The Los Angeles Valley College (LAVC)
January 10, 2017
•[ ransomware, malware, education ]
The Los Angeles Valley College (LAVC) is forced to pay $28,000 in bitcoin after cybercriminals successfully infected its computer networks, email systems and voicemail lines with ransomware.
Unknown Organization
January 10, 2017
•[ ransomware, malware, healthcare ]
The Susan M. Hughes Center notifies of a ransomware incident affecting 11,400 patients.
Emory Brain Health Center
January 4, 2017
•[ ransomware, malware, healthcare ]
Emory Healthcare is one of the victims of the MongoDB ransomware attacks and has its database, managed by a third-party and containing 90,000 records, encrypted.
CloudPets
January 1, 2017
•[ leak, ransomware, misconfiguration ]
In January, the maker of teddy bears that record children's voices and sends them to family and friends via the internet CloudPets left their database publicly exposed and it was subsequently downloaded by external parties (the data was also subject to 3 different ransom demands). 583k records were provided to HIBP via a data trader and included email addresses and bcrypt hashes, but the full extent of user data exposed by the system was over 821k records and also included children's names and references to portrait photos and voice recordings.
The Carleton University
November 29, 2016
•[ ransomware, malware, education ]
The computers of the Carleton University are paralyzed by a ransomware attack.
Maisto
April 29, 2016
•[ ransomware, malware, manufacturing ]
The website belonging to Maisto International, a popular maker of remote-controlled toy vehicles, is caught pushing ransomware.
The Pirate Bay
April 27, 2016
•[ ransomware, malware, technology ]
Malwarebytes identifies a malvertising campaign on The Pirate Bay, distributing the Cerber Malware via the Magnitude Exploit Kit. The attackers took advantage of the leak of the sixth season of Game of Thrones.
Lansing Board of Water & Light (BWL)
April 25, 2016
•[ ransomware, malware, energy ]
The Lansing Board of Water & Light (BWL) announces last week a cyber-attack that partially shut down some of its services following what looks like an unconfirmed ransomware incident.
The Fappening Forum
April 13, 2016
•[ hack, ransomware, malware ]
The Fappening Forum is hacked, exposing 179,000 accounts. After the breach the forum is hit by malvertising distributing ransomware.
Unknown Organization
March 20, 2016
•[ ransomware, malware, education ]
The website of EC-Council, the professional organization that administers the Certified Ethical Hacker program, is compromised to redirect the visitors to an Angler Exploit Kit landing page, where the infamous Teslacrypt ransomware is injected.
British Association for Counselling and Psychotherapy
February 12, 2016
•[ ransomware, malware, healthcare ]
The first example of a ransomware targeting a website: the website of the British Association for Counselling and Psychotherapy is replaced with instructions on how to pay off the extortionists: $150 ( 100) in Bitcoin.
Moonfruit
December 14, 2015
•[ ransomware, ddos, technology ]
After suffering a DDoS attack by the infamous Armada Collective, Moonfruit takes down all the websites to enhance the defences and avoid to pay the ransom.
Unknown Organization
December 14, 2015
•[ ransomware, government ]
A hacker called g0tchack hacks the website of the CIty of Providence and asks for a ransom of $1,500 to $2,000 to give the data back.
Invest Bank
November 25, 2015
•[ hack, leak, ransomware ]
A hacker called Hacker Buba hacks into Invest Bank and holds it to ransom, demanding $3M, and leaking confidential data of clients on Twitter every few hours.
UK Parliament
November 9, 2015
•[ ransomware, malware, government ]
The Times reveal that, in May, cybercriminals were able to break into parliament's computer network, hijacked computers holding sensitive information and presented a ransom demand to Chi Onwurah, MP and shadow digital minister.
Swedbank
November 6, 2015
•[ ransomware, ddos, finance ]
Swedbank is taken down by a DDoS attack. A hacker called CocaineSecurity claims to have received a ransom.
ProtonMail
November 5, 2015
•[ ransomware, ddos, technology ]
A collective called Armada Collective takes down Protonmail, a Swiss provider of end-to-end encrypted email. The company pays a ransom of 15 BTC (6000 USD) but is taken down again after paying.
VFEmail
November 4, 2015
•[ ransomware, ddos, technology ]
VFEmail is taken down by a DDoS attack. The attackers demand a ransom of 5 BTC (1700 USD).
New Jersey Online Casinos
July 6, 2015
•[ ransomware, ddos, technology ]
A hacker shuts down four New Jersey Internet gambling sites and threatens more cyberattacks over unless a ransom in BTC is paid.
City of Moore, Oklahoma
March 15, 2015
•[ ransomware, malware, government ]
Bitcoin Baron claims to have hacked the City of Moore in Oklahoma (www.cityofmoore.com) and demands a ransom of 100 bitcoins to protect the private data acquired.
