The FBI has published a TLP:WHITE FLASH report on Conti ransomware, which it indicates has impacted healthcare and first responder networks. The report also notes that Conti has affected municipalities in the last year. It states Conti typically both encrypts servers and workstations and steals files, selling or publishing the stolen data to a public site if the ransom isn’t paid. The report provides additional technical details and indicators and asks partners for any information that can be shared. The FBI includes a reminder that it encourages victims to not pay ransoms and to promptly report incidents to their local field office or the FBI’s 24/7 Cyber Watch at (855)292-3937 or [email protected], regardless of whether they’ve paid the ransom or not. The FBI also includes a list of general recommended mitigations for preventing and mitigating ransomware infections.
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!