News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Tag: Hive

Hunters International – the new Hive on the ransomware stage
25 December 2023
| No comments
| Bitdefender, Short news
Hunters International - the new Hive on the ransomware stage

The new group “Hunters International” describes itself as the successor to the HIVE ransomware gangsters. An analysis of the ransomware code confirms this and shows how the criminals have improved their malware attacks. Hunters International is at the beginning of its activities with first victims in Germany, Great Britain, the United States of America and Namibia. The Hive group was exposed in January 2023 as the result of a concerted effort by the FBI, the BKA, the Reutlingen police headquarters and Dutch authorities. Hive's victims included 1.500 hospitals, school boards, financial services and other organizations whose information the attackers exposed. Hive…

Read more

Access: Former HIVE members arrested
29 November 2023
| No comments
| PR News
Access: Former HIVE members arrested

The cyber attackers in Ukraine thought they were safe for a long time: but on November 21st it was over! A team of global investigators was able to arrest the head of the cyber attack group along with four of the most active helpers. The former HIVE members are said to have encrypted 250 servers of large corporations in recent years, causing damage amounting to several hundred million euros. The cooperation of Europol and many investigators from Norway, France, Germany and the United States was worthwhile. After the APT group HIVE was dismantled in 2021, investigators did not let up...

Read more

APT: Cooperation of Hive, Royal and Black Basta Ransomware
August 14, 2023
| No comments
| Short news, Sophos
SophosNews

In its Clustering Attacker Behavior Reveals Hidden Patterns report, Sophos publishes new insights into connections between the most prominent ransomware groups of the past year: Hive, Black Basta and Royal. Recent attacks suggest that the three ransomware groups share playbooks or partners. As of January 2023, Sophos X-Ops had investigated four different ransomware attacks over a three-month period, one originating from Hive, two from Royal and one from Black Basta. Clear similarities between the attacks were found. Although Royal is considered a very closed group with no visible partners from underground forums...

Read more

Ransomware Report: LockBit Still Leads
March 13, 2023
| No comments
| PR News

It's not good news from the February Malwarebytes ransomware report: LockBit is back at number 1. As in 2022, the ransomware group again tops the list of groups selling ransomware-as-a-service (RaaS) in 2023. Malwarebytes' threat intelligence team attributed 51 attacks to LockBit in January (up from 55 attacks in December 2022). In second place is ALPHV with 23 attacks, closely followed by Vice Society with 22 and Royal with 19 attacks. Ransomware: USA most affected When it comes to the distribution of ransomware attacks by country, in January 2023 the USA…

Read more

Hive: After the smashing, the victims hope
27. February 2023
| No comments
| PR News
Hive: After the smashing, the victims hope

The end of the ransomware group HIVE was also the start of new investigation methods: Infiltration by hacker gangs means that ransom payments are no longer without alternative. The air is getting thinner for APT gangs. A few weeks ago, German and US authorities (Baden-Württemberg police, FBI and Secret Service) in cooperation with other European security authorities smashed the "Hive" hacker network after a joint investigation. A comment by Lothar Geuenich, VP Central Europe / DACH at Check Point. HIVE: Perpetrators fear, victims hope This is a victory that should be celebrated. Because apparently the group had already been affected by ransomware attacks...

Read more

Is HIVE behind the attack on the Potsdam administration?
2. February 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

It is not yet entirely clear whether HIVE is behind the cyber attack on the Potsdam administration. A message from the administration speaks of HIVE and that even after the APT group has been broken up, the systems are still being switched off. The misery does not end for the city administration of Potsdam. Although the IT experts restarted the attacked and then repaired systems in January, they shut everything down again on January 24th. After an expanded virus scanner was activated, there were a large number of automated communication attempts from the state capital's internal network...

Read more

Comments on the Hive ransomware network takedown
1. February 2023
| No comments
| Stories
Ransomware network Hive smashed

Investigators from Germany, the USA and the Netherlands have broken up the global ransomware network "Hive". The German prosecutors stated that of the more than 1.500 cyber attacks on organizations worldwide, 70 attacks were in Germany. Experts Kimberly Goody and John Hultquist commented on the Hive network and the likely consequences of the takedown: “In our 2022 incident response surveys, Hive was the most active of all ransomware families observed: Hive was responsible for more than 15 percent of ransomware attacks responsible to which we have responded. Those affected come from a large number of countries. The biggest…

Read more

FBI, BKA, Europol smash Hive ransomware network
27 January 2023
| No comments
| Stories
FBI, BKA, Europol smash Hive ransomware network

The FBI secretly infiltrated the Hive network and, in addition to key servers and decryption keys, even took over the Hive group's leak page on the dark web. In doing so, the FBI, the German BKA, the Baden-Württemberg police and Europol thwarted ransom demands of over 130 million US dollars. The US Department of Justice announced that its month-long disruption campaign against the Hive ransomware group has now borne fruit. The ransomware group was responsible for more than 1.500 victims in over 80 countries. Including hospitals, school districts, financial companies and critical infrastructure (KRITIS). The action was a joint effort by the FBI, the German BKA, the…

Read more

FBI: Hive ransomware has stolen $100 million
21 November 2022
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The FBI has investigated the machinations of the Hive ransomware. It was found that more than 1.300 companies worldwide were harmed and about 100 million dollars were extorted. Media Markt and Saturn were prominent victims in Germany. The FBI has created a Cybersecurity Advisory (CSA) based on its investigation into the Hive ransomware. The included hints, insights and publications are valuable hints for network defenders. The findings were published on the CISA project page Stop Ransomware. $100 million in loot As of November 2022, according to the FBI, Hive ransomware actors have harmed over 1.300 companies worldwide and around…

Read more

When Hive, LockBit, BlackCat attack one after the other
August 17, 2022
| No comments
| Sophos, Stories
When Hive, LockBit, BlackCat attack one after the other

Multiple attacks by ransomware groups are catching on - Hive, LockBit and BlackCat ransomware gangs attack the same network one after the other. This is what the Sophos X-Ops Active Adversary Whitepaper shows: attacked company received three different ransomware reports for triple-encrypted files. In the current Sophos X-Ops Active Adversary whitepaper "Multiple Attackers: A Clear and Present Danger", Sophos reports that three well-known ransomware groups, Hive, LockBit and BlackCat, attacked the same network one after the other. The first two attacks occurred within two hours, with the third attack occurring two weeks later. Each ransomware group left their own ransom note and some of the…

Read more

© 2024 MedPressIT GbR
Cookie Settings