{"id":31411,"date":"2020-11-07T16:27:32","date_gmt":"2020-11-07T14:27:32","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=31411"},"modified":"2025-08-28T03:30:50","modified_gmt":"2025-08-28T00:30:50","slug":"ragnar-locker-hits-capcom-and-campari-google-launches-its-own-vpn-and-other-cybersecurity-headlines","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/ragnar-locker-hits-capcom-and-campari-google-launches-its-own-vpn-and-other-cybersecurity-headlines\/","title":{"rendered":"Ragnar Locker hits Capcom and Campari; Google launches its own VPN, and other cybersecurity headlines"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">We have gathered the week&#8217;s most important cybersecurity news.<\/span><\/p>\n<div class=\"wp-block-text-wrappers-keypoints article_keypoints\">\n<ul class=\"wp-block-list\">\n<li>Google has announced the launch of its own VPN service. It will initially be available to a limited set of users.<\/li>\n<li>The Ragnar Locker ransomware attacked game developer Capcom and beverage maker Campari.<\/li>\n<li>Apple and Google reported fixes for several vulnerabilities.<\/li>\n<\/ul>\n<\/div>\n<p><!--more--><\/p>\n<h2 class=\"wp-block-heading\"><b>Researchers detail prices on the Russian market for doxxing data<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">DLBI <\/span><a href=\"https:\/\/dlbi.ru\/illegal-search-in-bases-review-2020\/\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400;\">published<\/span><\/a><span style=\"font-weight: 400;\"> a study on the Russian market for doxxing individuals in the dark web.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The median price for obtaining information from banking databases in 2020 rose by 20%. A bank account\/card statement for an individual for a month costs on average from 5,000 to 12,000 rubles.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The price of doxxing subscribers of operators \u2014 namely, call and SMS details for a month \u2014 ranges from 1,500 to 15,000 rubles depending on the operator.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">To obtain data about a person from government databases (ownership information of a vehicle from the traffic police, movement data from the Rozysk-Magistral system, and passport data from the AS \u201cRussian Passport\u201d) an average of 1,000-1,700 rubles is paid.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">For more on how the data black market operates, read ForkLog&#8217;s exclusive.<\/span><\/p>\n<h2 class=\"wp-block-heading\"><b>Google to launch its own VPN<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Google announced the launch of its own VPN service. Access will be available to Google One subscribers for Android. Initially, availability will be limited to the United States, with support for other countries and operating systems to be added later.\u00a0<\/span><\/p>\n<h2 class=\"wp-block-heading\"><b>Remote access to 7,500 organizations for sale<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">On Russian hacker forums there appeared an advertisement offering access to 7,500 organizations, mostly educational. The seller offers access to compromised networks via the remote desktop protocol.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The attacker organized an auction \u2014 the starting bid for the entire package starts at 25 BTC, and the \u201cBuy Now\u201d option can be purchased for 75 BTC.<\/span><\/p>\n<h2 class=\"wp-block-heading\"><b>Ragnar Locker ransomware attacked Capcom and Campari<\/b><span style=\"font-weight: 400;\">\u00a0<\/span><\/h2>\n<p><span style=\"font-weight: 400;\">The famous Italian beverage maker Campari Group, Cinzano and Appleton <\/span><a href=\"https:\/\/ftaonline.com\/news\/campari-group-vittima-di-un-attacco-malware\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400;\">became a victim<\/span><\/a><span style=\"font-weight: 400;\"> of Ragnar Locker ransomware. The attackers allegedly stole <\/span><span style=\"font-weight: 400;\">2 TB of confidential data and demanded a $15 million ransom to restore the encrypted files.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In addition to Campari Group, the malware also attacked the Japanese game developer Capcom, known for Street Fighter, Resident Evil, Devil May Cry, Monster Hunter and Mega Man. The hackers claim they stole <\/span><span style=\"font-weight: 400;\">1 TB of data.<\/span><\/p>\n<p>The company did not disclose details of the attack; however a cybersecurity researcher going by the handle Pancak3 confirmed that the Ragnar Locker operators were behind it.<\/p>\n<blockquote class=\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\">\n<p dir=\"ltr\" lang=\"en\">I can confirm that Capcom was infected with Ragnar Locker <a href=\"https:\/\/t.co\/ily9RAzvMg\">https:\/\/t.co\/ily9RAzvMg<\/a><\/p>\n<p>\u2014 \u043f\u0430\u043d\u043a\u0430\u043a3 (@pancak3lullz) <a href=\"https:\/\/twitter.com\/pancak3lullz\/status\/1324367146273640448?ref_src=twsrc%5Etfw\">November 5, 2020<\/a><\/p>\n<\/blockquote>\n<p><script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<h2 class=\"wp-block-heading\"><b>Russia to introduce fines for violations of critical information infrastructure protection<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">The Government of the Russian Federation has submitted a bill to the State Duma <\/span><a href=\"https:\/\/sozd.duma.gov.ru\/bill\/1048574-7\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400;\">bill<\/span><\/a><span style=\"font-weight: 400;\"> proposing hefty fines for violations of security requirements for critical information infrastructure and for failing to provide timely information to the authorities responsible for cyberattack response.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The fines are expected to reach up to 500,000 rubles.\u00a0<\/span><\/p>\n<h2 class=\"wp-block-heading\"><b>US authorities reveal new malware families and step up hunt for foreign hackers<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">U.S. Cyber Command, in conjunction with the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) <a href=\"https:\/\/u1f987.com\/en\/news\/us-authorities-reveal-new-malware-linked-to-russian-hackers\"><span style=\"font-weight: 400;\">detected<\/span><\/a><span style=\"font-weight: 400;\"> new forms of malware ComRAT and Zebrocy, which, according to authorities, were used in attacks on government networks.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">According to the report, they are used by the Turla and APT28 hacker groups, which are linked to Russia.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Beyond tracking Russian hackers, Cyber Command has in recent years, and especially ahead of the presidential elections, focused on identifying cybercriminals from China and Iran.<\/span><\/p>\n<h2 class=\"wp-block-heading\"><b>Apple and Google fixed several already-exploited vulnerabilities<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Apple <\/span><a href=\"https:\/\/support.apple.com\/en-us\/HT211929\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400;\">announced<\/span><\/a><span style=\"font-weight: 400;\"> updates for iOS and iPadOS addressing zero-day vulnerabilities.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Google also outlined several updates aimed at patching 0-day vulnerabilities.<\/span><\/p>\n<blockquote class=\"wp-block-quote twitter-tweet is-layout-flow wp-block-quote-is-layout-flow\">\n<p dir=\"ltr\" lang=\"en\">Should also clarify that this new 0day was seen in targeted exploitation and this is not related to any US election related targeting.<\/p>\n<p>\u2014 Shane Huntley (@ShaneHuntley) <a href=\"https:\/\/twitter.com\/ShaneHuntley\/status\/1323427472377982981?ref_src=twsrc%5Etfw\">November 3, 2020<\/a><\/p>\n<\/blockquote>\n<p><script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Experts urged users to update their devices as soon as possible.<\/p>\n<h2 class=\"wp-block-heading\"><b>Brazilian Supreme Court halts operations due to ransomware attack<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">The Brazilian Supreme Court faced a ransomware attack, forcing it to take its systems offline. Experts suspect the attack was carried out by the RansomExx hackers.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Sites of many other government agencies were also taken offline, though it is not known whether they were attacked by the same hackers.<\/span><\/p>\n<h2 class=\"wp-block-heading\"><b>Private-prison operator reports ransomware attack<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">The GEO Group, known for its private prisons and detention centers for illegal immigrants in the United States and other countries, was subjected to a ransomware attack in the summer.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Hackers gained access to the personal data of inmates and staff at several centers in the United States.\u00a0<\/span><\/p>\n<p>Also on ForkLog:<\/p>\n<ul class=\"wp-block-list\">\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Online, <a href=\"https:\/\/u1f987.com\/en\/news\/online-databases-containing-34-million-user-records-from-17-companies-found\"><span style=\"font-weight: 400;\">discovered<\/span><\/a><span style=\"font-weight: 400;\"> a database with 34 million user records from 17 companies.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Media reported that hackers <a href=\"https:\/\/u1f987.com\/en\/news\/media-hackers-put-10000-robinhood-user-passwords-up-for-sale\"><span style=\"font-weight: 400;\">put up for sale<\/span><\/a><span style=\"font-weight: 400;\"> 10,000 Robinhood user passwords.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Researchers <a href=\"https:\/\/u1f987.com\/en\/news\/researchers-expose-hackers-for-double-extortion-and-data-hoarding\"><span style=\"font-weight: 400;\">exposed<\/span><\/a><span style=\"font-weight: 400;\"> hackers for double extortion and data storage.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">According to ESET data, in Q3 2020 <a href=\"https:\/\/u1f987.com\/en\/news\/rise-in-bitcoin-price-boosts-the-popularity-of-hidden-miners\"><span style=\"font-weight: 400;\">the activity of stealth mining software rose<\/span><\/a><span style=\"font-weight: 400;\">.<\/span><\/li>\n<\/ul>\n<h2 class=\"wp-block-heading\"><b>What to read this weekend?<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">How Palantir works \u2014 the company that armed the intelligence services with algorithms for mass surveillance<\/span><\/p>\n<p>Subscribe to ForkLog news on Telegram: <a href=\"https:\/\/t.me\/forklogfeed\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">ForkLog Feed<\/a> \u2014 the full stream of news, <a href=\"https:\/\/telegram.me\/forklog\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">ForkLog<\/a> \u2014 the most important news and polls.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We have gathered the week&#8217;s most important cybersecurity news.<\/p>\n","protected":false},"author":1,"featured_media":31412,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1111,1238,1233],"class_list":["post-31411","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybersecurity","tag-cybersecurity-digest","tag-industry-digests"],"aioseo_notices":[],"amp_enabled":true,"views":"22","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/31411","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=31411"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/31411\/revisions"}],"predecessor-version":[{"id":31413,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/31411\/revisions\/31413"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/31412"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=31411"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=31411"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=31411"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}