Malware

Scareware From a Phony Ransomware Group

Apr 4, 2023 By Stu Sjouwerman In KnowBe4

BleepingComputer reports that a cybercriminal gang is sending phony ransomware threats to prior victims of ransomware attacks. The gang, which calls itself “Midnight,” claims to have stolen hundreds of gigabytes of data and threatens to leak it if the victim doesn’t pay a ransom. Security firm Kroll said the gang’s ransom notes use the names of more prolific ransomware actors.

Read Post

KnowBe4

Read more about Scareware From a Phony Ransomware Group

Finding and Fixing the Trojanized 3CX DesktopApp

Apr 3, 2023 By Tanium In Tanium

Another supply chain attack requires an urgent response from security teams.

Read Post

Tanium

Read more about Finding and Fixing the Trojanized 3CX DesktopApp

Shielding Critical Infrastructure: Conquering Ransomware with Keeper Security Government Cloud

Apr 3, 2023 By Mike Eppes In Keeper

The Biden Administration’s 35-page National Cybersecurity Strategy released in March 2023 emphasizes the growing importance of cybersecurity for both private companies and federal agencies. The strategy specifically highlights ransomware as a significant concern, particularly in terms of its impact on private companies that collaborate with the federal government or are critical to national security.

Read Post

Keeper

Read more about Shielding Critical Infrastructure: Conquering Ransomware with Keeper Security Government Cloud

8 Dangerous Ransomware Examples

Apr 3, 2023 By Eric Cisternelli In BitSight

The threat of ransomware has been ever present in 2020, especially within the high-stakes industries like healthcare and those involved in the election. According to Verizon's 2019 Data Breach Investigations Report, 24% of security incidents that involved specific malware functionality exhibited ransomware functionality.

Read Post

BitSight

Read more about 8 Dangerous Ransomware Examples

Rogues On The Rise: Is Your Network Secure Enough?

Apr 3, 2023 By ManageEngine

Rogue device intrusion has become a nightmare for admins running modern IT infrastructures. While these infrastructures are already under constant attack from several malicious entities, other factors like BYOD policies, IoT, and shadow IT make it a challenge to know about every connected device. Even with vigilant security measures in place rogue devices can seep through the cracks.

Get EBook

ManageEngine

Read more about Rogues On The Rise: Is Your Network Secure Enough?

The Evolution of Qakbot: How Cato Networks Adapts to the Latest Threats

Mar 30, 2023 By Zohar Buber In Cato Networks

The world of cybersecurity is a never-ending battle, with malicious actors constantly devising new ways to exploit vulnerabilities and infiltrate networks. One such threat, causing headaches for security teams for over a decade, is the Qakbot Trojan, also known as Qbot. Qakbot has been used in malicious campaigns since 2007, and despite many attempts to stamp it out, continues to evolve and adapt in an attempt to evade detection.

Read Post

Cato Networks

Read more about The Evolution of Qakbot: How Cato Networks Adapts to the Latest Threats

Coffee Talk with SURGe: The Interview Series featuring Allan Liska

Mar 29, 2023 By Splunk In Splunk

Join Coffee Talk with SURGe for our bi-weekly interview series. This week, SURGe member Shannon Davis interviews Allan Liska, threat intelligence analyst at Recorded Future and author of Ransomware: Understand. Prevent. Recover. They'll talk about the threat of ransomware, including recent trends, the impact of hack-back operations, and how organizations can become more resilient against attacks.

View Video

Splunk

Read more about Coffee Talk with SURGe: The Interview Series featuring Allan Liska

CTI Roundup: New CISA tool detects hacking activity in Microsoft cloud services

Mar 29, 2023 By Tanium In Tanium

A joint advisory on LockBit 3.0 ransomware, CISA’s latest tool which detects hacking activity in Microsoft cloud services, and ScarCruft’s evolving arsenal.

Read Post

Tanium

Read more about CTI Roundup: New CISA tool detects hacking activity in Microsoft cloud services

Netskope Cloud Threats Memo: Cyber Espionage Campaign Abusing OneDrive and Dropbox

Mar 29, 2023 By Paolo Passeri In Netskope

Legitimate cloud storage services are increasingly being exploited for cyber espionage, so the discovery of a similar operation in the context of the Russian invasion of Ukraine was just a matter of time.

Read Post

Netskope

Read more about Netskope Cloud Threats Memo: Cyber Espionage Campaign Abusing OneDrive and Dropbox

RedLine Stealer strikes the hospitality industry

Mar 29, 2023 By Foresiet In Foresiet

In recent times, the hospitality industry has experienced a surge in malicious emails aimed at their employees, particularly customer service personnel who handle customer emails. These emails were carefully crafted to elicit a sense of urgency and trick hotel staff into clicking and opening them, using social engineering tactics.

Read Post