%term

Why Organisations Must Get to Grips With Cloud Delivered Malware

Feb 28, 2023 By Richard Davis In Netskope

Netskope has just published the Monthly Threat Report for February, with this month’s report focused on what is going on in Europe. I don’t intend to summarise the report in this blog, instead I want to zoom in and study a continuing trend that was highlighted in there; one that is unfortunately heading in the wrong direction.

Read Post

Netskope

Read more about Why Organisations Must Get to Grips With Cloud Delivered Malware

Negotiating with Ransomware: 3 Critical Factors to Consider

Feb 27, 2023 By Razorthorn In Razorthorn

Ransomware attacks are becoming increasingly common, and it's not a matter of if, but when, you'll be targeted. When faced with a ransomware attack, it's crucial to have a plan in place, and that starts with understanding the threat you're up against. In this video, we discuss the three critical factors to consider before negotiating with ransomware attackers.

View Video

Razorthorn

Read more about Negotiating with Ransomware: 3 Critical Factors to Consider

10 of the Biggest Ransomware Attacks in History

Feb 24, 2023 By Nivedita James In Astra

The term ransomware word perfectly captures the idea behind it, i.e. holding a computer system or software captive until a ransom is paid. Traditionally, attackers use ransomware to target individuals but things are different now.

Read Post

Astra

Read more about 10 of the Biggest Ransomware Attacks in History

Stealing Credentials with a Security Support Provider (SSP)

Feb 24, 2023 By Jeff Warren In Netwrix

Mimikatz provides attackers with several different ways to steal credentials from memory or extract them from Active Directory. One of the most interesting options is the MemSSP command. An adversary can use this command to register a malicious Security Support Provider (SSP) on a Windows member server or domain controller (DC) — and that SSP will log all passwords in clear text for any users who log on locally to that system.

Read Post

Netwrix

Read more about Stealing Credentials with a Security Support Provider (SSP)

The Dark Net's One-Stop-Shop for Cybercrime: Ransomware

Feb 24, 2023 By Razorthorn In Razorthorn

In this video, I'll be taking you on a chilling journey through the inner workings of the dark net's cybercrime underworld. I'll show you how easy it is to buy a compromised server, purchase ransomware-as-a-service components, and install an Xbox kit to deploy the attack with friends. But the real eye-opener is the endgame: turning the stolen Bitcoin into cash. I'll reveal how Tumblr services on the dark net are used to launder money, and how traditional criminals use Doctrine to convert it into physical cash. Join me as I guide you step-by-step through this one-stop-shop for cybercrime, and expose the alarming ease with which it can all be accomplished. - Oliver Rochford

View Video

Razorthorn

Read more about The Dark Net's One-Stop-Shop for Cybercrime: Ransomware

CrowdStrike Uncovers I2Pminer MacOS Mineware Variant

Feb 23, 2023 By Mitch Datka - Ron Bolger In CrowdStrike

CrowdStrike recently analyzed a macOS-targeted mineware campaign that utilized malicious application bundles to deliver open source XMRig cryptomining software and Invisible Internet Protocol (I2P) network tooling.

Read Post

CrowdStrike

Read more about CrowdStrike Uncovers I2Pminer MacOS Mineware Variant

The Dark Side of AI: ChatGPT and the Rise of Malware Ransomware

Feb 23, 2023 By Razorthorn In Razorthorn

In this video, we'll address the elephant in the room: the growing concern of AI being used for malicious purposes. With the rise of malware and ransomware attacks, it's becoming far too easy for outsiders to become insiders in this dangerous world. I'll be discussing ChatGPT and its role in this trend, as well as exploring the reasons why individuals turn to AI automation as a means of generating income. Join me for an eye-opening conversation about the dark side of AI and the urgent need for responsible use and regulation. - Richard Cassidy

View Video

Razorthorn

Read more about The Dark Side of AI: ChatGPT and the Rise of Malware Ransomware

Fake ChatGPT apps spread Windows and Android malware

Feb 23, 2023 By Graham Cluley In Tripwire

OpenAI's ChatGPT chatbot has been a phenomenon, taking the internet by storm. Whether it is composing poetry, writing essays for college students, or finding bugs in computer code, it has impressed millions of people and proven itself to be the most accessible form of artificial intelligence ever seen.

Read Post

Tripwire

Read more about Fake ChatGPT apps spread Windows and Android malware

Ransomware Families Bringing Home the Biggest Security Risks

Feb 22, 2023 By Chrissy Kidd In Splunk

Ransomware is the type of malware that locks you out of your own computer until you pay a ransom. This digital extortion is one of the most serious security threats facing the Internet today. Ransomware not only impacts unsuspecting Internet users, but business organizations, government institutions and even critical services such as utility, healthcare and emergency facilities. Ransomware has been around for many years.

Read Post

Splunk

Read more about Ransomware Families Bringing Home the Biggest Security Risks

Democratized Breach Damage: The Economics Behind Ransomware

Feb 22, 2023 By Razorthorn In Razorthorn

In this video, we explore the economics behind ransomware and how it has been democratized through the use of cryptocurrencies like Bitcoin. While the recent breach affecting multiple companies is concerning, the real interesting aspect is the commercial, professional cybercrime as a service economy that has emerged as a result. We discuss how the ability to monetize ransomware has led to its rise and how alternative forms of payment like Amazon vouchers were previously used before the widespread adoption of cryptocurrencies. It's not just about the technology aspect - the economics behind ransomware are equally fascinating.

View Video