantly evolving their tactics to pressure victims to pay. For example, this week, we saw a new extortion tactic come into play with the creation of dedicated websites to extort victims with searchable data.
- Lawrence Abrams
- June 17, 2022
- 05:11 PM
- 0
Ransomware gang creates site for employees to search for their stolen data

The ALPHV ransomware gang, aka BlackCat, has brought extortion to a new level by creating a dedicated website that allows the customers and employees of their victim to check if their data was stolen in an attack.
- Lawrence Abrams
- June 14, 2022
- 07:03 AM
- 0
Microsoft: Exchange servers hacked to deploy BlackCat ransomware

Microsoft says BlackCat ransomware affiliates are now attacking Microsoft Exchange servers using exploits targeting unpatched vulnerabilities.
- Sergiu Gatlan
- June 13, 2022
- 01:14 PM
- 0
BlackCat/ALPHV ransomware asks $5 million to unlock Austrian state

Austrian federal state Carinthia has been hit by the BlackCat ransomware gang, also known as ALPHV, who demanded a $5 million to unlock the encrypted computer systems.
- Bill Toulas
- May 27, 2022
- 09:23 AM
- 0
FBI: BlackCat ransomware breached at least 60 entities worldwide

The Federal Bureau of Investigation (FBI) says the Black Cat ransomware gang, also known as ALPHV, has breached the networks of at least 60 organizations worldwide, between November 2021 and March 2022.
- Sergiu Gatlan
- April 21, 2022
- 03:21 AM
- 0
The Week in Ransomware - March 18th 2022 - Targeting the auto industry

This week, the automotive industry has been under attack, with numerous companies exhibiting signs of breaches or ransomware activity.
- Lawrence Abrams
- March 18, 2022
- 04:11 PM
- 0
The Week in Ransomware - February 18th 2022 - Mergers & Acquisitions

The big news this week is that the Conti ransomware gang has recruited the core developers and managers of the TrickBot group, the developers of the notorious TrickBot malware.
- Lawrence Abrams
- February 18, 2022
- 06:17 PM
- 0
BlackCat (ALPHV) claims Swissport ransomware attack, leaks data

The BlackCat ransomware group, aka ALPHV, has claimed responsibility for the recent cyber attack on cargo and hospitality services giant Swissport that caused flight delays and service disruptions.
- Ax Sharma
- February 15, 2022
- 05:56 AM
- 0
BlackCat (ALPHV) ransomware linked to BlackMatter, DarkSide gangs

The Black Cat ransomware gang, also known as ALPHV, has confirmed they are former members of the notorious BlackMatter/DarkSide ransomware operation.
- Lawrence Abrams
- February 05, 2022
- 05:29 PM
- 2
The Week in Ransomware - February 4th 2022 - Critical Infrastructure

Critical infrastructure suffered ransomware attacks, with threat actors targeting an oil petrol distributor and oil terminals in major ports in different attacks.
- Lawrence Abrams
- February 04, 2022
- 07:15 PM
- 0