DIRECTORY

  • Alerts
  • APTs
  • Blog
  • Books
  • Certifications
  • Cheat Sheets
  • Courses
  • Cyber Briefing
  • CyberDecoded
  • CyberReview
  • CyberStory
  • CyberTips
  • Definitions
  • Domains
  • Entertainment
  • FAQ
  • Frameworks
  • Hardware Tools
  • Incidents
  • Malware
  • News
  • Papers
  • Podcasts
  • Quotes
  • Reports
  • Tools
  • Threats
  • Tutorials
No Result
View All Result
  • Login
  • Register
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
Talk To An Expert
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
No Result
View All Result
Talk To An Expert
CyberMaterial
Home Incidents

NoEscape Ransomware Hits Fiocruz

August 29, 2023
Reading Time: 2 mins read
in Incidents

The Oswaldo Cruz Foundation (Fiocruz), a renowned research institution, has fallen victim to a significant data breach orchestrated by the NoEscape ransomware group, leading to the encryption of its primary servers and exposing a massive 500GB of sensitive organizational data.

Furthermore, this breach, which came to light through a post on the dark web associated with the cybercriminal collective, has far-reaching implications due to Fiocruz’s pivotal role in advancing immunobiology and addressing health challenges.

Despite evidence of compromise, the organization’s management initially refuted the breach, raising concerns about the security of critical information.

The pilfered data from the Fiocruz breach includes critical documents, backups, databases, projects, legal documents, financial records, sensitive human resources data, and even reports related to sexual harassment. The breach has underscored the sophisticated operational methods of the NoEscape Ransomware Group, which stands out by using its own self-developed C++-based ransomware rather than relying on third-party tools. This group’s aggressive approach is evident in the unveiling of their Ransomware-as-a-Service (RaaS) initiative, designed to expand their reach by enlisting affiliates.

The NoEscape ransomware employs advanced techniques, including hybrid encryption using ChaCha20 and RSA algorithms, functioning within Windows Safe Mode, and utilizing asynchronous LAN scanning for identifying vulnerabilities.

Its wide compatibility across various systems and configurable encryption modes highlight its sophistication. The group’s triple-extortion technique, involving data encryption, ransom demands, and threats to publish compromised data, intensifies the pressure on victims to comply. The breach underscores the urgency of addressing ransomware threats and safeguarding critical data in institutions of vital importance like Fiocruz.

Source:
  • Fiocruz Data Breach: NoEscape Ransomware Group Strikes, Exposing Critical Health Data
Tags: August 2023CyberattackCybersecurityData BreachFiocruzincidentsIncidents 2023NoEscapeNoEscape RansomwareRansomwareRansomware AttackSensitive datasensitive informationVulnerabilities
48
VIEWS
ADVERTISEMENT

Related Posts

ChildFund NZ Partner’s Data Breach

ChildFund NZ Partner’s Data Breach

September 29, 2023
Baruch College Malware Incident Update

Baruch College Malware Incident Update

September 29, 2023
Russian Flight Booking System Cyberattack

Russian Flight Booking System Cyberattack

September 29, 2023
Volkswagen Faces Major IT Disruption

Volkswagen Faces Major IT Disruption

September 29, 2023

More Articles

Incidents

IT Services Provider Hit by Donut Gang

September 22, 2023
Alerts

Chinese-Language Phishing Campaigns

September 20, 2023
Cyber Briefing

September 22, 2023 – Cyber Briefing

September 22, 2023
Cyber Briefing

September 21, 2023 – Cyber Briefing

September 21, 2023

Security through data

Cybersecurity Domains

  • API Security
  • Business Continuity
  • Career Development
  • Compliance
  • Cryptography
  • HSM
  • KPIs / KRIs
  • Penetration Testing
  • Shift Left
  • Vulnerability Scan

Emerging Technologies

  • 5G
  • Artificial Intelligence
  • Blockchain
  • Cryptocurrency
  • Deepfake
  • E-Commerce
  • Healthcare
  • IoT
  • Quantum Computing

Frameworks

  • CIS Controls
  • CCPA
  • GDPR
  • NIST
  • 23 NYCRR 500
  • HIPAA

Repository

  • Books
  • Certifications
  • Definitions
  • Documents
  • Entertainment
  • Quotes
  • Reports

Threats

  • APTs
  • DDoS
  • Insider Threat
  • Malware
  • Phishing
  • Ransomware
  • Social Engineering

© 2023 | CyberMaterial | All rights reserved.

World’s #1 Cybersecurity Repository

  • About
  • Legal and Privacy Policy
  • Site Map
No Result
View All Result
  • Alerts
  • Incidents
  • News
  • Audience
    • Cyber Citizens
    • Cyber Professionals
    • Institutions
  • Highlights
    • Blog
    • CyberDecoded
    • Cyber Review
    • CyberStory
    • CyberTips
  • Cyber Risks
    • Alerts
    • Attackers
    • Domains
    • Incidents
    • Threats
  • Opportunities
    • Events
    • Jobs
  • Repository
    • Books
    • Certifications
    • Cheat Sheets
    • Courses
    • Definitions
    • Frameworks
    • Games
    • Hardware Tools
    • Memes
    • Movies
    • Papers
    • Podcasts
    • Quotes
    • Reports
    • Tutorials
  • Report Cyber Incident
  • GET HELP
  • Contact Us

Subscribe to our newsletter

© 2022 Cybermaterial - Security Through Data .

Welcome Back!

Sign In with Google
Sign In with Linked In
OR

Forgotten Password? Sign Up

Create New Account!

Sign Up with Google
Sign Up with Linked In
OR

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.