Latest BlackCat news

ALPHV gang claims ransomware attack on Constellation Software

Canadian diversified software company Constellation Software confirmed on Thursday that some of its systems were breached by threat actors who also stole personal information and business data.
- Sergiu Gatlan
- May 05, 2023
- 11:04 AM
- 0
Hackers leak images to taunt Western Digital's cyberattack response

The ALPHV ransomware operation, aka BlackCat, has published screenshots of internal emails and video conferences stolen from Western Digital, indicating they likely had continued access to the company's systems even as the company responded to the breach.
- Lawrence Abrams
- May 01, 2023
- 08:28 AM
- 3
NCR suffers Aloha POS outage after BlackCat ransomware attack

NCR is suffering an outage on its Aloha point of sale platform after being hit by an ransomware attack claimed by the BlackCat/ALPHV gang.
- Lawrence Abrams
- April 15, 2023
- 02:26 PM
- 3
ALPHV ransomware exploits Veritas Backup Exec bugs for initial access

An ALPHV/BlackCat ransomware affiliate was observed exploiting three vulnerabilities impacting the Veritas Backup product for initial access to the target network.
- Bill Toulas
- April 04, 2023
- 11:43 AM
- 0
The Week in Ransomware - January 6th 2023 - Targeting Healthcare

This week saw a lot of ransomware news, ranging from new extortion tactics, to a ransomware gang giving away a free decryptor after attacking a children's hospital.
- Lawrence Abrams
- January 06, 2023
- 07:51 PM
- 1
Ransomware gang cloned victim’s website to leak stolen data

The ALPHV ransomware operators have gotten creative with their extortion tactic and, in at least one case, created a replica of the victim's site to publish stolen data on it.
- Ionut Ilascu
- January 01, 2023
- 03:54 PM
- 0
The Week in Ransomware - December 16th 2022 - Losing Trust

Today's Week in Ransomware brings you the latest news and stories about the cyberattacks, new tactics, and reports related to ransomware operations.
- Lawrence Abrams
- December 16, 2022
- 05:59 PM
- 0
Colombian energy supplier EPM hit by BlackCat ransomware attack

Colombian energy company Empresas Públicas de Medellín (EPM) suffered a BlackCat/ALPHV ransomware attack on Monday, disrupting the company's operations and taking down online services.
- Lawrence Abrams
- December 16, 2022
- 01:47 PM
- 0
Ransomware data theft tool may show a shift in extortion tactics

Data exfiltration malware known as Exmatter and previously linked with the BlackMatter ransomware group is now being upgraded with data corruption functionality that may indicate a new tactic that ransomware affiliates might switch to in the future.
- Sergiu Gatlan
- September 25, 2022
- 11:14 AM
- 0
The Week in Ransomware - September 23rd 2022 - LockBit leak

This week we saw some embarrassment for the LockBit ransomware operation when their programmer leaked a ransomware builder for the LockBit 3.0 encryptor.
- Lawrence Abrams
- September 23, 2022
- 05:25 PM
- 2
BlackCat ransomware’s data exfiltration tool gets an upgrade

The BlackCat ransomware (aka ALPHV) isn't showing any signs of slowing down, and the latest example of its evolution is a new version of the gang's data exfiltration tool used for double-extortion attacks.
- Bill Toulas
- September 22, 2022
- 06:00 AM
- 0
Emotet botnet now pushes Quantum and BlackCat ransomware

While monitoring the Emotet botnet's current activity, security researchers found that the malware is now being used by the Quantum and BlackCat ransomware gang to deploy their payloads.
- Sergiu Gatlan
- September 17, 2022
- 11:17 AM
- 0
The Week in Ransomware - September 9th 2022 - Schools under fire

Ransomware gangs have been busy this week, launching attacks against NAS devices, one of the largest hotel groups, IHG, and LAUSD, the second largest school district in the USA.
- Lawrence Abrams
- September 09, 2022
- 04:14 PM
- 0
BlackCat ransomware claims attack on Italian energy agency

The BlackCat/ALPHV ransomware gang claimed responsibility for an attack that hit the systems of Italy's energy agency Gestore dei Servizi Energetici SpA (GSE) over the weekend.
- Sergiu Gatlan
- September 02, 2022
- 04:05 PM
- 0
Automotive supplier breached by 3 ransomware gangs in 2 weeks

An automotive supplier had its systems breached and files encrypted by three different ransomware gangs over a two-week span in May, two of the attacks happening within just two hours.
- Sergiu Gatlan
- August 10, 2022
- 05:07 PM
- 0
BlackCat ransomware claims attack on European gas pipeline

The ransomware group known as ALPHV (aka BlackCat) has assumed over the weekend responsibility for the cyberattack that hit Creos Luxembourg last week, a natural gas pipeline and electricity network operator in the central European country.
- Bill Toulas
- August 01, 2022
- 10:20 AM
- 1
Bandai Namco confirms hack after ALPHV ransomware data leak threat

Game publishing giant Bandai Namco has confirmed that they suffered a cyberattack that may have resulted in the theft of customers' personal data.
- Lawrence Abrams
- July 13, 2022
- 04:50 PM
- 1
The Week in Ransomware - June 17th 2022 - Have I Been Ransomed?

Ransomware operations are constantly evolving their tactics to pressure victims to pay. For example, this week, we saw a new extortion tactic come into play with the creation of dedicated websites to extort victims with searchable data.
- Lawrence Abrams
- June 17, 2022
- 05:11 PM
- 0
Ransomware gang creates site for employees to search for their stolen data

The ALPHV ransomware gang, aka BlackCat, has brought extortion to a new level by creating a dedicated website that allows the customers and employees of their victim to check if their data was stolen in an attack.
- Lawrence Abrams
- June 14, 2022
- 07:03 AM
- 0
Microsoft: Exchange servers hacked to deploy BlackCat ransomware

Microsoft says BlackCat ransomware affiliates are now attacking Microsoft Exchange servers using exploits targeting unpatched vulnerabilities.
- Sergiu Gatlan
- June 13, 2022
- 01:14 PM
- 0