MastodonTech.de

The New Oil<a href="https://mastodon.thenewoil.org/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://mastodon.thenewoil.org/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> claims <a href="https://mastodon.thenewoil.org/tags/KetteringHealth" class="mention hashtag" rel="nofollow noopener" target="_blank">#KetteringHealth</a> breach, leaks stolen data<a href="https://www.bleepingcomputer.com/news/security/interlock-ransomware-claims-kettering-health-breach-leaks-stolen-data/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/interlock-ransomware-claims-kettering-health-breach-leaks-stolen-data/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.thenewoil.org/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://mastodon.thenewoil.org/tags/DataBreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataBreach</a> <a href="https://mastodon.thenewoil.org/tags/healthcare" class="mention hashtag" rel="nofollow noopener" target="_blank">#healthcare</a>

The DFIR Report"The remote endpoints it attempted to contact included several TryCloudflare domains as well as direct IP addresses.The logic would rotate through the various servers until an online host was found. The malware in this case took 15 minutes to establish a successful connection to an online endpoint at hxxp://bristol-weed-martin-know[.]trycloudflare[.]com/init1234."➡️ The above is from a recent Private Threat Brief: "Interlock-Linked Threat Actor Gains Access via Fake Teams ClickFix Lure"➡️➡️Interested in receiving reports like this one? Contact us for a demo or pricing - <a href="https://thedfirreport.com/contact/" rel="nofollow noopener" translate="no" target="_blank">https://thedfirreport.com/contact/</a><a href="https://infosec.exchange/tags/dfir" class="mention hashtag" rel="nofollow noopener" target="_blank">#dfir</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/cyberthreatintelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#cyberthreatintelligence</a> <a href="https://infosec.exchange/tags/cti" class="mention hashtag" rel="nofollow noopener" target="_blank">#cti</a> <a href="https://infosec.exchange/tags/interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#interlock</a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a>

ITSEC NewsInterlock ransomware: what you need to know - "We don’t just want payment; we want accountability." The malicious hackers behind the I... <a href="https://www.tripwire.com/state-of-security/interlock-ransomware-what-you-need-know" rel="nofollow noopener" translate="no" target="_blank">https://www.tripwire.com/state-of-security/interlock-ransomware-what-you-need-know</a> <a href="https://schleuss.online/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> <a href="https://schleuss.online/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a> <a href="https://schleuss.online/tags/guestblog" class="mention hashtag" rel="nofollow noopener" target="_blank">#guestblog</a> <a href="https://schleuss.online/tags/interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#interlock</a> <a href="https://schleuss.online/tags/clickfix" class="mention hashtag" rel="nofollow noopener" target="_blank">#clickfix</a> <a href="https://schleuss.online/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>

The New Oil<a href="https://mastodon.thenewoil.org/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://mastodon.thenewoil.org/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> gang deploys new <a href="https://mastodon.thenewoil.org/tags/NodeSnake" class="mention hashtag" rel="nofollow noopener" target="_blank">#NodeSnake</a> <a href="https://mastodon.thenewoil.org/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#RAT</a> on universities<a href="https://www.bleepingcomputer.com/news/security/interlock-ransomware-gang-deploys-new-nodesnake-rat-on-universities/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/interlock-ransomware-gang-deploys-new-nodesnake-rat-on-universities/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.thenewoil.org/tags/education" class="mention hashtag" rel="nofollow noopener" target="_blank">#education</a>

securityaffairsHow <a href="https://infosec.exchange/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://infosec.exchange/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a> Affects the Defense Industrial Base Supply Chain <a href="https://securityaffairs.com/177792/malware/how-interlock-ransomware-affects-the-defense-industrial-base-supply-chain.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/177792/malware/how-interlock-ransomware-affects-the-defense-industrial-base-supply-chain.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a>

Dissent Doe :cupofcoffee:<a href="https://infosec.exchange/@amvinfe" class="u-url mention" rel="nofollow noopener" target="_blank">@amvinfe</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener" target="_blank">@funnymonkey</a> A few weeks ago, <a href="https://infosec.exchange/tags/InterLock" class="mention hashtag" rel="nofollow noopener" target="_blank">#InterLock</a> leaked a lot of data allegedly from Madison School District, which is also in Phoenix, AZ. I wonder if there was some common vendor between Madison and Fowler or some common denominator. I didn't spot any statement or <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a> disclosure on Madison's site or Twitter account. <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#notification</a> <a href="https://infosec.exchange/tags/transparency" class="mention hashtag" rel="nofollow noopener" target="_blank">#transparency</a>

amvinfeThe Fowler Elementary School District, located in Phoenix, Arizona, has reportedly fallen victim to a cyberattack involving what may be a substantial volume of sensitive data. The incident was claimed by the Interlock ransomware group, which published its announcement on May 3, 2025, through a post on its blog hosted within the Tor network. <a href="https://www.suspectfile.com/data-breach-at-fowler-elementary-school-district-the-interlock-ransomware-groups-attack/" rel="nofollow noopener" translate="no" target="_blank">https://www.suspectfile.com/data-breach-at-fowler-elementary-school-district-the-interlock-ransomware-groups-attack/</a><a href="https://infosec.exchange/@PogoWasRight" class="u-url mention" rel="nofollow noopener" target="_blank">@PogoWasRight</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener" target="_blank">@douglevin</a> @funnymonkey <a href="https://infosec.exchange/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://infosec.exchange/tags/FESD" class="mention hashtag" rel="nofollow noopener" target="_blank">#FESD</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Data_Breach" class="mention hashtag" rel="nofollow noopener" target="_blank">#Data_Breach</a> <a href="https://infosec.exchange/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a>

The New Oil<a href="https://mastodon.thenewoil.org/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://mastodon.thenewoil.org/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> claims <a href="https://mastodon.thenewoil.org/tags/DaVita" class="mention hashtag" rel="nofollow noopener" target="_blank">#DaVita</a> attack, leaks stolen data<a href="https://www.bleepingcomputer.com/news/security/interlock-ransomware-claims-davita-attack-leaks-stolen-data/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/interlock-ransomware-claims-davita-attack-leaks-stolen-data/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.thenewoil.org/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://mastodon.thenewoil.org/tags/healthcare" class="mention hashtag" rel="nofollow noopener" target="_blank">#healthcare</a> <a href="https://mastodon.thenewoil.org/tags/DataBreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataBreach</a> <a href="https://mastodon.thenewoil.org/tags/dialysis" class="mention hashtag" rel="nofollow noopener" target="_blank">#dialysis</a>

securityaffairs<a href="https://infosec.exchange/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> gang started leaking data allegedly stolen from leading kidney dialysis firm DaVita <a href="https://securityaffairs.com/176946/cyber-crime/interlock-ransomware-gang-started-leaking-data-allegedly-stolen-from-leading-kidney-dialysis-firm-davita.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/176946/cyber-crime/interlock-ransomware-gang-started-leaking-data-allegedly-stolen-from-leading-kidney-dialysis-firm-davita.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>

Dissent Doe :cupofcoffee:Updating an incident: The InterLock ransomware gang has claimed responsibility for the DaVita attack. They claim to have exfiltrated  1,510 GB of data,  683,104 files, and  75,836 folders, and have leaked the file tree and some folder information.<a href="https://infosec.exchange/tags/healthsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#healthsec</a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/DaVita" class="mention hashtag" rel="nofollow noopener" target="_blank">#DaVita</a> <a href="https://infosec.exchange/tags/InterLock" class="mention hashtag" rel="nofollow noopener" target="_blank">#InterLock</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a>

The New Oil<a href="https://mastodon.thenewoil.org/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://mastodon.thenewoil.org/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> gang pushes fake <a href="https://mastodon.thenewoil.org/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IT</a> tools in <a href="https://mastodon.thenewoil.org/tags/ClickFix" class="mention hashtag" rel="nofollow noopener" target="_blank">#ClickFix</a> attacks<a href="https://www.bleepingcomputer.com/news/security/interlock-ransomware-gang-pushes-fake-it-tools-in-clickfix-attacks/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/interlock-ransomware-gang-pushes-fake-it-tools-in-clickfix-attacks/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

Sekoia.ioSince the apparition of the <a href="https://infosec.exchange/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> ransomware, the Sekoia <a href="https://infosec.exchange/tags/TDR" class="mention hashtag" rel="nofollow noopener" target="_blank">#TDR</a> team observed its operators evolving, improving their toolset (<a href="https://infosec.exchange/tags/LummaStealer" class="mention hashtag" rel="nofollow noopener" target="_blank">#LummaStealer</a> and <a href="https://infosec.exchange/tags/BerserkStealer" class="mention hashtag" rel="nofollow noopener" target="_blank">#BerserkStealer</a>), and leveraging new techniques such as <a href="https://infosec.exchange/tags/ClickFix" class="mention hashtag" rel="nofollow noopener" target="_blank">#ClickFix</a> to deploy the ransomware payload. <a href="https://blog.sekoia.io/interlock-ransomware-evolving-under-the-radar/" rel="nofollow noopener" translate="no" target="_blank">https://blog.sekoia.io/interlock-ransomware-evolving-under-the-radar/</a>

nemo™ 🇺🇦<a href="https://social.tchncs.de/@PC_Fluesterer" class="u-url mention" rel="nofollow noopener" target="_blank">@PC_Fluesterer</a> (2/2)For a deeper understanding of these attacks, further reading is recommended. Please inspect the additional reading links appended here:<a href="https://www.loginsoft.com/post/the-rise-of-interlock-ransomware" rel="nofollow noopener" translate="no" target="_blank">https://www.loginsoft.com/post/the-rise-of-interlock-ransomware</a><a href="https://www.moxfive.com/resources/moxfive-threat-actor-spotlight-interlock-ransomware" rel="nofollow noopener" translate="no" target="_blank">https://www.moxfive.com/resources/moxfive-threat-actor-spotlight-interlock-ransomware</a><a href="https://www.virustotal.com/gui/file/e9ff4d40aeec2ff9d2886c7e7aea7634d8997a14ca3740645fd3101808cc187b/detection" rel="nofollow noopener" translate="no" target="_blank">https://www.virustotal.com/gui/file/e9ff4d40aeec2ff9d2886c7e7aea7634d8997a14ca3740645fd3101808cc187b/detection</a><a href="https://mas.to/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://mas.to/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a>

nemo™ 🇺🇦<a href="https://social.tchncs.de/@PC_Fluesterer" class="u-url mention" rel="nofollow noopener" target="_blank">@PC_Fluesterer</a> <a href="https://mas.to/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://mas.to/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#ransomware</a> specifically targets VMware's ESXi hypervisors, installed with <a href="https://mas.to/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#FreeBSD</a> insyde the VMs exploiting vulnerabilities to attack virtual environments. By compromising virtual machines (VMs), it can encrypt critical data and modify root passwords on ESXi hosts, effectively disrupting operations. The malware often leverages malicious DLLs in the tempered scheduler to facilitate its attacks on hypervisors, making recovery challenging. (1/2)

nemo™ 🇺🇦🚨 The recent rise of Interlock ransomware highlights a critical need for enhanced security standards in our infrastructure! 🛡️ Targeting FreeBSD servers, this group has already impacted multiple organizations, emphasizing the importance of multi-layered defenses. 🔐 Organizations must prioritize security to prevent devastating breaches! Read more here: <a href="https://www.techradar.com/pro/security/interlock-ransomware-attacks-highlight-need-for-greater-security-standards-on-critical-infrastructure" rel="nofollow noopener" translate="no" target="_blank">https://www.techradar.com/pro/security/interlock-ransomware-attacks-highlight-need-for-greater-security-standards-on-critical-infrastructure</a> <a href="https://mas.to/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://mas.to/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a> <a href="https://mas.to/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a> <a href="https://mas.to/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#FreeBSD</a> <a href="https://mas.to/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener" target="_blank">#newz</a>

Jeroen Ruigrok van der WervenTrend Micro further said that the threat actors likely created a FreeBSD encryptor as the operating system is commonly used in critical infrastructure, where attacks can cause widespread disruption."Interlock targets FreeBSD as it's widely utilized in servers and critical infrastructure. Attackers can disrupt vital services, demand hefty ransoms, and coerce victims into paying," explains Trend Micro.<a href="https://www.bleepingcomputer.com/news/security/meet-interlock-the-new-ransomware-targeting-freebsd-servers/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/meet-interlock-the-new-ransomware-targeting-freebsd-servers/</a><a href="https://mastodon.social/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#FreeBSD</a> <a href="https://mastodon.social/tags/Interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interlock</a>

Shawn WebbIf anyone gets their hands on the <a href="https://bsd.network/tags/interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#interlock</a> <a href="https://bsd.network/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> sample that targets <a href="https://bsd.network/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#FreeBSD</a> systems, I'd love to help analyze it: <a href="https://www.bleepingcomputer.com/news/security/meet-interlock-the-new-ransomware-targeting-freebsd-servers/" rel="nofollow noopener" target="_blank">https://www.bleepingcomputer.com/news/security/meet-interlock-the-new-ransomware-targeting-freebsd-servers/</a><a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

IT NewsTech in Plain Sight: Microwave Ovens - Our homes are full of technological marvels, and, as a Hackaday reader, we are bet... - <a href="https://hackaday.com/2023/09/26/tech-in-plain-sight-microwave-ovens/" rel="nofollow noopener" translate="no" target="_blank">https://hackaday.com/2023/09/26/tech-in-plain-sight-microwave-ovens/</a> <a href="https://schleuss.online/tags/acsynchronousmotor" class="mention hashtag" rel="nofollow noopener" target="_blank">#acsynchronousmotor</a> <a href="https://schleuss.online/tags/hackadaycolumns" class="mention hashtag" rel="nofollow noopener" target="_blank">#hackadaycolumns</a> <a href="https://schleuss.online/tags/engineering" class="mention hashtag" rel="nofollow noopener" target="_blank">#engineering</a> <a href="https://schleuss.online/tags/microswitch" class="mention hashtag" rel="nofollow noopener" target="_blank">#microswitch</a> <a href="https://schleuss.online/tags/interlock" class="mention hashtag" rel="nofollow noopener" target="_blank">#interlock</a> <a href="https://schleuss.online/tags/microwave" class="mention hashtag" rel="nofollow noopener" target="_blank">#microwave</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#interlock