💰🗃️
Coveware Security Incident
Q4 2019
2345 days ago
Resolved
Incident Overview
Situation Description
The Q4 2019 Coveware Ransomware Marketplace report indicates a doubling of ransomware costs, with Ryuk and Sodinokibi variants proliferating and impacting both large enterprises and small businesses.
Event Types
Ransomware
Data Breach
Industry Sector
nanGeographic Scope
nanImpact Analysis
Event Types (2 identified)
Ransomware
Data Breach
Financial Impact
$0 USDRecords Affected
0Data Types Compromised
PII (Personally Identifiable Information)
Credentials
Operational / System Data
Primary Impacts
Operational Disruption
Data Exposure
Financial Loss
Key Decisions Made
Ransomware actors began exfiltrating data from victims and threatening its release if the ransom was not paid.; Ryuk actors began using a Wake-on-Lan feature to turn on devices within a compromised network that were initially powered off to maximize the impact of the attack.; Sodinokibi affiliates exploited unpatched vulnerabilities, such as in Pulse Secure VPN, to gain access to corporate networks and disable multi-factor authentication.
Technical Analysis
Attack Method
Unpatched Vulnerability
Threat Actor Attribution
Ryuk
Sodinokibi
Vulnerability / Tool
Pulse Secure VPN
Additional Information
Quick Facts
- Company:
- Coveware
- Date:
- Q4 2019
- Status:
- Resolved
- Decision Maker:
- nan
- Position:
- nan
- Published:
- nan
Source Information
Original Query
what post-breach remediation services are offered to customers after ransomwareTimeline
Information Published
nan
Incident Occurred
Q4 2019 (2345 days ago)
Status: Resolved
Estimated resolution based on age