Ransomware – Page 48 – PossibleThreat Articles

Zyxel Fixes 0day in Network Storage Devices

February 24, 2020 0 Comments 0day, 500mhz, alex holden, cert coordination center, cert/cc, cve-2020-9054, dhs, emotet, Hold Security, Latest Warnings, Ransomware, The Coming Storm, Time to Patch, zero day, zyxel communications corp.

Credit to Author: BrianKrebs| Date: Mon, 24 Feb 2020 17:13:11 +0000

Networking hardware vendor Zyxel today released an update to fix a critical flaw in many of its network attached storage (NAS) devices that can be used to remotely commandeer them. The patch comes 12 days after KrebsOnSecurity alerted the company that precise instructions for exploiting the vulnerability were being sold for $20,000 in the cybercrime underground. Based in Taiwan, Zyxel Communications Corp. (a.k.a “ZyXEL”) is a maker of networking devices, including Wi-Fi routers, NAS products and hardware firewalls. The company has roughly 1,500 employees and boasts some 100 million devices deployed worldwide. While in many respects the class of vulnerability addressed in this story is depressingly common among Internet of Things (IoT) devices, the flaw is notable because it has attracted the interest of groups specializing in deploying ransomware at scale.

MalwareBytes Security

A week in security (February 17 – 23)

February 24, 2020 0 Comments A week in security, awis, BlueKeep, catfishing, Chrome Extension, crypto scams, deepfakes, elections, epic games, firmware, idaas, identity-as-a-service, jamila kaya, lokibot, Ransomware, scammers, twitter, voatz, week in security, weekly blog roundup, youtube hack

Credit to Author: Malwarebytes Labs| Date: Mon, 24 Feb 2020 16:32:34 +0000

A roundup of the previous week’s most notable security stories and events, including cloud identity management, a noteworthy Twitter scam-tastrophy, RobbinHood ransomware, and more.

Categories:

A week in security

Tags: awis BlueKeep catfishing Chrome Extension Crypto scams deepfakes elections epic games firmware IDaaS identity-as-a-service Jamila Kaya LokiBot ransomware scammers twitter Voatz week in security weekly blog roundup YouTube hack

(Read more…)

The post A week in security (February 17 – 23) appeared first on Malwarebytes Labs.

MalwareBytes Security

Why managed service providers (MSP) are critical for business continuity

February 24, 2020 0 Comments Compliance, managed service providers, msp, msps, Opinion, Ransomware, smb, zero unemployment rate

Credit to Author: Jovi Umawing| Date: Mon, 24 Feb 2020 16:00:00 +0000

What many don’t realize is that SMBs need the same level of protection from threats that are usually only afforded to enterprises. Managed service providers (MSPs) are the key to getting the protection and service they need while staying on budget.

Categories:

Opinion

Tags: compliance managed service providers MSP MSPs ransomware SMB zero unemployment rate

MalwareBytes Security

Threat spotlight: RobbinHood ransomware takes the driver’s seat

February 20, 2020 0 Comments .enc_robbinhood, anti-ransomware, baltimore, bitcoin, greenville, malwarebytes, ransom, ransom note, Ransomware, ransomware rollback, robbinhood, robbinhood ransomware, rollback, Threat spotlight

Credit to Author: Pieter Arntz| Date: Thu, 20 Feb 2020 18:09:03 +0000

RobbinHood a is a ransomware family that specifically targets organizations using a vulnerable kernel driver to prepare systems for encryption. Learn how to protect against it.

Categories:

Threat spotlight

Tags: .enc_robbinhood Anti-Ransomware baltimore bitcoin greenville Malwarebytes ransom ransom note ransomware ransomware rollback robbinhood robbinhood ransomware rollback

Security Sophos

Ransomware attack forces 2-day shutdown of natural gas pipeline

February 20, 2020 0 Comments cisa, cybersecurity and infrastructure security agency, department of homeland security, dhs, Government security, infrastructure, malware, natural gas facility, phishing, Ransomware, security threats, spearphishing, utilities

Credit to Author: Lisa Vaas| Date: Thu, 20 Feb 2020 14:35:31 +0000

The attacker(s) infected both IT and operational networks with an unspecified ransomware strain, though the facility never lost control.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YqiqInxA_Kc” height=”1″ width=”1″ alt=””/>

Security Sophos

Council returns to using pen and paper after cyberattack

February 18, 2020 0 Comments Government security, local government, malware, national crime agency, nca, ncsc, Ransomware, redcar and cleveland council, security threats

Credit to Author: John E Dunn| Date: Tue, 18 Feb 2020 11:44:46 +0000

Ten days after a suspected ransomware attack, residents of the English borough of Redcar and Cleveland must be starting to wonder when their Council’s IT systems will return.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/OeNzmMzg6c4″ height=”1″ width=”1″ alt=””/>

QuickHeal Security

Ouroboros: Following A New Trend In Ransomware League

February 18, 2020 0 Comments encryption, malware, Ransomware, RDP

Credit to Author: Manisha Prajapati| Date: Tue, 18 Feb 2020 09:45:17 +0000

Ransomware authors keep exploring new ways to test their strengths against various malware evasion techniques. The ransomware known as “Ouroboros” is intensifying its footprint in the field by bringing more and more advancements in its behavior as it updates its version. This analysis provides the behaviour of version 6, few…

Security Sophos

S2 Ep26: RobbinHood ransomware, Twitter parodies and SMS 2FA WHAT? – Naked Security Podcast

February 13, 2020 0 Comments Naked Security Podcast, Podcast, Ransomware

Credit to Author: Alice Violet| Date: Thu, 13 Feb 2020 14:38:45 +0000

Listen now!<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Cq2ETGlwMro” height=”1″ width=”1″ alt=””/>

Security Sophos

S2 Ep26: Robbin Hood ransomware, Twitter parodies and SMS 2FA WHAT? – Naked Security Podcast

February 13, 2020 0 Comments Naked Security Podcast, Podcast, Ransomware

Credit to Author: Alice Violet| Date: Thu, 13 Feb 2020 14:38:45 +0000

Listen now!<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Cq2ETGlwMro” height=”1″ width=”1″ alt=””/>

QuickHeal Security

A Deep Dive Into Wakeup On Lan (WoL) Implementation of Ryuk

February 13, 2020 0 Comments encryption, enterprise, malware, Ransomware

Credit to Author: Goutam Tripathy| Date: Thu, 13 Feb 2020 09:57:14 +0000

Quick Heal Security Labs recently came across a variant of Ryuk Ransomware which contains an additional feature of identifying and encrypting systems in a Local Area Network (LAN). This sample targets the systems which are present in sleep as well as the online state in the LAN. This sample is packed with…