Krebs on Security

FEBRUARY 9, 2021

Windows Server users also should be aware that Microsoft this month is enforcing the second round of security improvements as part of a two-phase update to address CVE-2020-1472 , a severe vulnerability that first saw active exploitation back in September 2020. So do yourself a favor and backup your files before installing any patches.

DNS 294

DNS Backups Software Phishing 294

The Last Watchdog

SEPTEMBER 25, 2023

million in 2023, according to IBM’s Cost of a Data Breach Report, and over 700,000 small businesses were targeted in cybersecurity attacks in 2020, according to the Small Business Association. Cloud vendors often handle the security and backup processes automatically, so examine your technology and see if that is the case.

Small Business 222

Small Business Cybersecurity Technology Data breaches 222

Krebs on Security

NOVEMBER 17, 2022

Peter is an IT manager for a technology manufacturer that got hit with a Russian ransomware strain called “ Zeppelin ” in May 2020. He’d been on the job less than six months, and because of the way his predecessor architected things, the company’s data backups also were encrypted by Zeppelin.

Ransomware 304

Ransomware Encryption Backups Healthcare 304

Security Affairs

DECEMBER 17, 2020

According to a private industry notification alert (PIN), sent by the FBI to private organizations, the Bureau is aware of extortion activities that have been happening since February 2020. This criminal practice is adopted since August by several gangs, including Sekhmet , Conti , and Ryuk. PIN Number 20201210-001.

Ransomware 139

Ransomware Backups Firmware Accountability 139

Security Boulevard

JANUARY 3, 2023

We anticipate an increase in targeting of identities that allow cross-platform authentication as actors recognise the value in compromising identities rather than endpoints. ” [A.C. — this this data point is from 2020 , so treat this as a low boundary in 2023. Monitor for events on backups and create alerts for these”.

Cybersecurity 98

Cybersecurity Backups DDOS Accountability 98

Spinone

JANUARY 21, 2018

Many IT specialists are predicting that 2018 will be “the year of the cloud”, as companies increasingly have to deal with the backup needs of massive amounts of data, connect more and more devices to the Internet of Things , and start to appreciate the benefits that a cloud-based IT strategy can offer.

Backups 40

Backups Computers and Electronics Technology Mobile 40

Security Affairs

MARCH 27, 2020

Researchers warn of a security flaw recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website. WebARX experts warn of a missing authorization check recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website.

Backups 63

Backups Advertising Authentication Hacking 63

Security Affairs

JUNE 8, 2022

“Upon gaining an initial foothold into a telecommunications organization or network service provider, PRC state-sponsored cyber actors have identified critical users and infrastructure including systems critical to maintaining the security of authentication, authorization, and accounting. Enforce MFA on all VPN connections [ D3-MFA ].

Telecommunications 96

Telecommunications Authentication Passwords Accountability 96

Krebs on Security

MAY 11, 2021

As this specific exploit would not require any form of authentication, it’s even more appealing for attackers, and any organization using HTTP.sys protocol stack should prioritize this patch.” You’ll also note this CVE is from 2020, which could indicate Microsoft has been working on this fix for some time.”

Wireless 269

Wireless Internet Internet Backups 269

SecureWorld News

JANUARY 22, 2024

Microsoft disclosed that it recently fell victim to a cyberattack by Nobelium, the Russian state-sponsored hacking group infamously responsible for the 2020 SolarWinds supply chain attack. The breach, detected on January 12th, allowed the hackers to access email accounts belonging to members of Microsoft's senior leadership team.

Passwords 96

Passwords Accountability Backups Hacking 96

Security Affairs

NOVEMBER 23, 2020

FBI is warning private industry partners of a surge in Ragnar Locker ransomware activity following a confirmed attack from April 2020. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private industry partners of an increase of the Ragnar Locker ransomware activity following a confirmed attack from April 2020.

Ransomware 145

Ransomware Encryption VPN Backups 145

SecureWorld News

OCTOBER 20, 2021

Instead of encrypting backup data, BlackMatter instead wipes it clean in some cases. Rather than encrypting backup systems, BlackMatter actors wipe or reformat backup data stores and appliances. Backup your data and put procedures in place for restoration. DarkSide made claims it was shutting down earlier this year.

Cybersecurity 75

Cybersecurity Backups Encryption Ransomware 75

Malwarebytes

APRIL 14, 2022

Zloader has a Domain Generating Algorithm (DGA) embedded within the malware that creates additional domains as a fallback or backup communication channel for the botnet. We also saw this method recently used against the Strontium group. Domain Generating Algorithm. Stay safe, everyone!

Backups 130

Backups Telecommunications Banking Internet 130

CyberSecurity Insiders

JUNE 24, 2021

Data Backup. Back up all data as well as “every nonstandard application and its supporting IT infrastructure,” and test the backup and recovery to ensure they can handle an attack. Be sure to use controls that prevent online backups from becoming encrypted by ransomware. Least Privilege. User Training.

Ransomware 103

Ransomware Backups Penetration Testing Education 103

Security Affairs

APRIL 23, 2021

“The Multimedia Console, Media Streaming Add-on, and Hybrid Backup Sync apps need to be updated to the latest available version as well to further secure QNAP NAS from ransomware attacks. The company also recommends updating the Multimedia Console, Media Streaming Add-on, and Hybrid Backup Sync apps to the latest versions.

Ransomware 120

Ransomware Backups Media Malware 120

Malwarebytes

SEPTEMBER 7, 2022

Malwarebytes has been tracking the group since December 2020. But you should also realize that while it’s easy to say that you need reliable and easy to deploy backups, for example, it’s not always easy to follow that advice. Maintain offline backups of data, and regularly maintain backup and restoration.

Education 89

Education Ransomware Backups Passwords 89

The Last Watchdog

JANUARY 25, 2021

Thanks to a couple of milestone hacks disclosed at the close of 2020 and start of 2021, they will forever be associated with putting supply-chain vulnerabilities on the map. SolarWinds subsequently disclosed to the SEC that threat actors inserted Sunburst into the Orion updates issued to customers between March and June 2020.

Hacking 228

Hacking B2B Authentication Software 228

Hacker Combat

APRIL 22, 2022

increase on 2020 levels. Ransomware cost businesses and individuals $18 billion in 2020, with the average sum paid totaling $220,298 in the first quarter of 2021. 2 Backup your data. 3 Enable multi-factor authentication. There were 2690 reports of ransomware attacks in 2021, which was a 97.1%

Ransomware 105

Ransomware Firewall Passwords Authentication 105

Malwarebytes

AUGUST 29, 2023

They also may have gained access to images of checks provided to OHC by some members and donors beginning in 2020. Enable two-factor authentication (2FA). Some forms of two-factor authentication (2FA) can be phished just as easily as a password. Create offsite, offline backups. Don’t get attacked twice.

Ransomware 79

Ransomware Data breaches Passwords Phishing 79

Security Boulevard

APRIL 23, 2021

Google noted a more than 600% spike in phishing attacks in 2020 compared to 2019 with a total of 2,145,013 phishing sites registered as of January 17, 2021, up from 1,690,000 on Jan 19, 2020. So did the 2020 Twitter hack. Two in five small and medium businesses were impacted by ransomware in 2020. Spear Phishing.

Phishing 100

Phishing Scams Media Backups 100

The Last Watchdog

MAY 5, 2022

Well, the stats are even scarier with over 50% increase in ransomware attacks in 2021, compared to 2020. Back up your data and secure your backups in an offline location. Enable multi-factor authentication (MFA) to access your applications and services, especially for admin access to platforms and backend systems. Ransomware?

Risk 247

Risk Ransomware Internet Internet 247

Security Affairs

AUGUST 9, 2021

in Australia since 2020. Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. “The ACSC is aware of numerous incidents involving LockBit and its successor ‘LockBit 2.0’ ” states the advisory.

Ransomware 112

Ransomware Retail Manufacturing Encryption 112

Security Affairs

OCTOBER 26, 2021

The gang has been active since at least 2020, threat actors hit organizations from various industries. Below are the recommended mitigations included in the alert: Implement regular backups of all data to be stored as air gapped, password protected copies offline. Use double authentication when logging into accounts or services.

Ransomware 129

Ransomware Firmware Antivirus Accountability 129

Security Affairs

JUNE 29, 2020

” Unfortunately, most organizations often neglect the protection of RDP accesses and workers use easy-to-guess passwords and with no additional layers of authentication or protection. Between December 2019 and until February 2020, the experts observed a number of attacks between 70,000 and 40,000 on a daily basis.

Passwords 126

Passwords Internet Internet Advertising 126

Security Affairs

SEPTEMBER 3, 2021

In another incident that occurred in March 2021, a ransomware attack blocked the operations at a US beverage company, while in a November 2020 attack on a US-based international food and agriculture business threat actors requested the payment of a gigantic $40 million ransom. Implement network segmentation.

Ransomware 98

Ransomware Passwords Backups Firmware 98

Malwarebytes

OCTOBER 28, 2021

Ranzy Locker ransomware emerged in late 2020, when the variant began to target victims in the United States. Find and delete shadow volume copies, and other recent backups, and disable the Windows recovery environment. Store regular backups of your data off-site and offline, where attackers can’t reach them. Mitigation.

Ransomware 107

Ransomware Backups Encryption Firmware 107

Krebs on Security

JUNE 9, 2020

Perhaps most troubling of these ( CVE-2020-1301 ) is a remote code execution bug in SMB capabilities built into Windows 7 and Windows Server 2008 systems — both operating systems that Microsoft stopped supporting with security updates in January 2020. So do yourself a favor and backup before installing any patches.

Authentication 275

Authentication Software Backups Accountability 275

Security Boulevard

NOVEMBER 1, 2022

A new report from KuppingerCole Names ForgeRock an Overall Leader in Passwordless Authentication. If passwordless authentication is a destination, then identity orchestration is the highway to get there. In recognition of this movement, KuppingerCole has published its very first Leadership Compass for Passwordless Authentication.

Authentication 80

Authentication Passwords Architecture Data breaches 80

Security Affairs

JANUARY 16, 2020

Security systems like firewalls might fail to detect the attempt of exploitation for these issues because authentication bypass vulnerabilities are often logical mistakes in the code and don’t actually involve a suspicious-looking payload. 07-01-2020 – Released protection module to all WebARX customers.

Passwords 68

Passwords Advertising Authentication Backups 68

Security Affairs

SEPTEMBER 5, 2020

The fresh alert is the second one related to this threat, the first one (MI-000125-MW Flash Alert) was published on May 4th, 2020. The FBI has issued the 20200901-001 Private Industry Notification about ProLock ransomware stealing data on September 1st. The descriptor could corrupt files larger than 64MB during the decryption process.

Ransomware 133

Ransomware Advertising Malware Backups 133

Security Affairs

APRIL 5, 2020

. “It appears that someone was able to breach the server through a shell in avatar uploading in the forum software and get access to our current database dating April 2, 2020,” said Ace. The data breach notice discovered by the data breach monitoring service Under the Breach.

Hacking 104

Hacking Data breaches Advertising Backups 104

Malwarebytes

MAY 23, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its #StopRansomware guide to account for the fact that ransomware actors have accelerated their tactics and techniques since the original guide was released in September of 2020. Create offsite, offline backups. Don’t get attacked twice.

Ransomware 62

Ransomware Backups Social Engineering Accountability 62

CyberSecurity Insiders

OCTOBER 13, 2021

In 2020, ransomware attacks grew by 150%, and are growing even faster in 2021 , and with costs to repair the damage they cause in the millions of dollars, many organizations are desperate for solutions. Passwordless authentication also prevents lateral movement between applications and systems from hackers. Effects of Ransomware.

Ransomware 144

Ransomware Passwords Authentication Encryption 144

Security Affairs

JULY 13, 2023

According to Zimbra users, the vulnerability is actively exploited since early September 2020. In August 2022, US CISA warned that threat actors were exploiting an authentication bypass Zimbra flaw, tracked as CVE-2022-27925, to hack Zimbra Collaboration Suite email servers worldwide.

Hacking 88

Hacking Backups Cyber threats Authentication 88

Thales Cloud Protection & Licensing

MAY 23, 2022

This is certainly an option for organizations with well-defined backup and remediation processes. According to a Check Point study, the industry experienced a 186% increase in weekly ransomware attacks between June 2020 and June 2021. Francois Lasnier | VP, Authentication and Access Management Products. Healthcare sector.

Healthcare 126

Healthcare Ransomware Authentication Threat Reports 126

CyberSecurity Insiders

SEPTEMBER 14, 2021

Backup and recovery – according to FEMA , 40% of small businesses never reopen after a disaster. For a smaller business with limited IT capabilities, conducting regular and all-encompassing backups of all systems will provide a simple but very effective defense against a variety of threats and risks.

Small Business 98

Small Business Cybersecurity Passwords Education 98

Approachable Cyber Threats

OCTOBER 16, 2020

For example, if someone in your organization reuses their VPN password somewhere else, and there’s no multi-factor authentication setup, hackers could easily login to the VPN and have free rein over all of your organization’s information. link] — Shannon Vavra (@shanvav) June 24, 2020 So ACT today! million exposed RDP ports.

Ransomware 98

Ransomware VPN Internet Internet 98