Latest ALPHV news

The Week in Ransomware - December 15th 2023 - Ransomware Drama

The big news over the past two weeks is the continued drama plaguing BlackCat/ALPHV after their infrastructure suddenly stopped working for almost five days. Multiple sources told BleepingComputer that this outage was related to a law enforcement operation, but BlackCat claims the outages were caused by a hardware/hosting issue.
- Lawrence Abrams
- December 15, 2023
- 04:18 PM
- 0
LockBit ransomware now poaching BlackCat, NoEscape affiliates

The LockBit ransomware operation is now recruiting affiliates and developers from the BlackCat/ALPHV and NoEscape after recent disruptions and exit scams.
- Lawrence Abrams
- December 13, 2023
- 01:22 PM
- 0
Norton Healthcare discloses data breach after May ransomware attack

Kentucky health system Norton Healthcare has confirmed that a ransomware attack in May exposed personal information belonging to patients, employees, and dependents.
- Sergiu Gatlan
- December 08, 2023
- 06:28 PM
- 0
ALPHV ransomware site outage rumored to be caused by law enforcement

A law enforcement operation is rumored to be behind an outage affecting ALPHV ransomware gang's websites over the last 30 hours.
- Lawrence Abrams
- December 08, 2023
- 01:30 PM
- 0
HTC Global Services confirms cyberattack after data leaked online

IT services and business consulting company HTC Global Services has confirmed that they suffered a cyberattack after the ALPHV ransomware gang began leaking screenshots of stolen data.
- Lawrence Abrams
- December 05, 2023
- 06:54 PM
- 0
Tipalti investigates claims of data stolen in ransomware attack

Tipalti says they are investigating claims that the ALPHV ransomware gang breached its network and stole 256 GB of data, including data for Roblox and Twitch.
- Lawrence Abrams
- December 04, 2023
- 02:22 PM
- 0
Healthcare giant Henry Schein hit twice by BlackCat ransomware

American healthcare company Henry Schein has reported a second cyberattack this month by the BlackCat/ALPHV ransomware gang, who also breached their network in October.
- Sergiu Gatlan
- November 27, 2023
- 02:44 PM
- 2
Ransomware gang files SEC complaint over victim’s undisclosed breach

The ALPHV/BlackCat ransomware operation has taken extortion to a new level by filing a U.S. Securities and Exchange Commission complaint against one of their alleged victims for not complying with the four-day rule to disclose a cyberattack.
- Ionut Ilascu
- November 15, 2023
- 09:02 PM
- 10
McLaren Health Care says data breach impacted 2.2 million people

McLaren Health Care (McLaren) is notifying nearly 2.2 million people of a data breach that occurred between late July and August this year, exposing sensitive personal information.
- Bill Toulas
- November 10, 2023
- 10:28 AM
- 0
Microsoft: Octo Tempest is one of the most dangerous financial hacking groups

Microsoft has published a detailed profile of a native English-speaking threat actor with advanced social engineering capabilities it tracks as Octo Tempest, that targets companies in data extortion and ransomware attacks.
- Ionut Ilascu
- October 26, 2023
- 06:55 PM
- 0
Seiko says ransomware attack exposed sensitive customer data

Japanese watchmaker Seiko has confirmed it suffered a Black Cat ransomware attack earlier this year, warning that the incident has led to a data breach, exposing sensitive customer, partner, and personnel information.
- Bill Toulas
- October 25, 2023
- 12:40 PM
- 0
BlackCat ransomware uses new ‘Munchkin’ Linux VM in stealthy attacks

The BlackCat/ALPHV ransomware operation has begun to use a new tool named 'Munchkin' that utilizes virtual machines to deploy encryptors on network devices stealthily.
- Bill Toulas
- October 19, 2023
- 05:40 PM
- 0
The Week in Ransomware - October 13th 2023 - Increasing Attacks

Ransomware gangs continue to pummel the enterprise, with attacks causing disruption in business operations and resulting in data breaches if a ransom is not paid.
- Lawrence Abrams
- October 13, 2023
- 06:26 PM
- 0
ALPHV ransomware gang claims attack on Florida circuit court

The ALPHV (BlackCat) ransomware gang has claimed an attack that affected state courts across Northwest Florida (part of the First Judicial Circuit) last week.
- Sergiu Gatlan
- October 09, 2023
- 05:32 PM
- 0
MGM Resorts ransomware attack led to $100 million loss, data theft

MGM Resorts reveals that last month's cyberattack cost the company $100 million and allowed the hackers to steal customers' personal information.
- Bill Toulas
- October 06, 2023
- 09:53 AM
- 1
Motel One discloses data breach following ransomware attack

The Motel One Group has announced that it has been targeted by ransomware actors who managed to steal some customer data, including the details of 150 credit cards.
- Bill Toulas
- October 02, 2023
- 11:10 AM
- 0
ShadowSyndicate hackers linked to multiple ransomware ops, 85 servers

Security researchers have identified infrastructure belonging to a threat actor now tracked as ShadowSyndicate, who likely deployed seven different ransomware families in attacks over the past year.
- Bill Toulas
- September 26, 2023
- 05:11 AM
- 0
BlackCat ransomware hits Azure Storage with Sphynx encryptor

The BlackCat (ALPHV) ransomware gang now uses stolen Microsoft accounts and the recently spotted Sphynx encryptor to encrypt targets' Azure cloud storage.
- Sergiu Gatlan
- September 16, 2023
- 10:11 AM
- 0
MGM casino's ESXi servers allegedly encrypted in ransomware attack

An affiliate of the BlackCat ransomware group, also known as APLHV, is behind the attack that disrupted MGM Resorts' operations, forcing the company to shut down IT systems.
- Ionut Ilascu
- September 14, 2023
- 06:52 PM
- 3
Japanese watchmaker Seiko breached by BlackCat ransomware gang

The BlackCat/ALPHV ransomware gang has added Seiko to its extortion site, claiming responsibility for a cyberattack disclosed by the Japanese firm earlier this month.
- Bill Toulas
- August 21, 2023
- 10:40 AM
- 0