RDP – Page 3 – PossibleThreat Articles

Ransomware authors keep exploring new ways to test their strengths against various malware evasion techniques. The ransomware known as “Ouroboros” is intensifying its footprint in the field by bringing more and more advancements in its behavior as it updates its version. This analysis provides the behaviour of version 6, few…

Security Sophos

IE zero day and heap of RDP flaws fixed in February Patch Tuesday

February 13, 2020 0 Comments Adobe, Adobe Flash, Internet Explorer, Microsoft, Operating Systems, Patch Tuesday, Patching, RDP, vulnerability, Web Browsers, Windows, zero-day vulnerability

Credit to Author: John E Dunn| Date: Thu, 13 Feb 2020 12:52:59 +0000

Microsoft has finally patched the Internet Explorer (IE) zero-day flaw the company said in January was being used in “limited targeted attacks”.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/JI_KRna6j1I” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Explained: the strengths and weaknesses of the Zero Trust model

January 28, 2020 0 Comments byod, Cloud, explained, framework, identity management, insider threats, IoT, lateral threat movement, MFA, perimeter, RDP, Security, security orchestration, strategy, Zero Trust, zero trust model, zero trust security model

Credit to Author: Pieter Arntz| Date: Tue, 28 Jan 2020 16:00:00 +0000

Zero Trust is an information security framework that insists its users “never trust, always verify.” Is this the best security model for organizations today? We examine its strengths and weaknesses.

Categories:

Explained

Tags: byod cloud framework identity management insider threats IoT lateral threat movement mfa perimeter rdp security security orchestration strategy zero trust zero trust model zero trust security model

Security Sophos

Microsoft fixes critical bugs in CryptoAPI, RD Gateway and .NET

January 15, 2020 0 Comments Adobe, barcelona, CVEs, Microsoft, Operating Systems, Patch Tuesday, Patches, rce, rd gateway, RDP, remote code execution, security threats, vulnerability, Windows, windows remote desktop gateway, windows server

Credit to Author: Danny Bradbury| Date: Wed, 15 Jan 2020 12:10:33 +0000

Here are the most serious bugs from Microsoft’s Patch Tuesday – Including CryptoAPI and RCE flaws in Windows Remote Desktop Gateway.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/_JcrLmlUQmc” height=”1″ width=”1″ alt=””/>

Security Sophos

January 2020 Patch Tuesday delivers fixes for 50 bugs

January 14, 2020 0 Comments chromium, Edge, elevation of privilege, exploits, Microsoft, Patch Tuesday, RDP, SophosLabs Uncut, updates, vulnerability, Windows

Credit to Author: SophosLabs Offensive Security| Date: Tue, 14 Jan 2020 18:15:18 +0000

This month’s big security news from Microsoft is the end of support for Windows 7, and a patch of a cryptographic library<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/wiyw9sHJyLE” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Threat spotlight: Phobos ransomware lives up to its name

January 10, 2020 0 Comments brute force, coveware, crysis, crysis ransomware, dharma, dharma ransomware, disorganised crime, MFA, multi-factor authorization, Phobos, phobos nextgen, phobos notdharma, phobos ransomware, raas, Ransomware, Ransomware as a Service, RDP, remote desktop protocol, server message block, smb, Sodinokibi, Threat spotlight, virtual private networks, vpn

Credit to Author: Jovi Umawing| Date: Fri, 10 Jan 2020 18:04:44 +0000

Phobos, which many believe was named after the Greek god of fear, isn’t as widespread as it was before nor is it more novel than your average ransomware. Yet, it remains a threat to consumers and businesses alike. We dive into Phobos ransomware and show users how to face their fears and protect against it.

Categories:

Threat spotlight

Tags: brute force coveware crysis crysis ransomware dharma Dharma ransomware disorganised crime mfa Multi-Factor Authorization Phobos Phobos NextGen Phobos NotDharma Phobos ransomware raas ransomware Ransomware as a Service rdp remote desktop protocol Server Message Block SMB Sodinokibi virtual private networks vpn

Security Sophos

MyKings botnet spreads headaches, cryptominers, and Forshare malware

December 18, 2019 0 Comments cryptominers, darkcloud, forshare, ipc, monero, ms-sql, mykings, mysql, RDP, smominru, SophosLabs Uncut, ssh, telnet, wmi

Credit to Author: Gabor Szappanos| Date: Wed, 18 Dec 2019 14:16:38 +0000

All this trouble just for some Monero<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/Bs6eVtcm9SE” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Threat spotlight: The curious case of Ryuk ransomware

December 12, 2019 0 Comments aes, average ransom amount, bitpaymer, BitPaymer ransomware, cryptotech, death note, emotet, far eastern international bank, feib, gabriela nicolao, gandcrab, hermes, hermes 2.1, luciano martins, pseudo-ransomware, ransom.ryuk, RDP, remote desktop protocol, rsa, russian threat actors, ryuk, Ryuk ransomware, shinigami’s revenge: the long tail of the ryuk ransomware, Threat spotlight, tribune publishing, trickbot, wake-on-lan, wizard spider, wol

Credit to Author: Jovi Umawing| Date: Thu, 12 Dec 2019 22:33:53 +0000

From comic book death god to ransomware baddie, Ryuk ransomware remains a mainstay when organizations find themselves in a crippling malware pinch. We look at Ryuk’s origins, attack methods, and how to protect against this ever-present threat.

Categories:

Threat spotlight

Tags: AES average ransom amount BitPaymer BitPaymer ransomware CryptoTech Death Note emotet Far Eastern International Bank FEIB Gabriela Nicolao gandcrab Hermes Hermes 2.1 Luciano Martins pseudo-ransomware Ransom.Ryuk rdp remote desktop protocol RSA Russian threat actors ryuk Ryuk ransomware Shinigami’s revenge: the long tail of the Ryuk ransomware tribune publishing trickbot Wake-on-LAN Wizard Spider WoL