HackDig : Dig high-quality web security articles

New Ransomware Threats Are Getting Bolder: How to Rewrite the Script

Greater exposure is both good news and bad news when it comes to new ransomware threats. While ransomware attacks themselves are never good news, it is a positive sign that these attacks are receiving more media attention, such as the attack on an entire hospital chain, an attack on a Las Vegas school district and even an attack on a coffee machine.&nb
Publish At:2021-04-09 12:10 | Read:123 | Comments:0 | Tags:Data Protection Security Services Threat Research Ransomware

Cring Ransomware Targets Industrial Organizations

Cring ransomware operators are exploiting an old path traversal vulnerability in the FortiOS SSL VPN web portal to gain access to enterprise networks, Kaspersky warns.At the beginning of 2021, the threat actors behind the Cring ransomware were observed launching numerous attacks on European industrial enterprises, forcing at least one organization to shut do
Publish At:2021-04-08 11:40 | Read:89 | Comments:0 | Tags:ICS/OT NEWS & INDUSTRY Virus & Threats Virus & M

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

Attackers are actively exploiting the CVE-2018-13379 flaw in Fortinet VPN to deploy the Cring ransomware to organizations in the industrial sector. Threat actors are actively exploiting the CVE-2018-13379 vulnerability in Fortinet VPNs to deploy a new piece of ransomware, tracked as Cring ransomware (also known as Crypt3r, Vjiszy1lo, Ghost, Phantom), to o
Publish At:2021-04-07 20:30 | Read:185 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cring ransomware CVE-2018-

Cring Ransomware Used in Attacks on European Industrial Firms

Attackers exploited a vulnerability in Fortigate VPN servers to gain access to target networks, researchers report.Researchers with Kaspersky say several companies in Europe's industrial sector were recent victims of attacks using Cring ransomware. Related Content:How Ransomware Defense Is Evolving With Ransomware AttacksSpecial Report: How Data Br
Publish At:2021-04-07 20:01 | Read:130 | Comments:0 | Tags: ransomware

Is the Value of Bitcoin Tied to Ransomware Rates?

With investors currently bullish on Bitcoin, is its high value is driving cybercriminals to pursue crypto-generating forms of cybercrime like ransomware and illicit miners? At time of writing, the value of one Bitcoin is north of $58 thousand. Famously volatile, a crash is widely expected to accompany the current bubble, perhaps before the end of 2021. Th
Publish At:2021-04-07 19:14 | Read:161 | Comments:0 | Tags:Industry Intel cryptocurrency ransomware

REvil ransomware now changes password to auto-login in Safe Mode

A recent change to the REvil ransomware allows the threat actors to automate file encryption via Safe Mode after changing Windows passwords.In March, we reported on a new Windows Safe Mode encryption mode added to the REvil/Sodinokibi ransomware. This mode can be enabled using the -smode command-line argument, which would reboot the device into Saf
Publish At:2021-04-07 17:48 | Read:180 | Comments:0 | Tags:Security ransomware

New Cring ransomware hits unpatched Fortinet VPN devices

A vulnerability impacting Fortinet VPNs is being exploited by a new human-operated ransomware strain known as Cring to breach and encrypt industrial sector companies' networks.Cring ransomware (also known as Crypt3r, Vjiszy1lo, Ghost, Phantom) was discovered by Amigo_A in January and spotted by the CSIRT team of Swiss telecommunicati
Publish At:2021-04-07 13:54 | Read:173 | Comments:0 | Tags:Security ransomware

Naked Security Live – Lessons beyond ransomware

byPaul DucklinCybercrime isn’t about just one sort of attack, one type of crook, or one method of protection!Learn more: Watch directly on YouTube if the video won’t play here.Click the on-screen Settings cog to speed up playback or show subtitles.Why not join us live next time?Don’t forget that these talks are streamed weekly on our Facebo
Publish At:2021-04-07 10:24 | Read:162 | Comments:0 | Tags:Malware Ransomware Video BlackKingdom Exploit hacking Hafniu

A new headache for ransomware-hit companies. Extortionists emailing your customers

Cybercriminal extortionists have adopted a new tactic to apply even more pressure on their corporate victims: contacting the victims’ customers, and asking them to demand a ransom is paid to protect their own privacy.At the end of March, Bleeping Computer reported that the Clop ransomware gang had not stopped at threatening hacked companies and contact
Publish At:2021-04-07 09:19 | Read:137 | Comments:0 | Tags:IT Security and Data Protection cyberattack cybercrime email

Windows XP makes ransomware gangs work harder for their money

A recently created ransomware decryptor illustrates how threat actors have to support Windows XP, even when Microsoft dropped supporting it seven years ago.Windows XP reached its end of life on April 8th, 2014, and even though it no longer receives security updates, more people use XP than Windows Vista, according to StatCounter and BleepingComputer's websit
Publish At:2021-04-06 18:24 | Read:117 | Comments:0 | Tags:Security Microsoft ransomware

McAfee Defender’s Blog: Cuba Ransomware Campaign

Cuba Ransomware Overview Over the past year, we have seen ransomware attackers change the way they have responded to organizations that have either chosen to not pay the ransom or have recovered their data via some other means. At the end of the day, fighting ransomware has resulted in the bad actors’ loss of revenue. Being the creative bunch they are, they
Publish At:2021-04-06 16:34 | Read:185 | Comments:0 | Tags:McAfee Labs ransomware

McAfee ATR Threat Report: A Quick Primer on Cuba Ransomware

Executive Summary  Cuba ransomware is an older ransomware, that has recently undergone some development. The actors have incorporated the leaking of victim data to increase its impact and revenue, much like we have seen recently with other major ransomware campaigns.  In our analysis, we observed that the attackers had access to the network before the infect
Publish At:2021-04-06 16:34 | Read:153 | Comments:0 | Tags:McAfee Labs ransomware

Ransomware hits TU Dublin and National College of Ireland

The National College of Ireland (NCI) and the Technological University of Dublin have announced that ransomware attacks hit their IT systems.NCI is currently working on restoring IT services after being hit by a ransomware attack over the weekend that forced the college to take IT systems offline."NCI is currently experiencing a significant disruption to IT
Publish At:2021-04-06 14:30 | Read:100 | Comments:0 | Tags:Security ransomware

Ransomware Attacks Grew by 485% in 2020

Ransomware attacks increased by an astonishing 485% in 2020 compared to 2019, according to Bitdefender’s 2020 Consumer Threat Landscape Report, which highlighted the ways cyber-criminals targeted the COVID-19 pandemic.Interestingly, nearly two-thirds (64%) of the ransomware attacks took place in the first two quarters of 2020.The report, which analyzed
Publish At:2021-04-06 11:49 | Read:167 | Comments:0 | Tags: ransomware

Sophos Links Mount Locker to Astro Locker Ransomware

Security experts have uncovered a series of close links between ransomware groups Mount Locker and Astro Locker Team, in a new report that will be of interest to incident responders.Sophos’ Managed Threat Response (MTR) team said it recently dealt with an attack that had all the TTPs of a Mount Locker operation. However, when it followed the link
Publish At:2021-04-06 07:55 | Read:205 | Comments:0 | Tags: ransomware