HackDig : Dig high-quality web security articles for hacker

Nearly Half of Employees Don’t Know What to Do When Ransomware Hits

A survey revealed that approximately half of employees didn’t know how to respond in the event their organization suffered a ransomware infection.In its survey of North American business employees, Kaspersky found that 45% of respondents overall did not know the proper steps they should take in response to a ransomware attack.Respondents whose employer
Publish At:2020-04-02 17:12 | Read:88 | Comments:0 | Tags:IT Security and Data Protection Latest Security News prepara

Loncom packer: from backdoors to Cobalt Strike

The previous story described an unusual way of distributing malware under disguise of an update for an expired security certificate. After the story went out, we conducted a detailed analysis of the samples we had obtained, with some interesting findings. All of the malware we examined from the campaign was packed with the same packer, which we named Trojan-
Publish At:2020-04-02 06:58 | Read:75 | Comments:0 | Tags:Featured Malware descriptions Backdoor Malware Descriptions

Microsoft issues targeted notification to hospitals vulnerable to Ransomware attacks

Microsoft is sending notifications to dozens of hospitals about vulnerable VPN devices and gateways exposed online in their network. Microsoft is warning dozens of hospitals of the risks of ransomware attacks due to insecure VPN devices and gateways exposed online. Recently Microsoft has published details about human-operated ransomware attacks that ta
Publish At:2020-04-02 06:11 | Read:135 | Comments:0 | Tags:Breaking News Cyber Crime Security COVID Hacking human-opera

How to protect hospitals against the ransomware Netwalker

Hospitals are one of the most important critical infrastructures at the best of times, and more so right now, with the global health emergency caused by COVID-19. At this time, it is imperative that hospitals function as well as they possibly can, with no setbacks. However, we must not lose sight of the fact that the entire sector is currently in the midst o
Publish At:2020-04-01 10:45 | Read:108 | Comments:0 | Tags:Business News b2b healthcare sector Ransomware

Breaking the Ice: A Deep Dive Into the IcedID Banking Trojan’s New Major Version Release

The IcedID banking Trojan was discovered by IBM X-Force researchers in 2017. At that time, it targeted banks, payment card providers, mobile services providers, payroll, webmail and e-commerce sites, mainly in the U.S. IcedID has since continued to evolve, and while one of its more recent versions became active in late-2019, X-Force researchers have identifi
Publish At:2020-04-01 07:12 | Read:161 | Comments:0 | Tags:Fraud Protection Malware Threat Research Banking Malware Ban

The MITRE ATT&CK Framework: Execution

Of all the tactics that an adversary will take on in their campaign, none will be more widely abused than, Execution (https://attack.mitre.org/wiki/Execution). When taking into consideration off-the-shelf malware, traditional ransomware, or state of the art advanced persistent threat actors, all of them have execution in common. There’s a great quote from Al
Publish At:2020-03-31 08:17 | Read:153 | Comments:0 | Tags:Featured Articles MITRE Framework ATT&CK execution malware r

Now Is the Time to Get up to Speed with CMMC and SP 800-171 Rev 2

At the beginning of March 2020, Fifth Domain reported that Colorado-based aerospace, automotive and industrial parts manufacturer Visser Precision LLC had suffered a DoppelPaymer ransomware infection. Those behind this attack ultimately published information stolen from some of Visser’s customers. Those organizations included defense contractors Lockheed Mar
Publish At:2020-03-30 01:56 | Read:131 | Comments:0 | Tags:Government NIST 800-171 ransomware Secure Supply Chain secur

Source code of Dharma ransomware now surfacing on public hacking forums

The source code of the infamous Dharma ransomware is now available for sale on two Russian-language hacking forums. The source code of one of the most profitable ransomware families, the Dharma ransomware, is up for sale on two Russian-language hacking forums. The Dharma ransomware first appeared on the threat landscape in February 2016, at the ti
Publish At:2020-03-29 15:19 | Read:539 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime Hacking informa

Security Breach Disrupts Fintech Firm Finastra

Finastra, a company that provides a range of technology solutions to banks worldwide, said it was shutting down key systems in response to a security breach discovered Friday morning. The company’s public statement and notice to customers does not mention the cause of the outage, but their response so far is straight out of the playbook for dealing wit
Publish At:2020-03-20 14:20 | Read:338 | Comments:0 | Tags:Other data breach Finastra ransomware Tom Kilroy

Coronavirus scams, found and explained

Coronavirus has changed the face of the world, restricting countless individuals from dining at restaurants, working from cafes, and visiting their loved ones. But for cybercriminals, this global pandemic is expanding their horizons. In the past week, Malwarebytes discovered multiple email scams that prey on the fear, uncertainty, and confusion regarding
Publish At:2020-03-20 13:11 | Read:285 | Comments:0 | Tags:Scams 1 470 59828 93 784 50 17 Agent Tesla Boresha Credit Se

CERT France – Pysa ransomware is targeting local governments

CERT France is warning of a new wave of attacks using Pysa ransomware (Mespinoza) that is targeting local governments. CERT France cyber-security agency is warning about a new wave of ransomware attack that is targeting the networks of local government authorities. Operators behind this campaign are spreading a new version of the Mespinoza ransomware (aka
Publish At:2020-03-19 12:09 | Read:231 | Comments:0 | Tags:Breaking News Cyber Crime Malware CERT-FR Hacking informatio

Staying Cyber Resilient During a Pandemic

Reading Time: ~ 3 min. We’re all thinking about it, so let’s call it out by name right away. The novel coronavirus, COVID-19, is a big deal. For many of us, the structure of our lives is changing daily; and those of us who are capable of doing our work remotely are likely doing so more than we ever have before. It’s not likely that cybercriminals will cu
Publish At:2020-03-19 09:35 | Read:218 | Comments:0 | Tags:Business + Partners cyber resilience malware phishing ransom

Nefilim Ransomware Threatens to Release Victims’ Data within a Week

A newly discovered ransomware family called “Nefilim” told its victims that it would publish their stolen data within a week unless they paid their ransom.According to Bleeping Computer, Nefilim started up near the end of February 2020. The threat attracted the attention of security researchers because it shared much of the same code with version
Publish At:2020-03-18 13:01 | Read:160 | Comments:0 | Tags:IT Security and Data Protection Latest Security News Nefilim

Operators behind Nefilim Ransomware threaten to release stolen data

Operators behind a new piece of ransomware dubbed Nefilim have started threatening victims to release stolen data like other cybercrime gangs. A new ransomware dubbed Nefilim appeared in the threat landscape at the end of February, it borrows its code from other malware, the Nemty ransomware. The main difference between the two threats is that Nefilim
Publish At:2020-03-17 18:26 | Read:258 | Comments:0 | Tags:Breaking News Cyber Crime Malware malware NEFILIM ransomware

Most ransomware attacks take place outside the working hours

Most of the ransomware attacks targeting the enterprises occur outside working hours, during the nighttime or during the weekend. Security experts from FireEye published an interesting report on the Ransomware deployment trends, it revealed that most of the attacks (76%) against the enterprise sector occur outside working hours. FireEye compiled the r
Publish At:2020-03-17 15:40 | Read:205 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Reports informatio

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud