Cyber security news for all


    Authorities arrests pentaguard hackers planning to use ransomware to attack hospitals

    The PentaGuard hackers are from Romania.

    The latest press release of the Romanian Organized Crime and Terrorism Bureau (DIICOT) revealed a surprising set of details of hackers aiming to use ransomware to attack Romanian health institutions and hospitals.

    DIICOT announced the arrest of four members of the organization (which have served as PentaGuard Hackers Crew since 2000). In Romania, three people were arrested and the fourth person in the Republic of Moldova.

    Reports have it that management obtained search warrants against four threat actors and identified several computers storing various hacking tools. According to reports, the organization is planning to infect the digital infrastructure of medical organizations and hospitals with ransomware by sending malicious emails disguised as government agencies.

    The email will contain a file that, although promised to provide exclusive information about the COVID-19 pandemic, will cause the ransomware to crash. After infecting computers, they plan to encrypt data and suspend hospital activities.

    The team had previously purchased remote access tools (RAT) and other malware for ransomware attacks. At the time, it also planned to launch attacks using SQL injection methods.

    So far, the website damage services provided by PentaGuard have mainly targeted banks or government portals in Romania and Moldova.

    They recently decided to change the attack mechanism to a ransomware attack and purchased initial samples of Bad Rabbit and Locky ransomware strains. The team intends to use older malware.


    One of the destroyed sites of PentaGuard Hackers Crew

    Invincible Crew

    DIICOT claims that PentaGuard hackers thought that they are invincible and untraceable because they stayed active for a long time. Therefore, they do not mind hiding their tracks online.


    However, with the help of Romanian Secret-Service agency, the directorate captured all members before they could attack the hospital. It turns out the organization does not approve of lockdown and believes that this is an invasion of personal freedom. Hence which is why they plan to attack the hospital.


    Recent Articles

    Personnel were asked to removed 89 apps which includes Instagram, Facebook, and others by the Indian Army

    Personnel are told by the Indian Army to delete 89 apps from their phones from July 15. This is in a bid to avoid...

    The warning sent to employees about Tiktok app was a mistake says Amazon

    On Friday morning, Amazon sent out a memo to its employees, asking them to uninstall the popular social media app TikTok off their phone....

    Other Android phones sold in the US contains pre-installed malware

    There’s a discovery of Pre-installed malware on another phone by researchers from Malwarebytes; through the lifeline Assistance program for sale in the United States....

    About 15 billion stolen passwords and usernames sold on the dark web.

    A recent finding has shown that about 15 billion passwords and usernames are distributed on the dark web. This compromise will bring about credential...

    Hundreds of multinational companies aimed by Russian BEC Gang

    According to the security firm Agari, there has been a discovery of a newly uncovered Russia-based business email compromise gang; BEC gang that scams...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox