This week’s article includes the stories from the last three weeks as I was unable to do the two previous ones. We have seen a lot of attacks on schools, local government entities, and MSPs by the REvil and Ryuk crews. These targets tend to pay large ransoms through insurance and thus are prime targets for the ransomware affiliates and developers. Unfortunately, STOP changed the encryption method, so Michael Gillespie’s decryptor will no longer function after its last update. Dave shares news from a Black Hat presentation on phishing stats from Google.
Source: https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-september-6th-2019-three-week-roundup/