Malware

May 2024: LockBit Returns?

May 5, 2024 By Adi Bleih In Cyberint

On May 6, 2024, the LockBit ransomware group published a list of over 50 victims on their newly established data leak platform. Among the victims are NASDAQ-listed firms, major corporations, governmental organizations, and technology companies. Interestingly, some of these victims had been targeted previously by other groups or even by LockBit in earlier attacks.

Read Post

Cyberint

Read more about May 2024: LockBit Returns?

Securing Sensitive Patient Data in Healthcare with Hannah Neprash, PhD

May 3, 2024 By Rubrik In Rubrik

NEWS: Cyber Security Decoded is now Data Security Decoded! In this episode of the podcast, our host and Head of Rubrik Zero Labs, Steve Stone, is joined by Dr. Hannah Neprash, a health economist whose research focuses on the delivery and financing of healthcare. Steve and Dr. Neprash discuss the findings in Rubrik Zero Labs' new report, “The State of Data Security: Measuring Your Data’s Risk,” and focus on the aspects of the report, specifically calling out the cyber threats and vulnerabilities facing healthcare organizations.

View Video

Rubrik

Read more about Securing Sensitive Patient Data in Healthcare with Hannah Neprash, PhD

Malware-as-a-Service (MaaS): How to protect your customers

May 3, 2024 By The Editor In WatchGuard

The cyberthreat landscape is in a state of constant evolution. As the digital dependency of businesses grows, so do the opportunities for those looking to take advantage of it. In recent years, we have witnessed an upsurge in a new type of malicious actor: the non-technical cybercriminal.

Read Post

WatchGuard

Read more about Malware-as-a-Service (MaaS): How to protect your customers

The New SEXi Ransomware Targets VMware ESXi Servers: What You Need to Know?

May 2, 2024 By Jasmin Kahriman In BDRSuite

Several companies running their workloads on VMware ESXi servers were attacked by the hacking group SEXi. They developed ransomware called SEXi to encrypt VMware ESXi servers, virtual machines, and backups. SEXi = ESXi – quite an interesting name, isn’t it? It points directly to ESXi.

Read Post

BDRSuite

Read more about The New SEXi Ransomware Targets VMware ESXi Servers: What You Need to Know?

REvil Ransomware Operator Behind The Kaseya Supply Chain Hack Sentenced To 13 Years In Prison

May 2, 2024 By Key Dutch In ImmuniWeb

Read also: Notorious Finnish hacker receives a 6-year prison sentence for Vastaamo breach, and more.

Read Post

ImmuniWeb

Read more about REvil Ransomware Operator Behind The Kaseya Supply Chain Hack Sentenced To 13 Years In Prison

This is SCARLETEEL

May 2, 2024 By Sysdig In Sysdig

In under five minutes, SCARLETEEL exploits an unpatched vulnerability to access credentials, escalate privileges, and move to other accounts, potentially stealing proprietary software. To defend against this threat, sophisticated layers of defense and speed are necessary. The 555 benchmark is one way to keep your team ready to act at the speed of the cloud.

View Video

Sysdig

Read more about This is SCARLETEEL

Acid Rain, Pikabot, VenomRAT, Mallox Ransomware, and More: Hacker's Playbook Threat Coverage Round-up: March-April 2024

May 2, 2024 By Kaustubh Jagtap In SafeBreach

In this version of the Hacker’s Playbook Threat Coverage round-up, we are highlighting attack coverage for newly discovered or analyzed threats, including those based on original research conducted by SafeBreach Labs. SafeBreach customers can select and run these attacks and more from the SafeBreach Hacker’s Playbook™ to ensure coverage against these advanced threats.

Read Post

SafeBreach

Read more about Acid Rain, Pikabot, VenomRAT, Mallox Ransomware, and More: Hacker's Playbook Threat Coverage Round-up: March-April 2024

Credentials And Control Go Bye, Bye, Bye with AsyncRAT: What You Need to Know

May 2, 2024 By Adi Bleih In Cyberint

Introduced in 2019, AsyncRAT is classified as a remote access trojan (RAT) that primarily functions as a tool for stealing credentials and loading various malware, including ransomware. This RAT boasts botnet capabilities and features a command and control (C2) interface, granting operators the ability to manipulate infected hosts from a remote location.

Read Post

Cyberint

Read more about Credentials And Control Go Bye, Bye, Bye with AsyncRAT: What You Need to Know

CTI Roundup: ToddyCat APT, GuptiMiner Malware, APT28 Exploits a Windows Print Spooler Flaw

May 1, 2024 By Tanium In Tanium

ToddyCat deploys advanced tools for industrial scale data theft, hackers use eScan updates to spread GuptiMiner malware, and Russia’s APT28 exploits a Windows Print Spooler flaw.

Read Post

Tanium

Read more about CTI Roundup: ToddyCat APT, GuptiMiner Malware, APT28 Exploits a Windows Print Spooler Flaw

Shamane Tan on cyber resilience - Cyber Security Decoded

Apr 30, 2024 By Rubrik In Rubrik

Bouncing back from a cyber incident, data breach or #ransomware attack is a great accomplishment…but how can you bounce forward? A complete Cyber Resilience strategy is mission-critical. Security teams should be proactive and have response plans in place for when #CyberAttacks hit, rather than attempting to prevent attacks from occurring. With a #CyberResilience strategy, your team will be equipped with a plan when a cyber incident occurs while also having tools to identify those malicious attacks before they happen.

View Video