ransomware

“It is a nightmare. Do all you can to prevent ransomware.” – A survey respondent Many businesses are hesitant to talk about their experiences with ransomware. It can be uncomfortable to cop being hit. Whether it’s shame at not doing more to prevent it, the risk of additional bad publicity from discussing it or some other […]

The post We Finally Got Businesses to Talk About Their Run-ins With Ransomware. Here’s What They Said. appeared first on Webroot Blog.

Read More We Finally Got Businesses to Talk About Their Run-ins With Ransomware. Here’s What They Said.

Ransomware attacks generate big headlines when the targets are government entities, universities and healthcare organizations. But there’s one increasingly frequent target of ransomware attacks that tends to slip under the radar. Small and midsize businesses (SMBs) have become bigger financial targets for hackers. As Webroot Senior Threat Researcher Kelvin Murray points out in a recent […]

The post Why SMBs are Under Attack by Ransomware appeared first on Webroot Blog.

Read More Why SMBs are Under Attack by Ransomware

With investors currently bullish on Bitcoin, is its high value is driving cybercriminals to pursue crypto-generating forms of cybercrime like ransomware and illicit miners? At time of writing, the value of one Bitcoin is north of $58 thousand. Famously volatile, a crash is widely expected to accompany the current bubble, perhaps before the end of […]

The post Is the Value of Bitcoin Tied to Ransomware Rates? appeared first on Webroot Blog.

Read More Is the Value of Bitcoin Tied to Ransomware Rates?

Fileless malware and cryptominer attack rates grew by nearly 900% and 25% respectively, while unique ransomware payloads plummeted by 48% in 2020 compared to 2019, according to WatchGuard. Q4 2020 also brought a 41% increase in encrypted malware detect…

Read More Massive increase in endpoint attacks, rising rate of encrypted malware and new exploits targeting IoT

H2 2020 – Kaspersky observed an increase in ransomware attacks on industrial control system (ICS) systems in developed countries. Cybersecurity firm Kaspersky has published the Industrial Control System Threat Landscape report for H2 2020 which is based on statistical data collected by the distributed antivirus Kaspersky Security Network (KSN).  The data analyzed by the experts were received […]

The post 33.4% of ICS computers hit by a cyber attack in H2 2020 appeared first on Security Affairs.

Read More 33.4% of ICS computers hit by a cyber attack in H2 2020

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to receive the complete weekly Security Affairs Newsletter for free, including the international press, subscribe here. Experts found two flaws in Facebook for WordPress Plugin Hackers disrupted live […]

The post Security Affairs newsletter Round 308 appeared first on Security Affairs.

Read More Security Affairs newsletter Round 308

The Avaddon ransomware operators updated their malware after security researchers released a public decryptor in February 2021. The Avaddon ransomware family first appeared in the threat landscape in February 2020, and its authors started offering it with a Ransomware-as-a-Service (RaaS) model in June, 2020. In August 2020, cybersecurity intelligence firm Kela was the first to report that […]

The post Evolution and rise of the Avaddon Ransomware-as-a-Service appeared first on Security Affairs.

Read More Evolution and rise of the Avaddon Ransomware-as-a-Service

A probabilistic graphical modeling framework used by Microsoft 365 Defender research and intelligence teams for threat actor tracking enables us to quickly predict the likely threat group responsible for an attack, as well as the likely next attack stages.

The post Automating threat actor tracking: Understanding attacker behavior for intelligence and contextual alerting appeared first on Microsoft Security.

Read More Automating threat actor tracking: Understanding attacker behavior for intelligence and contextual alerting

Harris Federation, the multi-academy trust of 50 primary and secondary academies in and around London, was hit by a ransomware attack. A ransomware attack hit the IT systems of London-based nonprofit multi-academy trust Harris Federation on Saturday, March 27. Harris Federation is a multi-academy trust of 50 primary and secondary academies in and around London […]

The post London-based academies Harris Federation hit by ransomware attack appeared first on Security Affairs.

Read More London-based academies Harris Federation hit by ransomware attack

A cyber attack has disrupted the Australian Channel Nine’s live broadcasts, the company was unable to transmit its Sunday morning news program. A cyber attack has hit the Australian Channel Nine’s live broadcasts causing the disruption of its operations. The broadcaster was unable to air its Sunday morning news program, which runs from 7:00 am to 1:00 […]

The post Hackers disrupted live broadcasts at Channel Nine. Is it a Russian retaliation? appeared first on Security Affairs.

Read More Hackers disrupted live broadcasts at Channel Nine. Is it a Russian retaliation?

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. CISA releases CHIRP, a tool to detect SolarWinds malicious activity Microsoft Defender can now protect servers against ProxyLogon […]

The post Security Affairs newsletter Round 307 appeared first on Security Affairs.

Read More Security Affairs newsletter Round 307

Clop ransomware operators now email victim’s customers and ask them to demand a ransom payment to protect their privacy to force victims into paying the ransom. Clop ransomware operators are switching to a new tactic to force victims into paying the ransom by emailing their customers and asking them to demand a ransom payment to […]

The post Clop Ransomware gang now contacts victims’ customers to force victims into pay a ransom appeared first on Security Affairs.

Read More Clop Ransomware gang now contacts victims’ customers to force victims into pay a ransom

Microsoft continues to monitor and investigate attacks exploiting the recent on-premises Exchange Server vulnerabilities. As organizations recover from this incident, we continue to publish guidance and share threat intelligence to help detect and evict threat actors from affected environments.

The post Analyzing attacks taking advantage of the Exchange Server vulnerabilities appeared first on Microsoft Security.

Read More Analyzing attacks taking advantage of the Exchange Server vulnerabilities

When you read the headlines, you might think cybercriminals only strike big companies. In fact, over 40 per cent of cybersecurity attacks are on small and medium-sized businesses. “Cyber criminals target businesses of any size indiscriminately,” said Andrew Loschmann COO, Field Effect at a recent ITWC webinar. “They’re just looking for vulnerabilities and a capacity […]

The post The biggest cybersecurity mistake? Thinking you’re too small get hit first appeared on IT World Canada.

Read More The biggest cybersecurity mistake? Thinking you’re too small get hit

Security experts reported that a second ransomware gang, named Black Kingdom, is targeting Microsoft Exchange servers. After the public disclosure of ProxyLogon vulnerabilities, multiple threat actors started targeting vulnerable Microsoft Exchange servers exposed online. The first ransomware gang exploiting the above issues in attacks in the wild was a group tracked as DearCry. Last crew […]

The post Black Kingdom ransomware is targeting Microsoft Exchange servers appeared first on Security Affairs.

Read More Black Kingdom ransomware is targeting Microsoft Exchange servers

This week, IoT company Sierra Wireless disclosed a ransomware attack that hit its internal IT systems on March 20 and disrupted its production. Sierra Wireless is a Canadian multinational wireless communications equipment designer and manufacturer headquartered in Richmond, British Columbia, Canada. The company sells mobile computing and machine-to-machine (M2M) communications products that work over cellular […]

The post Sierra Wireless halted production at its manufacturing sites due to ransomware attack appeared first on Security Affairs.

Read More Sierra Wireless halted production at its manufacturing sites due to ransomware attack

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. Experts found 15 flaws in Netgear JGS516PE switch, including a critical RCE Google releases Spectre PoC code exploit […]

The post Security Affairs newsletter Round 306 appeared first on Security Affairs.

Read More Security Affairs newsletter Round 306

The FBI is reminding organisations of the serious threat posed by business email compromise (BEC) scams, declaring that it caused over $1.8 billion worth of losses to businesses last year.

Read more in my article on the Tripwire State of Security blog.

Read More 64 times worse than ransomware? FBI statistics underline the horrific cost of business email compromise

The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the US and UK. The FBI has issued Tuesday an alert to warn about an increase in PYSA ransomware attacks against education institutions in the United States and the United Kingdom. In March 2020, CERT France cyber-security […]

The post FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK appeared first on Security Affairs.

Read More FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. Chinese hackers allegedly hit thousands of organizations using Microsoft Exchange REvil Ransomware gang uses DDoS attacks and voice […]

The post Security Affairs newsletter Round 305 appeared first on Security Affairs.

Read More Security Affairs newsletter Round 305

A ransomware attack hit the Oloron-Sainte-Marie hospital in southwest France, it is the third such attack in the last month. A ransomware attack paralyzed the systems at the Oloron-Sainte-Marie hospital in southwest France. The incident took place on Monday, the ransomware gang is demanding the payment of a ransom of $50,000 worth of Bitcoin. The […]

The post Another French hospital hit by a ransomware attack appeared first on Security Affairs.

Read More Another French hospital hit by a ransomware attack