Malware

Hey, You. Get Off of My Cloud

May 8, 2024 By Katrina Thompson In Tripwire

The Rolling Stones wanted to protect their space; we, as security practitioners, need to protect ours. Data 'castles' in the cloud are out there, and they're constantly under siege. By drawing inspiration from a band that embodied personal freedom, we can draw some – okay, very stretched - parallels to modern cloud security. Nonetheless, they work. And we all knew this blog was coming. And if you read the blog backward you can hear the name of the latest malware family... Maybe.

Read Post

Tripwire

Read more about Hey, You. Get Off of My Cloud

9 in 10 Organizations Paid At least One Ransom Last Year

May 8, 2024 By Stu Sjouwerman In KnowBe4

New analysis of cyber attacks shows ransomware attacks are running far more rampant than previously thought, with half of organizations blaming poor cyber hygiene. After last year’s shocking stat that 70% of organizations pay the ransom, it’s really surprising to see that an even greater percentage (91%) have paid a ransom at least once in the last 12 months – this according to Extrahop’s 2024 Global Cyber Confidence Index.

Read Post

KnowBe4

Read more about 9 in 10 Organizations Paid At least One Ransom Last Year

May 2024: LockBit Returns?

May 5, 2024 By Adi Bleih In Cyberint

On May 6, 2024, the LockBit ransomware group published a list of over 50 victims on their newly established data leak platform. Among the victims are NASDAQ-listed firms, major corporations, governmental organizations, and technology companies. Interestingly, some of these victims had been targeted previously by other groups or even by LockBit in earlier attacks.

Read Post

Cyberint

Read more about May 2024: LockBit Returns?

The Impact of Ransomware on Hospitals and Patient Care with Hannah Neprash, PhD

May 3, 2024 By Rubrik In Rubrik

NEWS: Cyber Security Decoded is now Data Security Decoded! In this episode of the podcast, our host and Head of Rubrik Zero Labs, Steve Stone, is joined by Dr. Hannah Neprash, a health economist whose research focuses on the delivery and financing of healthcare. Steve and Dr. Neprash discuss the findings in Rubrik Zero Labs' new report, “The State of Data Security: Measuring Your Data’s Risk,” and focus on the aspects of the report, specifically calling out the cyber threats and vulnerabilities facing healthcare organizations.

View Video

Rubrik

Read more about The Impact of Ransomware on Hospitals and Patient Care with Hannah Neprash, PhD

Malware-as-a-Service (MaaS): How to protect your customers

May 3, 2024 By The Editor In WatchGuard

The cyberthreat landscape is in a state of constant evolution. As the digital dependency of businesses grows, so do the opportunities for those looking to take advantage of it. In recent years, we have witnessed an upsurge in a new type of malicious actor: the non-technical cybercriminal.

Read Post

WatchGuard

Read more about Malware-as-a-Service (MaaS): How to protect your customers

The New SEXi Ransomware Targets VMware ESXi Servers: What You Need to Know?

May 2, 2024 By Jasmin Kahriman In BDRSuite

Several companies running their workloads on VMware ESXi servers were attacked by the hacking group SEXi. They developed ransomware called SEXi to encrypt VMware ESXi servers, virtual machines, and backups. SEXi = ESXi – quite an interesting name, isn’t it? It points directly to ESXi.

Read Post

BDRSuite

Read more about The New SEXi Ransomware Targets VMware ESXi Servers: What You Need to Know?

REvil Ransomware Operator Behind The Kaseya Supply Chain Hack Sentenced To 13 Years In Prison

May 2, 2024 By Key Dutch In ImmuniWeb

Read also: Notorious Finnish hacker receives a 6-year prison sentence for Vastaamo breach, and more.

Read Post

ImmuniWeb

Read more about REvil Ransomware Operator Behind The Kaseya Supply Chain Hack Sentenced To 13 Years In Prison

This is SCARLETEEL

May 2, 2024 By Sysdig In Sysdig

In under five minutes, SCARLETEEL exploits an unpatched vulnerability to access credentials, escalate privileges, and move to other accounts, potentially stealing proprietary software. To defend against this threat, sophisticated layers of defense and speed are necessary. The 555 benchmark is one way to keep your team ready to act at the speed of the cloud.

View Video

Sysdig

Read more about This is SCARLETEEL

Acid Rain, Pikabot, VenomRAT, Mallox Ransomware, and More: Hacker's Playbook Threat Coverage Round-up: March-April 2024

May 2, 2024 By Kaustubh Jagtap In SafeBreach

In this version of the Hacker’s Playbook Threat Coverage round-up, we are highlighting attack coverage for newly discovered or analyzed threats, including those based on original research conducted by SafeBreach Labs. SafeBreach customers can select and run these attacks and more from the SafeBreach Hacker’s Playbook™ to ensure coverage against these advanced threats.

Read Post

SafeBreach

Read more about Acid Rain, Pikabot, VenomRAT, Mallox Ransomware, and More: Hacker's Playbook Threat Coverage Round-up: March-April 2024

Credentials And Control Go Bye, Bye, Bye with AsyncRAT: What You Need to Know

May 2, 2024 By Adi Bleih In Cyberint

Introduced in 2019, AsyncRAT is classified as a remote access trojan (RAT) that primarily functions as a tool for stealing credentials and loading various malware, including ransomware. This RAT boasts botnet capabilities and features a command and control (C2) interface, granting operators the ability to manipulate infected hosts from a remote location.

Read Post