Turning the screws: The pressure tactics of ransomware gangs
Credit to Author: Matt Wixey| Date: Tue, 06 Aug 2024 10:00:49 +0000
Sophos X-Ops examines the increasingly aggressive tactics ransomware gangs use to coerce their targets
Read moreMonth: August 2024
Magniber ransomware targets home users
Home users are being targeted by a ransomware called Magniber which locks up files and demands money for the key.
Read moreLow-Drama ‘Dark Angels’ Reap Record Ransoms
Credit to Author: BrianKrebs| Date: Mon, 05 Aug 2024 19:52:35 +0000
A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn’t get much press because they work alone and maintain a low profile, picking one target at a time and favoring mass data theft over disrupting the victim’s operations.
Read moreUpgrading your Sophos Firewall from XG to XGS
Credit to Author: Chris McCormack| Date: Mon, 05 Aug 2024 13:22:23 +0000
Get unbeatable savings on your hardware and software purchase.
Read moreHow Project 2025 Would Put US Elections at Risk
Credit to Author: Eric Geller| Date: Mon, 05 Aug 2024 10:30:00 +0000
Experts say the “nonsensical” policy proposal, which largely aligns with Donald Trump’s agenda, would weaken the US agency tasked with protecting election integrity, critical infrastructure, and more.
Read moreBringing Security Back into Balance
Credit to Author: Eva Chen| Date: Sun, 04 Aug 2024 00:00:00 +0000
This article by Trend Micro CEO Eva Chen brings focus back to striking the cybersecurity strategies balance between business C-suite and information technology (IT) departments.
Read moreUS Hands Over Russian Cybercriminals in WSJ Reporter Prisoner Swap
Credit to Author: Dhruv Mehrotra, Andrew Couts| Date: Sat, 03 Aug 2024 10:30:00 +0000
Plus: Meta pays $1.4 million in a historic privacy settlement, Microsoft blames a cyberattack for a major Azure outage, and an artist creates a face recognition system to reveal your NYPD “coppelganger.”
Read moreSensitive Illinois Voter Data Exposed by Contractor’s Unsecured Databases
Credit to Author: Lily Hay Newman| Date: Fri, 02 Aug 2024 16:34:03 +0000
Social Security numbers, death certificates, voter applications, and other personal data were accessible on the open internet, highlighting the ongoing challenges in election security.
Read moreRansomware operators exploit ESXi hypervisor vulnerability for mass encryption
Credit to Author: Microsoft Threat Intelligence| Date: Mon, 29 Jul 2024 16:00:00 +0000
Microsoft Security researchers have observed a vulnerability used by various ransomware operators to get full administrative access to domain-joined ESXi hypervisors and encrypt the virtual machines running on them. The vulnerability involves creating a group called “ESX Admins” in Active Directory and adding an attacker-controlled user account to this group. This manipulation of the Active Directory group takes advantage of a privilege escalation vulnerability (CVE-2024-37085) in ESXi hypervisors that grants the added user full administrative access to the ESXi hypervisor. The vulnerability was fixed by VMware in their June release and ESXi administrators should install this security update.
The post Ransomware operators exploit ESXi hypervisor vulnerability for mass encryption appeared first on Microsoft Security Blog.
Read more