github-actions[bot]
commented
2 years ago This issue is stale because it has been open 1 day with no activity. Remove stale label or comment or this will be closed in 1 day.
Closed github-actions[bot] closed 2 years ago
github-actions[bot]
commented
2 years ago This issue is stale because it has been open 1 day with no activity. Remove stale label or comment or this will be closed in 1 day.
github-actions[bot]
commented
2 years ago This issue was closed because it has been stale with no activity.
This site generally doesn’t cover or announce new types of ransomware, but this one targets the healthcare sector, so…. Bill Toulas reports: A new ransomware family called ‘GwisinLocker’ targets South Korean healthcare, industrial, and pharmaceutical companies with Windows and Linux encryptors, including support for encrypting VMware ESXi servers and virtual machines. The new malware is the product of a lesser-known threat actor dubbed Gwisin, which means “ghost” in Korean. The actor is of unknown origin but appears to have a good knowledge of the Korean language. Also, the attacks coincided with Korean public holidays and occurred during early morning hours, so Gwisin has a good grasp of the country’s culture and business routines. Read more at Bleeping Computer.
https://www.databreaches.net/new-gwisinlocker-ransomware-encrypts-windows-and-linux-esxi-servers/