July 2, 2021

Wizard Spider, the cybercrime gang behind the TrickBot botnet, is believed to be the author of a new ransomware family dubbed Diavol, Fortinet researchers report. Researchers from Fortinet reported that a new ransomware family, tracked as Diavol, might have been developed by Wizard Spider, the cybercrime gang behind the TrickBot botnet. The Trickbot botnet was used […]

The post Diavol ransomware appears in the threat landscape. Is it the work of the Wizard Spider gang? appeared first on Security Affairs.

Read More Diavol ransomware appears in the threat landscape. Is it the work of the Wizard Spider gang?

Cyber resilience refers to a business’s ability to mitigate damage to its systems, processes and even its reputation. It’s based on the principle that, in the real (and really connected) world, adverse events occur. This could be in the form of a user enabling a breach by providing sensitive information during a phishing attack, through […]

The post Podcast: How to build a cyber resilient business appeared first on Webroot Blog.

Read More Podcast: How to build a cyber resilient business

Microsoft is urging Azure users to update PowerShell to address a remote code execution vulnerability that was fixed earlier this year. Microsoft is recommending its Azure users to update PowerShell versions 7.0 and 7.1 to protect against a high severity remote code execution vulnerability tracked as CVE-2021-26701. The IT giant is inviting the PowerShell task […]

The post Microsoft urges Azure users to update PowerShell to fix RCE flaw appeared first on Security Affairs.

Read More Microsoft urges Azure users to update PowerShell to fix RCE flaw

Countless Western Digital customers saw their MyBook Live network storage drives remotely wiped in the past month thanks to a bug in a product line the company stopped supporting in 2015, as well as a previously unknown zero-day flaw. But there is a similarly serious zero-day flaw present in a much broader range of newer Western Digital MyCloud network storage devices that will remain unfixed for many customers who can’t or won’t upgrade to the latest operating system.

Read More Another 0-Day Looms for Many Western Digital Users

Cyber Defense Magazine July 2021 Edition has arrived. We hope you enjoy this month’s edition…packed with over 158 pages of excellent content. In this edition: Colonial Pipeline, JBS Cyber Attacks Shine Spotlight on Operational Technology Vulnerabilities for Wide Range of Business Sectors Getting The Cloud Right – Security and Compliance Flipping the Cyber Script … […]

The post Cyber Defense Magazine – July 2021 has arrived. Enjoy it! appeared first on Security Affairs.

Read More Cyber Defense Magazine – July 2021 has arrived. Enjoy it!

The recently leaked Babuk Locker ransomware builder was used by a threat actor in an ongoing campaign targeting victims worldwide. At the end of June, The Record first reported that the builder for the Babuk Locker ransomware was leaked online allowing threat actors to use it to create their own version of the popular ransomware. […]

The post Experts warn of Babuk Locker attacks with recently leaked ransomware builder appeared first on Security Affairs.

Read More Experts warn of Babuk Locker attacks with recently leaked ransomware builder

Two reports this week. The first is from Microsoft, which wrote:

As part of our investigation into this ongoing activity, we also detected information-stealing malware on a machine belonging to one of our customer support agents with access to basic account information for a small number of our customers. The actor used this information in some cases to launch highly-targeted attacks as part of their broader campaign.

The second is from the NSA, CISA, FBI, and the UK’s NCSC, which wrote that the GRU is continuing to conduct brute-force password guessing attacks around the world, and is in some cases successful. From the …

Read More More Russian Hacking

With Files from Jori Negin-Shecter Apple responds to employee requests for remote work, Sony’s PlayStation 3 Console experiences a major leak, and Facebook’s stock value soars after a court decision. It’s all the biz/tech news that’s popular right now. Welcome to Hashtag Trending! It’s Friday, July 2nd and I’m your host Tom Li. Apple has […]

The post Hashtag Trending, July 2 – Apple’s Remote Work Pushback; Sony’s PS3 Leak; Facebook hits $1 Trillion in Value first appeared on IT World Canada.

Read More Hashtag Trending, July 2 – Apple’s Remote Work Pushback; Sony’s PS3 Leak; Facebook hits $1 Trillion in Value

CISA issued a security alert to warn admins to disable the Windows Print Spooler service on servers not used for printing due to PrintNightmare zero-day. CISA issued an alert to warn admins to disable the Windows Print Spooler on servers not used for printing due to the risk of exploitation of the PrintNightmare zero-day vulnerability. ““while Microsoft […]

The post CISA alert urges to disable Windows Print Spooler to percent PrintNightmare attacks appeared first on Security Affairs.

Read More CISA alert urges to disable Windows Print Spooler to percent PrintNightmare attacks