The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing this joint advisory to disseminate known Ghost (Cring)— (“Ghost”)—ransomware IOCs and TTPs identified through FBI investigation as recently as January 2025. Beginning early 2021, Ghost actors began attacking victims whose internet facing services ran outdated versions of software and firmware.
This indiscriminate targeting of networks containing vulnerabilities has led to the compromise of organizations across more than 70 countries, including organizations in China. Ghost actors, located in China, conduct these widespread attacks for financial gain. Affected victims include critical infrastructure, schools and universities, healthcare, government networks, religious institutions, technology and manufacturing companies, and numerous small- and medium-sized businesses.
Read more…
Source: U.S. Federal Bureau of Investigation Cyber Division
Related:
- With TikTok U.S. Ban Looming, Users Flock to Red Note – Another Chinese-Owned App
January 14, 2025
TikTok could be outlawed in the U.S. as soon as Jan. 19 over concerns about its Chinese ownership, unless it gets a reprieve from the Supreme Court or if Beijing-based parent company ByteDance complies with a federal law forcing it to sell its stake in the app. With that sword dangling over TikTok’s head, thousands of ...
- US state sues T-Mobile over 2021 data breach which leaked data of millions
January 7, 2025
As part of Washington’s lawsuit, the state claims T-Mobile failed to ‘adequately secure sensitive personal information of more than 2 million Washingtonians’. This failure, the state claims, left those consumers vulnerable to fraud and identity theft. The suit claims that the breach was ‘entirely avoidable’ and explains T-Mobile had years to fix key vulnerabilities in its ...
- Cybertruck driver used ChatGPT to plan Las Vegas attack
January 7, 2025
Police found a six-page manifesto on Matthew Livelsberger’s phone and said he used ChatGPT to plan his New Year’s Day bombing at the Trump International Hotel in Las Vegas, Sheriff Kevin McMahill said at a news conference Tuesday. A few of the entries posted in the application included “How much Tannerite is equivalent to 1 pound ...
- China protests US sanctions for its alleged role in hacking, complains of foreign hacker attacks
January 7, 2025
China has slammed a decision by the U.S. Treasury to sanction a Beijing-based cybersecurity company for its alleged role in multiple hacking incidents targeting critical U.S. infrastructure, while the Chinese cyber security agency complained Monday of attacks on Chinese networks. Asked about the sanctions against Beijing-based Integrity Technology Group, Chinese Foreign Ministry spokesperson Guo Jiakun said ...
- Pressure mounts on EU to use legal weapons against Musk’s interference
January 7, 2025
What are you waiting for, Brussels? Elon Musk’s decision to host German far-right leader Alice Weidel in a livestream on X is sparking fury from European Union leaders and lawmakers, who on Monday urged Brussels to deploy its full legal might to rein in the billionaire tech magnate. In response, the European Commission said the SpaceX ...
- Apple to pay $95 million to settle claims it used Siri to eavesdrop on customers
January 2, 2025
Apple has agreed to pay $95 million to settle a civil lawsuit accusing the privacy-minded company of deploying its virtual assistant Siri to eavesdrop on people using its iPhone and other trendy devices. The proposed settlement filed Tuesday in an Oakland, California, federal court would resolve a 5-year-old lawsuit revolving around allegations that Apple surreptitiously activated ...